Linux kernel vulnerabilities

2023-04-2600:00:00

ubuntu.com

ubuntu

linux kernel

vulnerabilities

esm

traffic-control index

sfb packet scheduling

realtek rtl8712u

tipc protocol

xircom pcmcia

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.9%

JSON

Releases

Ubuntu 16.04 ESM
Ubuntu 14.04 ESM

Packages

linux - Linux kernel
linux-aws - Linux kernel for Amazon Web Services (AWS) systems
linux-kvm - Linux kernel for cloud environments
linux-lts-xenial - Linux hardware enablement kernel from Xenial for Trusty

Details

It was discovered that the Traffic-Control Index (TCINDEX) implementation
in the Linux kernel did not properly perform filter deactivation in some
situations. A local attacker could possibly use this to gain elevated
privileges. Please note that with the fix for this CVE, kernel support for
the TCINDEX classifier has been removed. (CVE-2023-1829)

Gwnaun Jung discovered that the SFB packet scheduling implementation in the
Linux kernel contained a use-after-free vulnerability. A local attacker
could use this to cause a denial of service (system crash) or possibly
execute arbitrary code. (CVE-2022-3586)

Zheng Wang and Zhuorao Yang discovered that the RealTek RTL8712U wireless
driver in the Linux kernel contained a use-after-free vulnerability. A
local attacker could use this to cause a denial of service (system crash)
or possibly execute arbitrary code. (CVE-2022-4095)

It was discovered that the TIPC protocol implementation in the Linux kernel
did not properly validate the queue of socket buffers (skb) when handling
certain UDP packets. A remote attacker could use this to cause a denial of
service. (CVE-2023-1390)

It was discovered that the Xircom PCMCIA network device driver in the Linux
kernel did not properly handle device removal events. A physically
proximate attacker could use this to cause a denial of service (system
crash). (CVE-2023-1670)

OSVersionArchitecturePackageVersionFilename
Ubuntu16.04noarchlinux-image-virtual< 4.4.0.240.246UNKNOWN
Ubuntu16.04noarchlinux-cloud-tools-generic< 4.4.0.210.216UNKNOWN
Ubuntu16.04noarchlinux-cloud-tools-generic-lts-utopic< 4.4.0.210.216UNKNOWN
Ubuntu16.04noarchlinux-cloud-tools-generic-lts-vivid< 4.4.0.210.216UNKNOWN
Ubuntu16.04noarchlinux-cloud-tools-generic-lts-wily< 4.4.0.210.216UNKNOWN
Ubuntu16.04noarchlinux-cloud-tools-generic-lts-xenial< 4.4.0.210.216UNKNOWN
Ubuntu16.04noarchlinux-cloud-tools-lowlatency< 4.4.0.210.216UNKNOWN
Ubuntu16.04noarchlinux-cloud-tools-lowlatency-lts-utopic< 4.4.0.210.216UNKNOWN
Ubuntu16.04noarchlinux-cloud-tools-lowlatency-lts-vivid< 4.4.0.210.216UNKNOWN
Ubuntu16.04noarchlinux-cloud-tools-lowlatency-lts-wily< 4.4.0.210.216UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	16.04	noarch	linux-image-virtual	< 4.4.0.240.246	UNKNOWN
Ubuntu	16.04	noarch	linux-cloud-tools-generic	< 4.4.0.210.216	UNKNOWN
Ubuntu	16.04	noarch	linux-cloud-tools-generic-lts-utopic	< 4.4.0.210.216	UNKNOWN
Ubuntu	16.04	noarch	linux-cloud-tools-generic-lts-vivid	< 4.4.0.210.216	UNKNOWN
Ubuntu	16.04	noarch	linux-cloud-tools-generic-lts-wily	< 4.4.0.210.216	UNKNOWN
Ubuntu	16.04	noarch	linux-cloud-tools-generic-lts-xenial	< 4.4.0.210.216	UNKNOWN
Ubuntu	16.04	noarch	linux-cloud-tools-lowlatency	< 4.4.0.210.216	UNKNOWN
Ubuntu	16.04	noarch	linux-cloud-tools-lowlatency-lts-utopic	< 4.4.0.210.216	UNKNOWN
Ubuntu	16.04	noarch	linux-cloud-tools-lowlatency-lts-vivid	< 4.4.0.210.216	UNKNOWN
Ubuntu	16.04	noarch	linux-cloud-tools-lowlatency-lts-wily	< 4.4.0.210.216	UNKNOWN