1. Home
  2. Security Advisories
  3. Ubuntu
  4. USN-5727-2

[USN-5727-2] Linux kernel (GCP) vulnerabilities

Severity High
Affected Packages 33
CVEs 7
Info Packages Vulnerabilities

Several security issues were fixed in the Linux kernel.

It was discovered that a race condition existed in the instruction emulator
of the Linux kernel on Arm 64-bit systems. A local attacker could use this
to cause a denial of service (system crash). (CVE-2022-20422)

It was discovered that the KVM implementation in the Linux kernel did not
properly handle virtual CPUs without APICs in certain situations. A local
attacker could possibly use this to cause a denial of service (host system
crash). (CVE-2022-2153)

Hao Sun and Jiacheng Xu discovered that the NILFS file system
implementation in the Linux kernel contained a use-after-free
vulnerability. A local attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2022-2978)

Abhishek Shah discovered a race condition in the PF_KEYv2 implementation in
the Linux kernel. A local attacker could use this to cause a denial of
service (system crash) or possibly expose sensitive information (kernel
memory). (CVE-2022-3028)

It was discovered that the IDT 77252 ATM PCI device driver in the Linux
kernel did not properly remove any pending timers during device exit,
resulting in a use-after-free vulnerability. A local attacker could
possibly use this to cause a denial of service (system crash) or execute
arbitrary code. (CVE-2022-3635)

It was discovered that the Netlink Transformation (XFRM) subsystem in the
Linux kernel contained a reference counting error. A local attacker could
use this to cause a denial of service (system crash). (CVE-2022-36879)

Xingyuan Mo and Gengjia Chen discovered that the Promise SuperTrak EX
storage controller driver in the Linux kernel did not properly handle
certain structures. A local attacker could potentially use this to expose
sensitive information (kernel memory). (CVE-2022-40768)

Package Affected Version
pkg:deb/ubuntu/linux-tools-gke?distro=xenial < 4.15.0.1138.132
pkg:deb/ubuntu/linux-tools-gcp?distro=xenial < 4.15.0.1138.132
pkg:deb/ubuntu/linux-tools-gcp-lts-18.04?distro=bionic < 4.15.0.1138.154
pkg:deb/ubuntu/linux-tools-4.15.0-1138-gcp?distro=xenial < 4.15.0-1138.154~16.04.1
pkg:deb/ubuntu/linux-tools-4.15.0-1138-gcp?distro=bionic < 4.15.0-1138.154
pkg:deb/ubuntu/linux-modules-extra-gke?distro=xenial < 4.15.0.1138.132
pkg:deb/ubuntu/linux-modules-extra-gcp?distro=xenial < 4.15.0.1138.132
pkg:deb/ubuntu/linux-modules-extra-gcp-lts-18.04?distro=bionic < 4.15.0.1138.154
pkg:deb/ubuntu/linux-modules-extra-4.15.0-1138-gcp?distro=xenial < 4.15.0-1138.154~16.04.1
pkg:deb/ubuntu/linux-modules-extra-4.15.0-1138-gcp?distro=bionic < 4.15.0-1138.154
pkg:deb/ubuntu/linux-modules-4.15.0-1138-gcp?distro=xenial < 4.15.0-1138.154~16.04.1
pkg:deb/ubuntu/linux-modules-4.15.0-1138-gcp?distro=bionic < 4.15.0-1138.154
pkg:deb/ubuntu/linux-image-unsigned-4.15.0-1138-gcp?distro=xenial < 4.15.0-1138.154~16.04.1
pkg:deb/ubuntu/linux-image-unsigned-4.15.0-1138-gcp?distro=bionic < 4.15.0-1138.154
pkg:deb/ubuntu/linux-image-gke?distro=xenial < 4.15.0.1138.132
pkg:deb/ubuntu/linux-image-gcp?distro=xenial < 4.15.0.1138.132
pkg:deb/ubuntu/linux-image-gcp-lts-18.04?distro=bionic < 4.15.0.1138.154
pkg:deb/ubuntu/linux-image-4.15.0-1138-gcp?distro=xenial < 4.15.0-1138.154~16.04.1
pkg:deb/ubuntu/linux-image-4.15.0-1138-gcp?distro=bionic < 4.15.0-1138.154
pkg:deb/ubuntu/linux-headers-gke?distro=xenial < 4.15.0.1138.132
pkg:deb/ubuntu/linux-headers-gcp?distro=xenial < 4.15.0.1138.132
pkg:deb/ubuntu/linux-headers-gcp-lts-18.04?distro=bionic < 4.15.0.1138.154
pkg:deb/ubuntu/linux-headers-4.15.0-1138-gcp?distro=xenial < 4.15.0-1138.154~16.04.1
pkg:deb/ubuntu/linux-headers-4.15.0-1138-gcp?distro=bionic < 4.15.0-1138.154
pkg:deb/ubuntu/linux-gke?distro=xenial < 4.15.0.1138.132
pkg:deb/ubuntu/linux-gcp?distro=xenial < 4.15.0.1138.132
pkg:deb/ubuntu/linux-gcp-tools-4.15.0-1138?distro=xenial < 4.15.0-1138.154~16.04.1
pkg:deb/ubuntu/linux-gcp-lts-18.04?distro=bionic < 4.15.0.1138.154
pkg:deb/ubuntu/linux-gcp-headers-4.15.0-1138?distro=xenial < 4.15.0-1138.154~16.04.1
pkg:deb/ubuntu/linux-gcp-4.15-tools-4.15.0-1138?distro=bionic < 4.15.0-1138.154
pkg:deb/ubuntu/linux-gcp-4.15-headers-4.15.0-1138?distro=bionic < 4.15.0-1138.154
pkg:deb/ubuntu/linux-buildinfo-4.15.0-1138-gcp?distro=xenial < 4.15.0-1138.154~16.04.1
pkg:deb/ubuntu/linux-buildinfo-4.15.0-1138-gcp?distro=bionic < 4.15.0-1138.154
ID
USN-5727-2
Severity
high
Severity from
CVE-2022-2978
URL
https://ubuntu.com/security/notices/USN-5727-2
Published
2022-11-18T20:47:25
(22 months ago)
Modified
2022-11-18T20:47:25
(22 months ago)
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:deb/ubuntu/linux-tools-gke?distro=xenial ubuntu linux-tools-gke < 4.15.0.1138.132 xenial
Affected pkg:deb/ubuntu/linux-tools-gcp?distro=xenial ubuntu linux-tools-gcp < 4.15.0.1138.132 xenial
Affected pkg:deb/ubuntu/linux-tools-gcp-lts-18.04?distro=bionic ubuntu linux-tools-gcp-lts-18.04 < 4.15.0.1138.154 bionic
Affected pkg:deb/ubuntu/linux-tools-4.15.0-1138-gcp?distro=xenial ubuntu linux-tools-4.15.0-1138-gcp < 4.15.0-1138.154~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-tools-4.15.0-1138-gcp?distro=bionic ubuntu linux-tools-4.15.0-1138-gcp < 4.15.0-1138.154 bionic
Affected pkg:deb/ubuntu/linux-modules-extra-gke?distro=xenial ubuntu linux-modules-extra-gke < 4.15.0.1138.132 xenial
Affected pkg:deb/ubuntu/linux-modules-extra-gcp?distro=xenial ubuntu linux-modules-extra-gcp < 4.15.0.1138.132 xenial
Affected pkg:deb/ubuntu/linux-modules-extra-gcp-lts-18.04?distro=bionic ubuntu linux-modules-extra-gcp-lts-18.04 < 4.15.0.1138.154 bionic
Affected pkg:deb/ubuntu/linux-modules-extra-4.15.0-1138-gcp?distro=xenial ubuntu linux-modules-extra-4.15.0-1138-gcp < 4.15.0-1138.154~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-modules-extra-4.15.0-1138-gcp?distro=bionic ubuntu linux-modules-extra-4.15.0-1138-gcp < 4.15.0-1138.154 bionic
Affected pkg:deb/ubuntu/linux-modules-4.15.0-1138-gcp?distro=xenial ubuntu linux-modules-4.15.0-1138-gcp < 4.15.0-1138.154~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-modules-4.15.0-1138-gcp?distro=bionic ubuntu linux-modules-4.15.0-1138-gcp < 4.15.0-1138.154 bionic
Affected pkg:deb/ubuntu/linux-image-unsigned-4.15.0-1138-gcp?distro=xenial ubuntu linux-image-unsigned-4.15.0-1138-gcp < 4.15.0-1138.154~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-image-unsigned-4.15.0-1138-gcp?distro=bionic ubuntu linux-image-unsigned-4.15.0-1138-gcp < 4.15.0-1138.154 bionic
Affected pkg:deb/ubuntu/linux-image-gke?distro=xenial ubuntu linux-image-gke < 4.15.0.1138.132 xenial
Affected pkg:deb/ubuntu/linux-image-gcp?distro=xenial ubuntu linux-image-gcp < 4.15.0.1138.132 xenial
Affected pkg:deb/ubuntu/linux-image-gcp-lts-18.04?distro=bionic ubuntu linux-image-gcp-lts-18.04 < 4.15.0.1138.154 bionic
Affected pkg:deb/ubuntu/linux-image-4.15.0-1138-gcp?distro=xenial ubuntu linux-image-4.15.0-1138-gcp < 4.15.0-1138.154~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-image-4.15.0-1138-gcp?distro=bionic ubuntu linux-image-4.15.0-1138-gcp < 4.15.0-1138.154 bionic
Affected pkg:deb/ubuntu/linux-headers-gke?distro=xenial ubuntu linux-headers-gke < 4.15.0.1138.132 xenial
Affected pkg:deb/ubuntu/linux-headers-gcp?distro=xenial ubuntu linux-headers-gcp < 4.15.0.1138.132 xenial
Affected pkg:deb/ubuntu/linux-headers-gcp-lts-18.04?distro=bionic ubuntu linux-headers-gcp-lts-18.04 < 4.15.0.1138.154 bionic
Affected pkg:deb/ubuntu/linux-headers-4.15.0-1138-gcp?distro=xenial ubuntu linux-headers-4.15.0-1138-gcp < 4.15.0-1138.154~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-headers-4.15.0-1138-gcp?distro=bionic ubuntu linux-headers-4.15.0-1138-gcp < 4.15.0-1138.154 bionic
Affected pkg:deb/ubuntu/linux-gke?distro=xenial ubuntu linux-gke < 4.15.0.1138.132 xenial
Affected pkg:deb/ubuntu/linux-gcp?distro=xenial ubuntu linux-gcp < 4.15.0.1138.132 xenial
Affected pkg:deb/ubuntu/linux-gcp-tools-4.15.0-1138?distro=xenial ubuntu linux-gcp-tools-4.15.0-1138 < 4.15.0-1138.154~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-gcp-lts-18.04?distro=bionic ubuntu linux-gcp-lts-18.04 < 4.15.0.1138.154 bionic
Affected pkg:deb/ubuntu/linux-gcp-headers-4.15.0-1138?distro=xenial ubuntu linux-gcp-headers-4.15.0-1138 < 4.15.0-1138.154~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-gcp-4.15-tools-4.15.0-1138?distro=bionic ubuntu linux-gcp-4.15-tools-4.15.0-1138 < 4.15.0-1138.154 bionic
Affected pkg:deb/ubuntu/linux-gcp-4.15-headers-4.15.0-1138?distro=bionic ubuntu linux-gcp-4.15-headers-4.15.0-1138 < 4.15.0-1138.154 bionic
Affected pkg:deb/ubuntu/linux-buildinfo-4.15.0-1138-gcp?distro=xenial ubuntu linux-buildinfo-4.15.0-1138-gcp < 4.15.0-1138.154~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-buildinfo-4.15.0-1138-gcp?distro=bionic ubuntu linux-buildinfo-4.15.0-1138-gcp < 4.15.0-1138.154 bionic
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date