[USN-6548-3] Linux kernel (Oracle) vulnerabilities
Several security issues were fixed in the Linux kernel.
It was discovered that Spectre-BHB mitigations were missing for Ampere
processors. A local attacker could potentially use this to expose sensitive
information. (CVE-2023-3006)
It was discovered that the USB subsystem in the Linux kernel contained a
race condition while handling device descriptors in certain situations,
leading to a out-of-bounds read vulnerability. A local attacker could
possibly use this to cause a denial of service (system crash).
(CVE-2023-37453)
Lucas Leong discovered that the netfilter subsystem in the Linux kernel did
not properly validate some attributes passed from userspace. A local
attacker could use this to cause a denial of service (system crash) or
possibly expose sensitive information (kernel memory). (CVE-2023-39189)
Sunjoo Park discovered that the netfilter subsystem in the Linux kernel did
not properly validate u32 packets content, leading to an out-of-bounds read
vulnerability. A local attacker could use this to cause a denial of service
(system crash) or possibly expose sensitive information. (CVE-2023-39192)
Lucas Leong discovered that the netfilter subsystem in the Linux kernel did
not properly validate SCTP data, leading to an out-of-bounds read
vulnerability. A local attacker could use this to cause a denial of service
(system crash) or possibly expose sensitive information. (CVE-2023-39193)
Lucas Leong discovered that the Netlink Transformation (XFRM) subsystem in
the Linux kernel did not properly handle state filters, leading to an out-
of-bounds read vulnerability. A privileged local attacker could use this to
cause a denial of service (system crash) or possibly expose sensitive
information. (CVE-2023-39194)
Kyle Zeng discovered that the IPv4 implementation in the Linux kernel did
not properly handle socket buffers (skb) when performing IP routing in
certain circumstances, leading to a null pointer dereference vulnerability.
A privileged attacker could use this to cause a denial of service (system
crash). (CVE-2023-42754)
Alon Zahavi discovered that the NVMe-oF/TCP subsystem in the Linux kernel
did not properly handle queue initialization failures in certain
situations, leading to a use-after-free vulnerability. A remote attacker
could use this to cause a denial of service (system crash) or possibly
execute arbitrary code. (CVE-2023-5178)
Budimir Markovic discovered that the perf subsystem in the Linux kernel did
not properly handle event groups, leading to an out-of-bounds write
vulnerability. A local attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2023-5717)
It was discovered that the TLS subsystem in the Linux kernel did not
properly perform cryptographic operations in some situations, leading to a
null pointer dereference vulnerability. A local attacker could use this to
cause a denial of service (system crash) or possibly execute arbitrary
code. (CVE-2023-6176)
- ID
- USN-6548-3
- Severity
- high
- Severity from
- CVE-2023-5178
- URL
- https://ubuntu.com/security/notices/USN-6548-3
- Published
-
2023-12-13T14:09:42
(9 months ago) - Modified
-
2023-12-13T14:09:42
(9 months ago) - Other Advisories
-
- ALAS-2023-1838
- ALAS-2023-1883
- ALAS2-2023-2264
- ALAS2-2023-2328
- ALAS2-2023-2340
- ALSA-2023:7549
- ALSA-2024:0897
- ALSA-2024:3138
- DSA-5594-1
- ELSA-2023-13019
- ELSA-2023-13043
- ELSA-2023-13044
- ELSA-2023-13048
- ELSA-2023-13049
- ELSA-2023-7549
- ELSA-2024-0461
- ELSA-2024-0897
- ELSA-2024-12094
- ELSA-2024-12169
- ELSA-2024-12258
- ELSA-2024-1248
- ELSA-2024-2394
- ELSA-2024-3138
- FEDORA-2023-50bd7c9c12
- FEDORA-2023-830d9ec624
- FEDORA-2023-c3bb819677
- MS:CVE-2023-5178
- MS:CVE-2023-5717
- RHSA-2023:7548
- RHSA-2023:7549
- RHSA-2023:7554
- RHSA-2024:0340
- RHSA-2024:0881
- RHSA-2024:0897
- RHSA-2024:2950
- RHSA-2024:3138
- RLSA-2023:7549
- RLSA-2024:3138
- SSA:2023-325-01
- SUSE-SU-2023:2500-1
- SUSE-SU-2023:2646-1
- SUSE-SU-2023:2653-1
- SUSE-SU-2023:2782-1
- SUSE-SU-2023:2809-1
- SUSE-SU-2023:2871-1
- SUSE-SU-2023:3599-1
- SUSE-SU-2023:3599-2
- SUSE-SU-2023:3600-1
- SUSE-SU-2023:3600-2
- SUSE-SU-2023:3656-1
- SUSE-SU-2023:3682-1
- SUSE-SU-2023:3683-1
- SUSE-SU-2023:3704-1
- SUSE-SU-2023:3964-1
- SUSE-SU-2023:3969-1
- SUSE-SU-2023:3971-1
- SUSE-SU-2023:3988-1
- SUSE-SU-2023:4031-1
- SUSE-SU-2023:4032-1
- SUSE-SU-2023:4033-1
- SUSE-SU-2023:4035-1
- SUSE-SU-2023:4057-1
- SUSE-SU-2023:4058-1
- SUSE-SU-2023:4071-1
- SUSE-SU-2023:4072-1
- SUSE-SU-2023:4072-2
- SUSE-SU-2023:4093-1
- SUSE-SU-2023:4343-1
- SUSE-SU-2023:4345-1
- SUSE-SU-2023:4346-1
- SUSE-SU-2023:4347-1
- SUSE-SU-2023:4348-1
- SUSE-SU-2023:4349-1
- SUSE-SU-2023:4351-1
- SUSE-SU-2023:4358-1
- SUSE-SU-2023:4359-1
- SUSE-SU-2023:4375-1
- SUSE-SU-2023:4377-1
- SUSE-SU-2023:4378-1
- SUSE-SU-2023:4414-1
- SUSE-SU-2023:4730-1
- SUSE-SU-2023:4731-1
- SUSE-SU-2023:4732-1
- SUSE-SU-2023:4733-1
- SUSE-SU-2023:4734-1
- SUSE-SU-2023:4735-1
- SUSE-SU-2023:4782-1
- SUSE-SU-2023:4783-1
- SUSE-SU-2023:4784-1
- SUSE-SU-2023:4810-1
- SUSE-SU-2023:4811-1
- SUSE-SU-2023:4882-1
- SUSE-SU-2023:4883-1
- SUSE-SU-2024:0112-1
- SUSE-SU-2024:0331-1
- SUSE-SU-2024:0344-1
- SUSE-SU-2024:0348-1
- SUSE-SU-2024:0351-1
- SUSE-SU-2024:0352-1
- SUSE-SU-2024:0358-1
- SUSE-SU-2024:0378-1
- SUSE-SU-2024:0389-1
- SUSE-SU-2024:0395-1
- SUSE-SU-2024:0409-1
- SUSE-SU-2024:0411-1
- SUSE-SU-2024:0414-1
- SUSE-SU-2024:0421-1
- SUSE-SU-2024:0428-1
- SUSE-SU-2024:1358-1
- SUSE-SU-2024:1359-1
- SUSE-SU-2024:1380-1
- SUSE-SU-2024:1382-1
- SUSE-SU-2024:1390-1
- SUSE-SU-2024:1400-1
- SUSE-SU-2024:1405-1
- SUSE-SU-2024:1406-1
- SUSE-SU-2024:1418-1
- SUSE-SU-2024:1493-1
- SUSE-SU-2024:1505-1
- SUSE-SU-2024:1537-1
- SUSE-SU-2024:1545-1
- SUSE-SU-2024:1551-1
- SUSE-SU-2024:1558-1
- SUSE-SU-2024:1581-1
- SUSE-SU-2024:1582-1
- SUSE-SU-2024:1596-1
- SUSE-SU-2024:2894-1
- SUSE-SU-2024:2929-1
- SUSE-SU-2024:2947-1
- USN-6415-1
- USN-6461-1
- USN-6494-1
- USN-6494-2
- USN-6497-1
- USN-6532-1
- USN-6534-1
- USN-6534-2
- USN-6534-3
- USN-6536-1
- USN-6537-1
- USN-6548-1
- USN-6548-2
- USN-6548-4
- USN-6548-5
- USN-6549-1
- USN-6549-2
- USN-6549-3
- USN-6549-4
- USN-6549-5
- USN-6573-1
- USN-6624-1
- USN-6626-1
- USN-6626-2
- USN-6626-3
- USN-6628-1
- USN-6628-2
- USN-6635-1
- USN-6652-1
- USN-6701-1
- USN-6701-2
- USN-6701-3
- USN-6701-4
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/linux-tools-oracle-lts-20.04?distro=focal | ubuntu | linux-tools-oracle-lts-20.04 | < 5.4.0.1115.108 | focal | ||
Affected | pkg:deb/ubuntu/linux-tools-5.4.0-1115-oracle?distro=focal | ubuntu | linux-tools-5.4.0-1115-oracle | < 5.4.0-1115.124 | focal | ||
Affected | pkg:deb/ubuntu/linux-oracle-tools-5.4.0-1115?distro=focal | ubuntu | linux-oracle-tools-5.4.0-1115 | < 5.4.0-1115.124 | focal | ||
Affected | pkg:deb/ubuntu/linux-oracle-lts-20.04?distro=focal | ubuntu | linux-oracle-lts-20.04 | < 5.4.0.1115.108 | focal | ||
Affected | pkg:deb/ubuntu/linux-oracle-headers-5.4.0-1115?distro=focal | ubuntu | linux-oracle-headers-5.4.0-1115 | < 5.4.0-1115.124 | focal | ||
Affected | pkg:deb/ubuntu/linux-modules-extra-5.4.0-1115-oracle?distro=focal | ubuntu | linux-modules-extra-5.4.0-1115-oracle | < 5.4.0-1115.124 | focal | ||
Affected | pkg:deb/ubuntu/linux-modules-5.4.0-1115-oracle?distro=focal | ubuntu | linux-modules-5.4.0-1115-oracle | < 5.4.0-1115.124 | focal | ||
Affected | pkg:deb/ubuntu/linux-image-unsigned-5.4.0-1115-oracle?distro=focal | ubuntu | linux-image-unsigned-5.4.0-1115-oracle | < 5.4.0-1115.124 | focal | ||
Affected | pkg:deb/ubuntu/linux-image-oracle-lts-20.04?distro=focal | ubuntu | linux-image-oracle-lts-20.04 | < 5.4.0.1115.108 | focal | ||
Affected | pkg:deb/ubuntu/linux-image-5.4.0-1115-oracle?distro=focal | ubuntu | linux-image-5.4.0-1115-oracle | < 5.4.0-1115.124 | focal | ||
Affected | pkg:deb/ubuntu/linux-headers-oracle-lts-20.04?distro=focal | ubuntu | linux-headers-oracle-lts-20.04 | < 5.4.0.1115.108 | focal | ||
Affected | pkg:deb/ubuntu/linux-headers-5.4.0-1115-oracle?distro=focal | ubuntu | linux-headers-5.4.0-1115-oracle | < 5.4.0-1115.124 | focal | ||
Affected | pkg:deb/ubuntu/linux-buildinfo-5.4.0-1115-oracle?distro=focal | ubuntu | linux-buildinfo-5.4.0-1115-oracle | < 5.4.0-1115.124 | focal |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |