1. Home
  2. Security Advisories
  3. Ubuntu
  4. USN-5302-1

[USN-5302-1] Linux kernel (OEM) vulnerabilities

Severity High
Affected Packages 25
CVEs 6
Info Packages Vulnerabilities

Several security issues were fixed in the Linux kernel.

Yiqi Sun and Kevin Wang discovered that the cgroups implementation in the
Linux kernel did not properly restrict access to the cgroups v1
release_agent feature. A local attacker could use this to gain
administrative privileges. (CVE-2022-0492)

Brendan Dolan-Gavitt discovered that the Marvell WiFi-Ex USB device driver
in the Linux kernel did not properly handle some error conditions. A
physically proximate attacker could use this to cause a denial of service
(system crash). (CVE-2021-43976)

Wenqing Liu discovered that the f2fs file system implementation in the
Linux kernel did not properly validate inode types while performing garbage
collection. An attacker could use this to construct a malicious f2fs image
that, when mounted and operated on, could cause a denial of service (system
crash). (CVE-2021-44879)

Samuel Page discovered that the Transparent Inter-Process Communication
(TIPC) protocol implementation in the Linux kernel contained a stack-based
buffer overflow. A remote attacker could use this to cause a denial of
service (system crash) for systems that have a TIPC bearer configured.
(CVE-2022-0435)

Lyu Tao discovered that the NFS implementation in the Linux kernel did not
properly handle requests to open a directory on a regular file. A local
attacker could use this to expose sensitive information (kernel memory).
(CVE-2022-24448)

It was discovered that the YAM AX.25 device driver in the Linux kernel did
not properly deallocate memory in some error conditions. A local privileged
attacker could use this to cause a denial of service (kernel memory
exhaustion). (CVE-2022-24959)

Package Affected Version
pkg:deb/ubuntu/linux-tools-oem-20.04d?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-tools-oem-20.04c?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-tools-oem-20.04b?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-tools-oem-20.04?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-tools-5.14.0-1024-oem?distro=focal < 5.14.0-1024.26
pkg:deb/ubuntu/linux-oem-5.14-tools-host?distro=focal < 5.14.0-1024.26
pkg:deb/ubuntu/linux-oem-5.14-tools-5.14.0-1024?distro=focal < 5.14.0-1024.26
pkg:deb/ubuntu/linux-oem-5.14-headers-5.14.0-1024?distro=focal < 5.14.0-1024.26
pkg:deb/ubuntu/linux-oem-20.04d?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-oem-20.04c?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-oem-20.04b?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-oem-20.04?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-modules-5.14.0-1024-oem?distro=focal < 5.14.0-1024.26
pkg:deb/ubuntu/linux-image-unsigned-5.14.0-1024-oem?distro=focal < 5.14.0-1024.26
pkg:deb/ubuntu/linux-image-oem-20.04d?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-image-oem-20.04c?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-image-oem-20.04b?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-image-oem-20.04?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-image-5.14.0-1024-oem?distro=focal < 5.14.0-1024.26
pkg:deb/ubuntu/linux-headers-oem-20.04d?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-headers-oem-20.04c?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-headers-oem-20.04b?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-headers-oem-20.04?distro=focal < 5.14.0.1024.22
pkg:deb/ubuntu/linux-headers-5.14.0-1024-oem?distro=focal < 5.14.0-1024.26
pkg:deb/ubuntu/linux-buildinfo-5.14.0-1024-oem?distro=focal < 5.14.0-1024.26
ID
USN-5302-1
Severity
high
URL
https://ubuntu.com/security/notices/USN-5302-1
Published
2022-02-22T22:45:56
(2 years ago)
Modified
2022-02-22T22:45:56
(2 years ago)
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:deb/ubuntu/linux-tools-oem-20.04d?distro=focal ubuntu linux-tools-oem-20.04d < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-tools-oem-20.04c?distro=focal ubuntu linux-tools-oem-20.04c < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-tools-oem-20.04b?distro=focal ubuntu linux-tools-oem-20.04b < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-tools-oem-20.04?distro=focal ubuntu linux-tools-oem-20.04 < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-tools-5.14.0-1024-oem?distro=focal ubuntu linux-tools-5.14.0-1024-oem < 5.14.0-1024.26 focal
Affected pkg:deb/ubuntu/linux-oem-5.14-tools-host?distro=focal ubuntu linux-oem-5.14-tools-host < 5.14.0-1024.26 focal
Affected pkg:deb/ubuntu/linux-oem-5.14-tools-5.14.0-1024?distro=focal ubuntu linux-oem-5.14-tools-5.14.0-1024 < 5.14.0-1024.26 focal
Affected pkg:deb/ubuntu/linux-oem-5.14-headers-5.14.0-1024?distro=focal ubuntu linux-oem-5.14-headers-5.14.0-1024 < 5.14.0-1024.26 focal
Affected pkg:deb/ubuntu/linux-oem-20.04d?distro=focal ubuntu linux-oem-20.04d < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-oem-20.04c?distro=focal ubuntu linux-oem-20.04c < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-oem-20.04b?distro=focal ubuntu linux-oem-20.04b < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-oem-20.04?distro=focal ubuntu linux-oem-20.04 < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-modules-5.14.0-1024-oem?distro=focal ubuntu linux-modules-5.14.0-1024-oem < 5.14.0-1024.26 focal
Affected pkg:deb/ubuntu/linux-image-unsigned-5.14.0-1024-oem?distro=focal ubuntu linux-image-unsigned-5.14.0-1024-oem < 5.14.0-1024.26 focal
Affected pkg:deb/ubuntu/linux-image-oem-20.04d?distro=focal ubuntu linux-image-oem-20.04d < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-image-oem-20.04c?distro=focal ubuntu linux-image-oem-20.04c < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-image-oem-20.04b?distro=focal ubuntu linux-image-oem-20.04b < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-image-oem-20.04?distro=focal ubuntu linux-image-oem-20.04 < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-image-5.14.0-1024-oem?distro=focal ubuntu linux-image-5.14.0-1024-oem < 5.14.0-1024.26 focal
Affected pkg:deb/ubuntu/linux-headers-oem-20.04d?distro=focal ubuntu linux-headers-oem-20.04d < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-headers-oem-20.04c?distro=focal ubuntu linux-headers-oem-20.04c < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-headers-oem-20.04b?distro=focal ubuntu linux-headers-oem-20.04b < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-headers-oem-20.04?distro=focal ubuntu linux-headers-oem-20.04 < 5.14.0.1024.22 focal
Affected pkg:deb/ubuntu/linux-headers-5.14.0-1024-oem?distro=focal ubuntu linux-headers-5.14.0-1024-oem < 5.14.0-1024.26 focal
Affected pkg:deb/ubuntu/linux-buildinfo-5.14.0-1024-oem?distro=focal ubuntu linux-buildinfo-5.14.0-1024-oem < 5.14.0-1024.26 focal
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date