Windows Local Session Manager (LSM) Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-37973.

CVE-2022-37998

Windows TCP/IP Driver Denial of Service Vulnerability.

CVE-2022-33645

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability.

CVE-2022-37965

Windows Event Logging Service Denial of Service Vulnerability.

CVE-2022-37981

Windows Secure Channel Denial of Service Vulnerability.

CVE-2022-38041

Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability.

CVE-2022-37977

Red Hat Security Advisory 2022-6855-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include buffer overflow, denial of service, double free, and spoofing vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: rh-ruby30-ruby security, bug fix, and enhancement update  
Advisory ID:       RHSA-2022:6855-01  
Product:           Red Hat Software Collections  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:6855  
Issue date:        2022-10-11  
CVE Names:         CVE-2021-41816 CVE-2021-41817 CVE-2021-41819  
                   CVE-2022-28738 CVE-2022-28739  
====================================================================  
1. Summary:

An update for rh-ruby30-ruby is now available for Red Hat Software  
Collections.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64le, s390x, x86_64  
Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64

3. Description:

Ruby is an extensible, interpreted, object-oriented, scripting language. It  
has features to process text files and to perform system management tasks.

The following packages have been upgraded to a later upstream version:  
rh-ruby30-ruby (3.0.4). (BZ#2128628)

Security Fix(es):

* ruby: buffer overflow in CGI.escape_html (CVE-2021-41816)

* ruby: Regular expression denial of service vulnerability of Date parsing  
methods (CVE-2021-41817)

* ruby: Cookie prefix spoofing in CGI::Cookie.parse (CVE-2021-41819)

* Ruby: Double free in Regexp compilation (CVE-2022-28738)

* Ruby: Buffer overrun in String-to-Float conversion (CVE-2022-28739)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* rh-ruby30 ruby: User-installed rubygems plugins are not being loaded  
(BZ#2128629)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2025104 - CVE-2021-41817 ruby: Regular expression denial of service vulnerability of Date parsing methods  
2026752 - CVE-2021-41816 ruby: buffer overflow in CGI.escape_html  
2026757 - CVE-2021-41819 ruby: Cookie prefix spoofing in CGI::Cookie.parse  
2075685 - CVE-2022-28738 Ruby: Double free in Regexp compilation  
2075687 - CVE-2022-28739 Ruby: Buffer overrun in String-to-Float conversion  
2128628 - rh-ruby30-ruby: Rebase to the latest Ruby 3.0 release [rhscl-3] [rhscl-3.8.z]  
2128629 - rh-ruby30 ruby: User-installed rubygems plugins are not being loaded [rhscl-3.8.z]

6. Package List:

Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7):

Source:  
rh-ruby30-ruby-3.0.4-149.el7.src.rpm

noarch:  
rh-ruby30-ruby-default-gems-3.0.4-149.el7.noarch.rpm  
rh-ruby30-ruby-doc-3.0.4-149.el7.noarch.rpm  
rh-ruby30-rubygem-bundler-2.2.33-149.el7.noarch.rpm  
rh-ruby30-rubygem-irb-1.3.5-149.el7.noarch.rpm  
rh-ruby30-rubygem-minitest-5.14.2-149.el7.noarch.rpm  
rh-ruby30-rubygem-power_assert-1.2.0-149.el7.noarch.rpm  
rh-ruby30-rubygem-rake-13.0.3-149.el7.noarch.rpm  
rh-ruby30-rubygem-rbs-1.4.0-149.el7.noarch.rpm  
rh-ruby30-rubygem-rexml-3.2.5-149.el7.noarch.rpm  
rh-ruby30-rubygem-rss-0.2.9-149.el7.noarch.rpm  
rh-ruby30-rubygem-test-unit-3.3.7-149.el7.noarch.rpm  
rh-ruby30-rubygem-typeprof-0.15.2-149.el7.noarch.rpm  
rh-ruby30-rubygems-3.2.33-149.el7.noarch.rpm  
rh-ruby30-rubygems-devel-3.2.33-149.el7.noarch.rpm

ppc64le:  
rh-ruby30-ruby-3.0.4-149.el7.ppc64le.rpm  
rh-ruby30-ruby-debuginfo-3.0.4-149.el7.ppc64le.rpm  
rh-ruby30-ruby-devel-3.0.4-149.el7.ppc64le.rpm  
rh-ruby30-ruby-libs-3.0.4-149.el7.ppc64le.rpm  
rh-ruby30-rubygem-bigdecimal-3.0.0-149.el7.ppc64le.rpm  
rh-ruby30-rubygem-io-console-0.5.7-149.el7.ppc64le.rpm  
rh-ruby30-rubygem-json-2.5.1-149.el7.ppc64le.rpm  
rh-ruby30-rubygem-psych-3.3.2-149.el7.ppc64le.rpm

s390x:  
rh-ruby30-ruby-3.0.4-149.el7.s390x.rpm  
rh-ruby30-ruby-debuginfo-3.0.4-149.el7.s390x.rpm  
rh-ruby30-ruby-devel-3.0.4-149.el7.s390x.rpm  
rh-ruby30-ruby-libs-3.0.4-149.el7.s390x.rpm  
rh-ruby30-rubygem-bigdecimal-3.0.0-149.el7.s390x.rpm  
rh-ruby30-rubygem-io-console-0.5.7-149.el7.s390x.rpm  
rh-ruby30-rubygem-json-2.5.1-149.el7.s390x.rpm  
rh-ruby30-rubygem-psych-3.3.2-149.el7.s390x.rpm

x86_64:  
rh-ruby30-ruby-3.0.4-149.el7.x86_64.rpm  
rh-ruby30-ruby-debuginfo-3.0.4-149.el7.x86_64.rpm  
rh-ruby30-ruby-devel-3.0.4-149.el7.x86_64.rpm  
rh-ruby30-ruby-libs-3.0.4-149.el7.x86_64.rpm  
rh-ruby30-rubygem-bigdecimal-3.0.0-149.el7.x86_64.rpm  
rh-ruby30-rubygem-io-console-0.5.7-149.el7.x86_64.rpm  
rh-ruby30-rubygem-json-2.5.1-149.el7.x86_64.rpm  
rh-ruby30-rubygem-psych-3.3.2-149.el7.x86_64.rpm

Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7):

Source:  
rh-ruby30-ruby-3.0.4-149.el7.src.rpm

noarch:  
rh-ruby30-ruby-default-gems-3.0.4-149.el7.noarch.rpm  
rh-ruby30-ruby-doc-3.0.4-149.el7.noarch.rpm  
rh-ruby30-rubygem-bundler-2.2.33-149.el7.noarch.rpm  
rh-ruby30-rubygem-irb-1.3.5-149.el7.noarch.rpm  
rh-ruby30-rubygem-minitest-5.14.2-149.el7.noarch.rpm  
rh-ruby30-rubygem-power_assert-1.2.0-149.el7.noarch.rpm  
rh-ruby30-rubygem-rake-13.0.3-149.el7.noarch.rpm  
rh-ruby30-rubygem-rbs-1.4.0-149.el7.noarch.rpm  
rh-ruby30-rubygem-rexml-3.2.5-149.el7.noarch.rpm  
rh-ruby30-rubygem-rss-0.2.9-149.el7.noarch.rpm  
rh-ruby30-rubygem-test-unit-3.3.7-149.el7.noarch.rpm  
rh-ruby30-rubygem-typeprof-0.15.2-149.el7.noarch.rpm  
rh-ruby30-rubygems-3.2.33-149.el7.noarch.rpm  
rh-ruby30-rubygems-devel-3.2.33-149.el7.noarch.rpm

x86_64:  
rh-ruby30-ruby-3.0.4-149.el7.x86_64.rpm  
rh-ruby30-ruby-debuginfo-3.0.4-149.el7.x86_64.rpm  
rh-ruby30-ruby-devel-3.0.4-149.el7.x86_64.rpm  
rh-ruby30-ruby-libs-3.0.4-149.el7.x86_64.rpm  
rh-ruby30-rubygem-bigdecimal-3.0.0-149.el7.x86_64.rpm  
rh-ruby30-rubygem-io-console-0.5.7-149.el7.x86_64.rpm  
rh-ruby30-rubygem-json-2.5.1-149.el7.x86_64.rpm  
rh-ruby30-rubygem-psych-3.3.2-149.el7.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2021-41816  
https://access.redhat.com/security/cve/CVE-2021-41817  
https://access.redhat.com/security/cve/CVE-2021-41819  
https://access.redhat.com/security/cve/CVE-2022-28738  
https://access.redhat.com/security/cve/CVE-2022-28739  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY0Uv1tzjgjWX9erEAQgAKhAAjX8disZOm8gqwL8MxMVbPzYaxXlNCWSn  
/kI4e6oxz7lzw9tjdOmrdw9qgXVGY4EZAcZtkkDuQZFY6/1OfXWrFsCWInbbr6e/  
7SzF9a2XTyAxOLF1XU8IgyMKJ8TOQfsg/5CTGZpm8rIV+FjsS1u1SwhGXF1J/MWG  
TA3jlhLlqJusAGbl2xH3sjBc1ljaha3iVXstBxEfQQLJAisJf9xemU6hh45ceT90  
TOiJyRh+JqdBHXv/41l+n/4fChH1oGnk6guQPbggPrTCKMvv55VS4x4vUYDMAdXc  
w6P3De5hutdjiJzOZwvm6PlaHQOAYRlRAbFh21T6p1HhunTBYTRxqh+BK42ygAnP  
3AKhsUf/um6cMv2SWmvzEoA8xNDxaR1FKryzilpqgCyJhbf3Cx8xkWn1dyryTNwM  
d2k2anM9LbgiG05qRIV1QZcndiAZwL4fPTWE0yLd4H5a7kURkIYTwgVr8qAC5yYC  
8R58XG7whyp+zvmc+RNUCCGcIEZ9p3Fbw5x6Lz5Y0CvMV0y4R5H+qcqSqPlKeJGI  
XBCgwpKxML+7bq0eqBmheLp4XYjvbgpMKlFU/ladFg9/a2NcbHiidxtcvHzEPcq8  
oEuHjfaXnyTi7KC4PjHnDAaXxjrDsTrSNIBAcdbXA+p2ZE5FXcmRmrY3Qqz1i44j  
Q10rz6cYwlE=yEyk  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-6855-01

Red Hat Security Advisory 2022-6856-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include buffer overflow, denial of service, and spoofing vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: rh-ruby27-ruby security, bug fix, and enhancement update  
Advisory ID:       RHSA-2022:6856-01  
Product:           Red Hat Software Collections  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:6856  
Issue date:        2022-10-11  
CVE Names:         CVE-2021-41816 CVE-2021-41817 CVE-2021-41819  
                   CVE-2022-28739  
====================================================================  
1. Summary:

An update for rh-ruby27-ruby is now available for Red Hat Software  
Collections.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64le, s390x, x86_64  
Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64

3. Description:

Ruby is an extensible, interpreted, object-oriented, scripting language. It  
has features to process text files and to perform system management tasks.

The following packages have been upgraded to a later upstream version:  
rh-ruby27-ruby (2.7.6). (BZ#2128631)

Security Fix(es):

* ruby: buffer overflow in CGI.escape_html (CVE-2021-41816)

* ruby: Regular expression denial of service vulnerability of Date parsing  
methods (CVE-2021-41817)

* ruby: Cookie prefix spoofing in CGI::Cookie.parse (CVE-2021-41819)

* Ruby: Buffer overrun in String-to-Float conversion (CVE-2022-28739)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2025104 - CVE-2021-41817 ruby: Regular expression denial of service vulnerability of Date parsing methods  
2026752 - CVE-2021-41816 ruby: buffer overflow in CGI.escape_html  
2026757 - CVE-2021-41819 ruby: Cookie prefix spoofing in CGI::Cookie.parse  
2075687 - CVE-2022-28739 Ruby: Buffer overrun in String-to-Float conversion  
2128631 - rh-ruby27-ruby: Rebase to the latest Ruby 2.7 release [rhscl-3] [rhscl-3.8.z]

6. Package List:

Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7):

Source:  
rh-ruby27-ruby-2.7.6-131.el7.src.rpm

noarch:  
rh-ruby27-ruby-doc-2.7.6-131.el7.noarch.rpm  
rh-ruby27-rubygem-bundler-2.2.24-131.el7.noarch.rpm  
rh-ruby27-rubygem-did_you_mean-1.4.0-131.el7.noarch.rpm  
rh-ruby27-rubygem-irb-1.2.6-131.el7.noarch.rpm  
rh-ruby27-rubygem-minitest-5.13.0-131.el7.noarch.rpm  
rh-ruby27-rubygem-net-telnet-0.2.0-131.el7.noarch.rpm  
rh-ruby27-rubygem-power_assert-1.1.7-131.el7.noarch.rpm  
rh-ruby27-rubygem-rake-13.0.1-131.el7.noarch.rpm  
rh-ruby27-rubygem-rdoc-6.2.1.1-131.el7.noarch.rpm  
rh-ruby27-rubygem-test-unit-3.3.4-131.el7.noarch.rpm  
rh-ruby27-rubygem-xmlrpc-0.3.0-131.el7.noarch.rpm  
rh-ruby27-rubygems-3.1.6-131.el7.noarch.rpm  
rh-ruby27-rubygems-devel-3.1.6-131.el7.noarch.rpm

ppc64le:  
rh-ruby27-ruby-2.7.6-131.el7.ppc64le.rpm  
rh-ruby27-ruby-debuginfo-2.7.6-131.el7.ppc64le.rpm  
rh-ruby27-ruby-devel-2.7.6-131.el7.ppc64le.rpm  
rh-ruby27-ruby-libs-2.7.6-131.el7.ppc64le.rpm  
rh-ruby27-rubygem-bigdecimal-2.0.0-131.el7.ppc64le.rpm  
rh-ruby27-rubygem-io-console-0.5.6-131.el7.ppc64le.rpm  
rh-ruby27-rubygem-json-2.3.0-131.el7.ppc64le.rpm  
rh-ruby27-rubygem-openssl-2.1.3-131.el7.ppc64le.rpm  
rh-ruby27-rubygem-psych-3.1.0-131.el7.ppc64le.rpm  
rh-ruby27-rubygem-racc-1.4.16-131.el7.ppc64le.rpm

s390x:  
rh-ruby27-ruby-2.7.6-131.el7.s390x.rpm  
rh-ruby27-ruby-debuginfo-2.7.6-131.el7.s390x.rpm  
rh-ruby27-ruby-devel-2.7.6-131.el7.s390x.rpm  
rh-ruby27-ruby-libs-2.7.6-131.el7.s390x.rpm  
rh-ruby27-rubygem-bigdecimal-2.0.0-131.el7.s390x.rpm  
rh-ruby27-rubygem-io-console-0.5.6-131.el7.s390x.rpm  
rh-ruby27-rubygem-json-2.3.0-131.el7.s390x.rpm  
rh-ruby27-rubygem-openssl-2.1.3-131.el7.s390x.rpm  
rh-ruby27-rubygem-psych-3.1.0-131.el7.s390x.rpm  
rh-ruby27-rubygem-racc-1.4.16-131.el7.s390x.rpm

x86_64:  
rh-ruby27-ruby-2.7.6-131.el7.x86_64.rpm  
rh-ruby27-ruby-debuginfo-2.7.6-131.el7.x86_64.rpm  
rh-ruby27-ruby-devel-2.7.6-131.el7.x86_64.rpm  
rh-ruby27-ruby-libs-2.7.6-131.el7.x86_64.rpm  
rh-ruby27-rubygem-bigdecimal-2.0.0-131.el7.x86_64.rpm  
rh-ruby27-rubygem-io-console-0.5.6-131.el7.x86_64.rpm  
rh-ruby27-rubygem-json-2.3.0-131.el7.x86_64.rpm  
rh-ruby27-rubygem-openssl-2.1.3-131.el7.x86_64.rpm  
rh-ruby27-rubygem-psych-3.1.0-131.el7.x86_64.rpm  
rh-ruby27-rubygem-racc-1.4.16-131.el7.x86_64.rpm

Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7):

Source:  
rh-ruby27-ruby-2.7.6-131.el7.src.rpm

noarch:  
rh-ruby27-ruby-doc-2.7.6-131.el7.noarch.rpm  
rh-ruby27-rubygem-bundler-2.2.24-131.el7.noarch.rpm  
rh-ruby27-rubygem-did_you_mean-1.4.0-131.el7.noarch.rpm  
rh-ruby27-rubygem-irb-1.2.6-131.el7.noarch.rpm  
rh-ruby27-rubygem-minitest-5.13.0-131.el7.noarch.rpm  
rh-ruby27-rubygem-net-telnet-0.2.0-131.el7.noarch.rpm  
rh-ruby27-rubygem-power_assert-1.1.7-131.el7.noarch.rpm  
rh-ruby27-rubygem-rake-13.0.1-131.el7.noarch.rpm  
rh-ruby27-rubygem-rdoc-6.2.1.1-131.el7.noarch.rpm  
rh-ruby27-rubygem-test-unit-3.3.4-131.el7.noarch.rpm  
rh-ruby27-rubygem-xmlrpc-0.3.0-131.el7.noarch.rpm  
rh-ruby27-rubygems-3.1.6-131.el7.noarch.rpm  
rh-ruby27-rubygems-devel-3.1.6-131.el7.noarch.rpm

x86_64:  
rh-ruby27-ruby-2.7.6-131.el7.x86_64.rpm  
rh-ruby27-ruby-debuginfo-2.7.6-131.el7.x86_64.rpm  
rh-ruby27-ruby-devel-2.7.6-131.el7.x86_64.rpm  
rh-ruby27-ruby-libs-2.7.6-131.el7.x86_64.rpm  
rh-ruby27-rubygem-bigdecimal-2.0.0-131.el7.x86_64.rpm  
rh-ruby27-rubygem-io-console-0.5.6-131.el7.x86_64.rpm  
rh-ruby27-rubygem-json-2.3.0-131.el7.x86_64.rpm  
rh-ruby27-rubygem-openssl-2.1.3-131.el7.x86_64.rpm  
rh-ruby27-rubygem-psych-3.1.0-131.el7.x86_64.rpm  
rh-ruby27-rubygem-racc-1.4.16-131.el7.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2021-41816  
https://access.redhat.com/security/cve/CVE-2021-41817  
https://access.redhat.com/security/cve/CVE-2021-41819  
https://access.redhat.com/security/cve/CVE-2022-28739  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY0UvxdzjgjWX9erEAQi9PA//fVhNa9hyZTb/kZrIXEt8OtDgZE/mhMod  
bvrJ9X6LmHS5C5WSGwjlN7qm5tZJ7Y45VT/l2qD/W6SiqG0nulMGDN97/B09vrOd  
XQk5Q6UmtSVJNju81MMqYL+ZS3SMTq69dKN9dGwj7YaA4QgJPL9ZQjPEmPvaabwd  
WbWnJmx1x4omc1+KTXlHpKSCFJSRXCo1YFJf90W3uDoWUiVlbTMxUMxJ1+BM/CvF  
8YhuWH/aH7ubG2sGsiFpwaqM3t518WxIdhyQIbRsLhj3KaOFYkQQD5v9Zy9Wr9Ts  
svs74mbBIy4uxnbTdINb+jzSA3CvqXBJseV0e56ZCJ2zh7WPEtht0L+WgVEvdxrw  
o+gfV7fp95d5VPRfJR1hg+ScMFmqsQEkHe/AQT9dVztxgieD33TvC7ze2vXRiqra  
cr3XDBvFh5/guAsYtnduJa7JQzkEd2L0KS6pOWpnxdPIIIaL5wy4CT7OzCQzpCnI  
ZkO/pILOjh2sNc1sxADsTv8hUHQdYa4BRp+vM8bAcrKDRuYkT9Wv5vLOYy/9/lBj  
lPMk9q2XAc1jFZROFhFt37hCZadcqJlWIXqTURWxKKt4Hr/ULfNfQBhtmogqB02z  
wHNBJ0jIbjI9ED1cixhflDLRUMXZi5gerGvRoIjIVNMCd7Xfp26vii/zsDlzhUEN  
3OLyXI8SVsQ=Z/DV  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-6856-01

Ubuntu Security Notice 5669-1 - It was discovered that the SUNRPC RDMA protocol implementation in the Linux kernel did not properly calculate the header size of a RPC message payload. A local attacker could use this to expose sensitive information. Moshe Kol, Amit Klein and Yossi Gilad discovered that the IP implementation in the Linux kernel did not provide sufficient randomization when calculating port offsets. An attacker could possibly use this to expose sensitive information.

    ==========================================================================Ubuntu Security Notice USN-5669-1October 10, 2022linux, linux-dell300x, linux-kvm, linux-oracle, linux-raspi2,linux-snapdragon vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 18.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux: Linux kernel- linux-dell300x: Linux kernel for Dell 300x platforms- linux-kvm: Linux kernel for cloud environments- linux-oracle: Linux kernel for Oracle Cloud systems- linux-raspi2: Linux kernel for Raspberry Pi systems- linux-snapdragon: Linux kernel for Qualcomm Snapdragon processorsDetails:It was discovered that the SUNRPC RDMA protocol implementation in the Linuxkernel did not properly calculate the header size of a RPC message payload.A local attacker could use this to expose sensitive information (kernelmemory). (CVE-2022-0812)Moshe Kol, Amit Klein and Yossi Gilad discovered that the IP implementationin the Linux kernel did not provide sufficient randomization whencalculating port offsets. An attacker could possibly use this to exposesensitive information. (CVE-2022-1012, CVE-2022-32296)Duoming Zhou discovered that race conditions existed in the timer handlingimplementation of the Linux kernel's Rose X.25 protocol layer, resulting inuse-after-free vulnerabilities. A local attacker could use this to cause adenial of service (system crash). (CVE-2022-2318)Roger Pau Monné discovered that the Xen virtual block driver in the Linuxkernel did not properly initialize memory pages to be used for sharedcommunication with the backend. A local attacker could use this to exposesensitive information (guest kernel memory). (CVE-2022-26365)Roger Pau Monné discovered that the Xen paravirtualization frontend in theLinux kernel did not properly initialize memory pages to be used for sharedcommunication with the backend. A local attacker could use this to exposesensitive information (guest kernel memory). (CVE-2022-33740)It was discovered that the Xen paravirtualization frontend in the Linuxkernel incorrectly shared unrelated data when communicating with certainbackends. A local attacker could use this to cause a denial of service(guest crash) or expose sensitive information (guest kernel memory).(CVE-2022-33741, CVE-2022-33742)Oleksandr Tyshchenko discovered that the Xen paravirtualization platform inthe Linux kernel on ARM platforms contained a race condition in certainsituations. An attacker in a guest VM could use this to cause a denial ofservice in the host OS. (CVE-2022-33744)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 18.04 LTS:   linux-image-4.15.0-1054-dell300x  4.15.0-1054.59   linux-image-4.15.0-1107-oracle  4.15.0-1107.118   linux-image-4.15.0-1120-raspi2  4.15.0-1120.128   linux-image-4.15.0-1128-kvm     4.15.0-1128.133   linux-image-4.15.0-1138-snapdragon  4.15.0-1138.148   linux-image-4.15.0-194-generic  4.15.0-194.205   linux-image-4.15.0-194-generic-lpae  4.15.0-194.205   linux-image-4.15.0-194-lowlatency  4.15.0-194.205   linux-image-dell300x            4.15.0.1054.54   linux-image-generic             4.15.0.194.179   linux-image-generic-lpae        4.15.0.194.179   linux-image-kvm                 4.15.0.1128.121   linux-image-lowlatency          4.15.0.194.179   linux-image-oracle-lts-18.04    4.15.0.1107.114   linux-image-raspi2              4.15.0.1120.117   linux-image-snapdragon          4.15.0.1138.139   linux-image-virtual             4.15.0.194.179After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:   https://ubuntu.com/security/notices/USN-5669-1   CVE-2022-0812, CVE-2022-1012, CVE-2022-2318, CVE-2022-26365,   CVE-2022-32296, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742,   CVE-2022-33744Package Information:   https://launchpad.net/ubuntu/+source/linux/4.15.0-194.205   https://launchpad.net/ubuntu/+source/linux-dell300x/4.15.0-1054.59   https://launchpad.net/ubuntu/+source/linux-kvm/4.15.0-1128.133   https://launchpad.net/ubuntu/+source/linux-oracle/4.15.0-1107.118   https://launchpad.net/ubuntu/+source/linux-raspi2/4.15.0-1120.128   https://launchpad.net/ubuntu/+source/linux-snapdragon/4.15.0-1138.148

Ubuntu Security Notice USN-5669-1

Ubuntu Security Notice 5667-1 - Selim Enes Karaduman discovered that a race condition existed in the General notification queue implementation of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Pawan Kumar Gupta, Alyssa Milburn, Amit Peled, Shani Rehana, Nir Shildan and Ariel Sabba discovered that some Intel processors with Enhanced Indirect Branch Restricted Speculation did not properly handle RET instructions after a VM exits. A local attacker could potentially use this to expose sensitive information.

    ==========================================================================Ubuntu Security Notice USN-5667-1October 10, 2022linux, linux-aws, linux-aws-5.15, linux-azure, linux-azure-5.15,linux-gcp, linux-gke, linux-gkeop, linux-hwe-5.15, linux-kvm,linux-lowlatency, linux-lowlatency-hwe-5.15, linux-oracle, linux-raspivulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 22.04 LTS- Ubuntu 20.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux: Linux kernel- linux-aws: Linux kernel for Amazon Web Services (AWS) systems- linux-azure: Linux kernel for Microsoft Azure Cloud systems- linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems- linux-gke: Linux kernel for Google Container Engine (GKE) systems- linux-gkeop: Linux kernel for Google Container Engine (GKE) systems- linux-kvm: Linux kernel for cloud environments- linux-lowlatency: Linux low latency kernel- linux-oracle: Linux kernel for Oracle Cloud systems- linux-raspi: Linux kernel for Raspberry Pi systems- linux-aws-5.15: Linux kernel for Amazon Web Services (AWS) systems- linux-azure-5.15: Linux kernel for Microsoft Azure cloud systems- linux-hwe-5.15: Linux hardware enablement (HWE) kernel- linux-lowlatency-hwe-5.15: Linux low latency kernelDetails:Selim Enes Karaduman discovered that a race condition existed in theGeneral notification queue implementation of the Linux kernel, leading to ause-after-free vulnerability. A local attacker could use this to cause adenial of service (system crash) or possibly execute arbitrary code.(CVE-2022-1882)Pawan Kumar Gupta, Alyssa Milburn, Amit Peled, Shani Rehana, Nir Shildanand Ariel Sabba discovered that some Intel processors with EnhancedIndirect Branch Restricted Speculation (eIBRS) did not properly handle RETinstructions after a VM exits. A local attacker could potentially use thisto expose sensitive information. (CVE-2022-26373)Eric Biggers discovered that a use-after-free vulnerability existed in theio_uring subsystem in the Linux kernel. A local attacker could possibly usethis to cause a denial of service (system crash) or possibly executearbitrary code. (CVE-2022-3176)It was discovered that the Netlink Transformation (XFRM) subsystem in theLinux kernel contained a reference counting error. A local attacker coulduse this to cause a denial of service (system crash). (CVE-2022-36879)Jann Horn discovered that the KVM subsystem in the Linux kernel did notproperly handle TLB flush operations in some situations. A local attackerin a guest VM could use this to cause a denial of service (guest crash) orpossibly execute arbitrary code in the guest kernel. (CVE-2022-39189)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 22.04 LTS:   linux-image-5.15.0-1004-gkeop   5.15.0-1004.6   linux-image-5.15.0-1016-raspi   5.15.0-1016.18   linux-image-5.15.0-1016-raspi-nolpae  5.15.0-1016.18   linux-image-5.15.0-1017-gke     5.15.0-1017.20   linux-image-5.15.0-1019-gcp     5.15.0-1019.25   linux-image-5.15.0-1019-kvm     5.15.0-1019.23   linux-image-5.15.0-1019-oracle  5.15.0-1019.24   linux-image-5.15.0-1021-aws     5.15.0-1021.25   linux-image-5.15.0-1021-azure   5.15.0-1021.26   linux-image-5.15.0-50-generic   5.15.0-50.56   linux-image-5.15.0-50-generic-64k  5.15.0-50.56   linux-image-5.15.0-50-generic-lpae  5.15.0-50.56   linux-image-5.15.0-50-lowlatency  5.15.0-50.56   linux-image-5.15.0-50-lowlatency-64k  5.15.0-50.56   linux-image-aws                 5.15.0.1021.21   linux-image-aws-lts-22.04       5.15.0.1021.21   linux-image-azure               5.15.0.1021.20   linux-image-azure-lts-22.04     5.15.0.1021.20   linux-image-gcp                 5.15.0.1019.17   linux-image-generic             5.15.0.50.50   linux-image-generic-64k         5.15.0.50.50   linux-image-generic-64k-hwe-22.04  5.15.0.50.50   linux-image-generic-hwe-22.04   5.15.0.50.50   linux-image-generic-lpae        5.15.0.50.50   linux-image-generic-lpae-hwe-22.04  5.15.0.50.50   linux-image-gke                 5.15.0.1017.19   linux-image-gke-5.15            5.15.0.1017.19   linux-image-gkeop               5.15.0.1004.6   linux-image-gkeop-5.15          5.15.0.1004.6   linux-image-kvm                 5.15.0.1019.17   linux-image-lowlatency          5.15.0.50.46   linux-image-lowlatency-64k      5.15.0.50.46   linux-image-lowlatency-64k-hwe-22.04  5.15.0.50.46   linux-image-lowlatency-hwe-22.04  5.15.0.50.46   linux-image-oracle              5.15.0.1019.17   linux-image-raspi               5.15.0.1016.15   linux-image-raspi-nolpae        5.15.0.1016.15   linux-image-virtual             5.15.0.50.50   linux-image-virtual-hwe-22.04   5.15.0.50.50Ubuntu 20.04 LTS:   linux-image-5.15.0-1021-aws     5.15.0-1021.25~20.04.1   linux-image-5.15.0-1021-azure   5.15.0-1021.26~20.04.1   linux-image-5.15.0-50-generic   5.15.0-50.56~20.04.1   linux-image-5.15.0-50-generic-64k  5.15.0-50.56~20.04.1   linux-image-5.15.0-50-generic-lpae  5.15.0-50.56~20.04.1   linux-image-5.15.0-50-lowlatency  5.15.0-50.56~20.04.1   linux-image-5.15.0-50-lowlatency-64k  5.15.0-50.56~20.04.1   linux-image-aws                 5.15.0.1021.25~20.04.13   linux-image-azure               5.15.0.1021.26~20.04.14   linux-image-generic-64k-hwe-20.04  5.15.0.50.56~20.04.19   linux-image-generic-hwe-20.04   5.15.0.50.56~20.04.19   linux-image-generic-lpae-hwe-20.04  5.15.0.50.56~20.04.19   linux-image-lowlatency-64k-hwe-20.04  5.15.0.50.56~20.04.17   linux-image-lowlatency-hwe-20.04  5.15.0.50.56~20.04.17   linux-image-virtual-hwe-20.04   5.15.0.50.56~20.04.19After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:   https://ubuntu.com/security/notices/USN-5667-1   CVE-2022-1882, CVE-2022-26373, CVE-2022-3176, CVE-2022-36879,   CVE-2022-39189Package Information:   https://launchpad.net/ubuntu/+source/linux/5.15.0-50.56   https://launchpad.net/ubuntu/+source/linux-aws/5.15.0-1021.25   https://launchpad.net/ubuntu/+source/linux-azure/5.15.0-1021.26   https://launchpad.net/ubuntu/+source/linux-gcp/5.15.0-1019.25   https://launchpad.net/ubuntu/+source/linux-gke/5.15.0-1017.20   https://launchpad.net/ubuntu/+source/linux-gkeop/5.15.0-1004.6   https://launchpad.net/ubuntu/+source/linux-kvm/5.15.0-1019.23   https://launchpad.net/ubuntu/+source/linux-lowlatency/5.15.0-50.56   https://launchpad.net/ubuntu/+source/linux-oracle/5.15.0-1019.24   https://launchpad.net/ubuntu/+source/linux-raspi/5.15.0-1016.18   https://launchpad.net/ubuntu/+source/linux-aws-5.15/5.15.0-1021.25~20.04.1   https://launchpad.net/ubuntu/+source/linux-azure-5.15/5.15.0-1021.26~20.04.1   https://launchpad.net/ubuntu/+source/linux-hwe-5.15/5.15.0-50.56~20.04.1 https://launchpad.net/ubuntu/+source/linux-lowlatency-hwe-5.15/5.15.0-50.56~20.04.1

Tag

#dos