[USN-6255-1] Linux kernel (Intel IoTG) vulnerabilities

Severity High

Affected Packages 28

CVEs 6

Several security issues were fixed in the Linux kernel.

It was discovered that the IP-VLAN network driver for the Linux kernel did
not properly initialize memory in some situations, leading to an out-of-
bounds write vulnerability. An attacker could use this to cause a denial of
service (system crash) or possibly execute arbitrary code. (CVE-2023-3090)

Mingi Cho discovered that the netfilter subsystem in the Linux kernel did
not properly validate the status of a nft chain while performing a lookup
by id, leading to a use-after-free vulnerability. An attacker could use
this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2023-31248)

Querijn Voet discovered that a race condition existed in the io_uring
subsystem in the Linux kernel, leading to a use-after-free vulnerability. A
local attacker could use this to cause a denial of service (system crash)
or possibly execute arbitrary code. (CVE-2023-3389)

It was discovered that the netfilter subsystem in the Linux kernel did not
properly handle some error conditions, leading to a use-after-free
vulnerability. A local attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2023-3390)

Lin Ma discovered that a race condition existed in the MCTP implementation
in the Linux kernel, leading to a use-after-free vulnerability. A
privileged attacker could use this to cause a denial of service (system
crash) or possibly execute arbitrary code. (CVE-2023-3439)

Tanguy Dubroca discovered that the netfilter subsystem in the Linux kernel
did not properly handle certain pointer data type, leading to an out-of-
bounds write vulnerability. A privileged attacker could use this to cause a
denial of service (system crash) or possibly execute arbitrary code.
(CVE-2023-35001)

Package	Affected Version
pkg:deb/ubuntu/linux-tools-intel?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-tools-intel-iotg?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-tools-intel-iotg-edge?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-tools-5.15.0-1036-intel-iotg?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-modules-iwlwifi-5.15.0-1036-intel-iotg?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-modules-extra-5.15.0-1036-intel-iotg?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-modules-5.15.0-1036-intel-iotg?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-intel?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-intel-iotg?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-intel-iotg-edge?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-intel-iotg-5.15-tools-host?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-intel-iotg-5.15-tools-common?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-intel-iotg-5.15-tools-5.15.0-1036?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-intel-iotg-5.15-headers-5.15.0-1036?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-intel-iotg-5.15-cloud-tools-common?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-intel-iotg-5.15-cloud-tools-5.15.0-1036?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-image-unsigned-5.15.0-1036-intel-iotg?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-image-intel?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-image-intel-iotg?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-image-intel-iotg-edge?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-image-5.15.0-1036-intel-iotg?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-headers-intel?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-headers-intel-iotg?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-headers-intel-iotg-edge?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-headers-5.15.0-1036-intel-iotg?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-cloud-tools-intel?distro=focal	< 5.15.0.1036.41~20.04.26
pkg:deb/ubuntu/linux-cloud-tools-5.15.0-1036-intel-iotg?distro=focal	< 5.15.0-1036.41~20.04.1
pkg:deb/ubuntu/linux-buildinfo-5.15.0-1036-intel-iotg?distro=focal	< 5.15.0-1036.41~20.04.1

ID

USN-6255-1

Severity

high

Severity from

CVE-2023-3090

URL

https://ubuntu.com/security/notices/USN-6255-1

Published

2023-07-26T18:41:25
(14 months ago)

Modified

2023-07-26T18:41:25
(14 months ago)

Other Advisories

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform
Affected	pkg:deb/ubuntu/linux-tools-intel?distro=focal	ubuntu	linux-tools-intel	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-tools-intel-iotg?distro=focal	ubuntu	linux-tools-intel-iotg	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-tools-intel-iotg-edge?distro=focal	ubuntu	linux-tools-intel-iotg-edge	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-tools-5.15.0-1036-intel-iotg?distro=focal	ubuntu	linux-tools-5.15.0-1036-intel-iotg	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-modules-iwlwifi-5.15.0-1036-intel-iotg?distro=focal	ubuntu	linux-modules-iwlwifi-5.15.0-1036-intel-iotg	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-modules-extra-5.15.0-1036-intel-iotg?distro=focal	ubuntu	linux-modules-extra-5.15.0-1036-intel-iotg	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-modules-5.15.0-1036-intel-iotg?distro=focal	ubuntu	linux-modules-5.15.0-1036-intel-iotg	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-intel?distro=focal	ubuntu	linux-intel	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-intel-iotg?distro=focal	ubuntu	linux-intel-iotg	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-intel-iotg-edge?distro=focal	ubuntu	linux-intel-iotg-edge	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-intel-iotg-5.15-tools-host?distro=focal	ubuntu	linux-intel-iotg-5.15-tools-host	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-intel-iotg-5.15-tools-common?distro=focal	ubuntu	linux-intel-iotg-5.15-tools-common	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-intel-iotg-5.15-tools-5.15.0-1036?distro=focal	ubuntu	linux-intel-iotg-5.15-tools-5.15.0-1036	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-intel-iotg-5.15-headers-5.15.0-1036?distro=focal	ubuntu	linux-intel-iotg-5.15-headers-5.15.0-1036	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-intel-iotg-5.15-cloud-tools-common?distro=focal	ubuntu	linux-intel-iotg-5.15-cloud-tools-common	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-intel-iotg-5.15-cloud-tools-5.15.0-1036?distro=focal	ubuntu	linux-intel-iotg-5.15-cloud-tools-5.15.0-1036	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-image-unsigned-5.15.0-1036-intel-iotg?distro=focal	ubuntu	linux-image-unsigned-5.15.0-1036-intel-iotg	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-image-intel?distro=focal	ubuntu	linux-image-intel	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-image-intel-iotg?distro=focal	ubuntu	linux-image-intel-iotg	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-image-intel-iotg-edge?distro=focal	ubuntu	linux-image-intel-iotg-edge	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-image-5.15.0-1036-intel-iotg?distro=focal	ubuntu	linux-image-5.15.0-1036-intel-iotg	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-headers-intel?distro=focal	ubuntu	linux-headers-intel	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-headers-intel-iotg?distro=focal	ubuntu	linux-headers-intel-iotg	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-headers-intel-iotg-edge?distro=focal	ubuntu	linux-headers-intel-iotg-edge	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-headers-5.15.0-1036-intel-iotg?distro=focal	ubuntu	linux-headers-5.15.0-1036-intel-iotg	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-cloud-tools-intel?distro=focal	ubuntu	linux-cloud-tools-intel	< 5.15.0.1036.41~20.04.26	focal
Affected	pkg:deb/ubuntu/linux-cloud-tools-5.15.0-1036-intel-iotg?distro=focal	ubuntu	linux-cloud-tools-5.15.0-1036-intel-iotg	< 5.15.0-1036.41~20.04.1	focal
Affected	pkg:deb/ubuntu/linux-buildinfo-5.15.0-1036-intel-iotg?distro=focal	ubuntu	linux-buildinfo-5.15.0-1036-intel-iotg	< 5.15.0-1036.41~20.04.1	focal

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date