[USN-6652-1] Linux kernel (Azure) vulnerabilities
Several security issues were fixed in the Linux kernel.
Marek Marczykowski-Górecki discovered that the Xen event channel
infrastructure implementation in the Linux kernel contained a race
condition. An attacker in a guest VM could possibly use this to cause a
denial of service (paravirtualized device unavailability). (CVE-2023-34324)
Zheng Wang discovered a use-after-free in the Renesas Ethernet AVB driver
in the Linux kernel during device removal. A privileged attacker could use
this to cause a denial of service (system crash). (CVE-2023-35827)
Tom Dohrmann discovered that the Secure Encrypted Virtualization (SEV)
implementation for AMD processors in the Linux kernel contained a race
condition when accessing MMIO registers. A local attacker in a SEV guest VM
could possibly use this to cause a denial of service (system crash) or
possibly execute arbitrary code. (CVE-2023-46813)
It was discovered that the io_uring subsystem in the Linux kernel contained
a race condition, leading to a null pointer dereference vulnerability. A
local attacker could use this to cause a denial of service (system crash).
(CVE-2023-46862)
It was discovered that a race condition existed in the ATM (Asynchronous
Transfer Mode) subsystem of the Linux kernel, leading to a use-after-free
vulnerability. A local attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2023-51780)
It was discovered that a race condition existed in the AppleTalk networking
subsystem of the Linux kernel, leading to a use-after-free vulnerability. A
local attacker could use this to cause a denial of service (system crash)
or possibly execute arbitrary code. (CVE-2023-51781)
It was discovered that the netfilter subsystem in the Linux kernel did not
properly validate inner tunnel netlink attributes, leading to a null
pointer dereference vulnerability. A local attacker could use this to cause
a denial of service (system crash). (CVE-2023-5972)
It was discovered that the TLS subsystem in the Linux kernel did not
properly perform cryptographic operations in some situations, leading to a
null pointer dereference vulnerability. A local attacker could use this to
cause a denial of service (system crash) or possibly execute arbitrary
code. (CVE-2023-6176)
Jann Horn discovered that a race condition existed in the Linux kernel when
handling io_uring over sockets, leading to a use-after-free vulnerability.
A local attacker could use this to cause a denial of service (system crash)
or possibly execute arbitrary code. (CVE-2023-6531)
Xingyuan Mo discovered that the netfilter subsystem in the Linux kernel did
not properly handle dynset expressions passed from userspace, leading to a
null pointer dereference vulnerability. A local attacker could use this to
cause a denial of service (system crash). (CVE-2023-6622)
Zhenghan Wang discovered that the generic ID allocator implementation in
the Linux kernel did not properly check for null bitmap when releasing IDs.
A local attacker could use this to cause a denial of service (system
crash). (CVE-2023-6915)
Robert Morris discovered that the CIFS network file system implementation
in the Linux kernel did not properly validate certain server commands
fields, leading to an out-of-bounds read vulnerability. An attacker could
use this to cause a denial of service (system crash) or possibly expose
sensitive information. (CVE-2024-0565)
Jann Horn discovered that the io_uring subsystem in the Linux kernel did
not properly handle the release of certain buffer rings. A local attacker
could use this to cause a denial of service (system crash) or possibly
execute arbitrary code. (CVE-2024-0582)
It was discovered that the TIPC protocol implementation in the Linux kernel
did not properly handle locking during tipc_crypto_key_revoke() operations.
A local attacker could use this to cause a denial of service (kernel
deadlock). (CVE-2024-0641)
Jann Horn discovered that the TLS subsystem in the Linux kernel did not
properly handle spliced messages, leading to an out-of-bounds write
vulnerability. A local attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2024-0646)
- ID
- USN-6652-1
- Severity
- high
- Severity from
- CVE-2023-5972
- URL
- https://ubuntu.com/security/notices/USN-6652-1
- Published
-
2024-02-23T20:20:01
(6 months ago) - Modified
-
2024-02-23T20:20:01
(6 months ago) - Other Advisories
-
- ALAS-2023-1883
- ALAS2-2023-2328
- ALSA-2024:0897
- ALSA-2024:1607
- ALSA-2024:3138
- DSA-5593-1
- DSA-5594-1
- DSA-5681-1
- ELSA-2024-0461
- ELSA-2024-0897
- ELSA-2024-12094
- ELSA-2024-12159
- ELSA-2024-12169
- ELSA-2024-12187
- ELSA-2024-12193
- ELSA-2024-1248
- ELSA-2024-1607
- ELSA-2024-2394
- ELSA-2024-3138
- FEDORA-2023-26ffe7d3c7
- FEDORA-2023-dcee14345b
- MS:CVE-2023-46813
- MS:CVE-2023-51780
- RHSA-2024:0876
- RHSA-2024:0881
- RHSA-2024:0897
- RHSA-2024:1251
- RHSA-2024:1607
- RHSA-2024:1614
- RHSA-2024:2950
- RHSA-2024:3138
- RLSA-2024:1607
- RLSA-2024:3138
- SSA:2023-325-01
- SSA:2023-359-01
- SSA:2024-157-01
- SUSE-SU-2023:4343-1
- SUSE-SU-2023:4345-1
- SUSE-SU-2023:4346-1
- SUSE-SU-2023:4347-1
- SUSE-SU-2023:4348-1
- SUSE-SU-2023:4349-1
- SUSE-SU-2023:4351-1
- SUSE-SU-2023:4358-1
- SUSE-SU-2023:4359-1
- SUSE-SU-2023:4375-1
- SUSE-SU-2023:4377-1
- SUSE-SU-2023:4378-1
- SUSE-SU-2023:4414-1
- SUSE-SU-2023:4730-1
- SUSE-SU-2023:4731-1
- SUSE-SU-2023:4732-1
- SUSE-SU-2023:4733-1
- SUSE-SU-2023:4734-1
- SUSE-SU-2023:4782-1
- SUSE-SU-2023:4783-1
- SUSE-SU-2023:4810-1
- SUSE-SU-2023:4811-1
- SUSE-SU-2024:0115-1
- SUSE-SU-2024:0129-1
- SUSE-SU-2024:0141-1
- SUSE-SU-2024:0156-1
- SUSE-SU-2024:0160-1
- SUSE-SU-2024:0331-1
- SUSE-SU-2024:0344-1
- SUSE-SU-2024:0348-1
- SUSE-SU-2024:0351-1
- SUSE-SU-2024:0352-1
- SUSE-SU-2024:0358-1
- SUSE-SU-2024:0378-1
- SUSE-SU-2024:0389-1
- SUSE-SU-2024:0395-1
- SUSE-SU-2024:0409-1
- SUSE-SU-2024:0411-1
- SUSE-SU-2024:0414-1
- SUSE-SU-2024:0421-1
- SUSE-SU-2024:0428-1
- SUSE-SU-2024:0463-1
- SUSE-SU-2024:0468-1
- SUSE-SU-2024:0469-1
- SUSE-SU-2024:0474-1
- SUSE-SU-2024:0476-1
- SUSE-SU-2024:0478-1
- SUSE-SU-2024:0483-1
- SUSE-SU-2024:0484-1
- SUSE-SU-2024:0514-1
- SUSE-SU-2024:0515-1
- SUSE-SU-2024:0516-1
- SUSE-SU-2024:0620-1
- SUSE-SU-2024:0622-1
- SUSE-SU-2024:0624-1
- SUSE-SU-2024:0639-1
- SUSE-SU-2024:0655-1
- SUSE-SU-2024:0656-1
- SUSE-SU-2024:0662-1
- SUSE-SU-2024:0663-1
- SUSE-SU-2024:0666-1
- SUSE-SU-2024:0685-1
- SUSE-SU-2024:0694-1
- SUSE-SU-2024:0698-1
- SUSE-SU-2024:0705-1
- SUSE-SU-2024:0727-1
- SUSE-SU-2024:0856-1
- SUSE-SU-2024:0857-1
- SUSE-SU-2024:0925-1
- SUSE-SU-2024:0926-1
- SUSE-SU-2024:0975-1
- SUSE-SU-2024:0976-1
- SUSE-SU-2024:0986-1
- SUSE-SU-2024:0989-1
- SUSE-SU-2024:0991-1
- SUSE-SU-2024:0995-1
- SUSE-SU-2024:1017-1
- SUSE-SU-2024:1023-1
- SUSE-SU-2024:1033-1
- SUSE-SU-2024:1039-1
- SUSE-SU-2024:1040-1
- SUSE-SU-2024:1045-1
- SUSE-SU-2024:1047-1
- SUSE-SU-2024:1053-1
- SUSE-SU-2024:1054-1
- SUSE-SU-2024:1063-1
- SUSE-SU-2024:1072-1
- SUSE-SU-2024:1097-1
- SUSE-SU-2024:1181-1
- SUSE-SU-2024:1183-1
- SUSE-SU-2024:1184-1
- SUSE-SU-2024:1229-1
- SUSE-SU-2024:1236-1
- SUSE-SU-2024:1239-1
- SUSE-SU-2024:1246-1
- SUSE-SU-2024:1248-1
- SUSE-SU-2024:1249-1
- SUSE-SU-2024:1251-1
- SUSE-SU-2024:1252-1
- SUSE-SU-2024:1257-1
- SUSE-SU-2024:1274-1
- SUSE-SU-2024:1276-1
- SUSE-SU-2024:1288-1
- SUSE-SU-2024:1292-1
- SUSE-SU-2024:1298-1
- SUSE-SU-2024:1299-1
- SUSE-SU-2024:1312-1
- SUSE-SU-2024:1318-1
- SUSE-SU-2024:1320-1
- SUSE-SU-2024:1321-1
- SUSE-SU-2024:1322-1
- SUSE-SU-2024:1454-1
- SUSE-SU-2024:1465-1
- SUSE-SU-2024:1466-1
- SUSE-SU-2024:1480-1
- SUSE-SU-2024:1489-1
- SUSE-SU-2024:1490-1
- SUSE-SU-2024:1643-1
- SUSE-SU-2024:1648-1
- SUSE-SU-2024:1669-1
- SUSE-SU-2024:1708-1
- SUSE-SU-2024:1719-1
- SUSE-SU-2024:1870-1
- SUSE-SU-2024:2008-1
- SUSE-SU-2024:2010-1
- SUSE-SU-2024:2019-1
- SUSE-SU-2024:2120-1
- SUSE-SU-2024:2135-1
- SUSE-SU-2024:2148-1
- SUSE-SU-2024:2183-1
- SUSE-SU-2024:2185-1
- SUSE-SU-2024:2189-1
- SUSE-SU-2024:2190-1
- SUSE-SU-2024:2343-1
- SUSE-SU-2024:2373-1
- SUSE-SU-2024:2740-1
- SUSE-SU-2024:2755-1
- SUSE-SU-2024:2802-1
- SUSE-SU-2024:2896-1
- SUSE-SU-2024:2973-1
- SUSE-SU-2024:3034-1
- SUSE-SU-2024:3043-1
- USN-6461-1
- USN-6533-1
- USN-6548-1
- USN-6548-2
- USN-6548-3
- USN-6548-4
- USN-6548-5
- USN-6624-1
- USN-6625-1
- USN-6625-2
- USN-6625-3
- USN-6626-1
- USN-6626-2
- USN-6626-3
- USN-6628-1
- USN-6628-2
- USN-6639-1
- USN-6646-1
- USN-6647-1
- USN-6647-2
- USN-6648-1
- USN-6648-2
- USN-6650-1
- USN-6651-1
- USN-6651-2
- USN-6651-3
- USN-6653-1
- USN-6653-2
- USN-6653-3
- USN-6653-4
- USN-6681-1
- USN-6681-2
- USN-6681-3
- USN-6681-4
- USN-6686-1
- USN-6686-2
- USN-6686-3
- USN-6686-4
- USN-6686-5
- USN-6700-1
- USN-6700-2
- USN-6701-1
- USN-6701-2
- USN-6701-3
- USN-6701-4
- USN-6705-1
- USN-6716-1
- USN-6740-1
- XSA-441
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/linux-tools-azure?distro=mantic | ubuntu | linux-tools-azure | < 6.5.0.1015.17 | mantic | ||
Affected | pkg:deb/ubuntu/linux-tools-6.5.0-1015-azure?distro=mantic | ubuntu | linux-tools-6.5.0-1015-azure | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-modules-iwlwifi-azure?distro=mantic | ubuntu | linux-modules-iwlwifi-azure | < 6.5.0.1015.17 | mantic | ||
Affected | pkg:deb/ubuntu/linux-modules-iwlwifi-6.5.0-1015-azure?distro=mantic | ubuntu | linux-modules-iwlwifi-6.5.0-1015-azure | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-modules-ivsc-azure?distro=mantic | ubuntu | linux-modules-ivsc-azure | < 6.5.0.1015.17 | mantic | ||
Affected | pkg:deb/ubuntu/linux-modules-ivsc-6.5.0-1015-azure?distro=mantic | ubuntu | linux-modules-ivsc-6.5.0-1015-azure | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-modules-ipu6-azure?distro=mantic | ubuntu | linux-modules-ipu6-azure | < 6.5.0.1015.17 | mantic | ||
Affected | pkg:deb/ubuntu/linux-modules-ipu6-6.5.0-1015-azure?distro=mantic | ubuntu | linux-modules-ipu6-6.5.0-1015-azure | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-modules-extra-azure?distro=mantic | ubuntu | linux-modules-extra-azure | < 6.5.0.1015.17 | mantic | ||
Affected | pkg:deb/ubuntu/linux-modules-extra-6.5.0-1015-azure?distro=mantic | ubuntu | linux-modules-extra-6.5.0-1015-azure | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-modules-6.5.0-1015-azure?distro=mantic | ubuntu | linux-modules-6.5.0-1015-azure | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-image-unsigned-6.5.0-1015-azure?distro=mantic | ubuntu | linux-image-unsigned-6.5.0-1015-azure | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-image-azure?distro=mantic | ubuntu | linux-image-azure | < 6.5.0.1015.17 | mantic | ||
Affected | pkg:deb/ubuntu/linux-image-azure-fde?distro=mantic | ubuntu | linux-image-azure-fde | < 6.5.0.1015.17 | mantic | ||
Affected | pkg:deb/ubuntu/linux-image-6.5.0-1015-azure?distro=mantic | ubuntu | linux-image-6.5.0-1015-azure | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-image-6.5.0-1015-azure-fde?distro=mantic | ubuntu | linux-image-6.5.0-1015-azure-fde | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-headers-azure?distro=mantic | ubuntu | linux-headers-azure | < 6.5.0.1015.17 | mantic | ||
Affected | pkg:deb/ubuntu/linux-headers-6.5.0-1015-azure?distro=mantic | ubuntu | linux-headers-6.5.0-1015-azure | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-cloud-tools-azure?distro=mantic | ubuntu | linux-cloud-tools-azure | < 6.5.0.1015.17 | mantic | ||
Affected | pkg:deb/ubuntu/linux-cloud-tools-6.5.0-1015-azure?distro=mantic | ubuntu | linux-cloud-tools-6.5.0-1015-azure | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-buildinfo-6.5.0-1015-azure?distro=mantic | ubuntu | linux-buildinfo-6.5.0-1015-azure | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-azure?distro=mantic | ubuntu | linux-azure | < 6.5.0.1015.17 | mantic | ||
Affected | pkg:deb/ubuntu/linux-azure-tools-6.5.0-1015?distro=mantic | ubuntu | linux-azure-tools-6.5.0-1015 | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-azure-headers-6.5.0-1015?distro=mantic | ubuntu | linux-azure-headers-6.5.0-1015 | < 6.5.0-1015.15 | mantic | ||
Affected | pkg:deb/ubuntu/linux-azure-fde?distro=mantic | ubuntu | linux-azure-fde | < 6.5.0.1015.17 | mantic | ||
Affected | pkg:deb/ubuntu/linux-azure-cloud-tools-6.5.0-1015?distro=mantic | ubuntu | linux-azure-cloud-tools-6.5.0-1015 | < 6.5.0-1015.15 | mantic |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |