Risk | Medium |
Patch available | YES |
Number of vulnerabilities | 8 |
CVE-ID | CVE-2021-4197 CVE-2021-4202 CVE-2022-1353 CVE-2022-1419 CVE-2022-1652 CVE-2022-1679 CVE-2022-1734 CVE-2022-28356 |
CWE-ID | CWE-264 CWE-416 CWE-200 CWE-401 |
Exploitation vector | Network |
Public exploit | N/A |
Vulnerable software Subscribe |
Ubuntu Operating systems & Components / Operating system linux-image-lowlatency (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-4.4.0-1145-aws (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-4.4.0-229-generic (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-4.4.0-229-lowlatency (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-aws (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-generic (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-virtual (Ubuntu package) Operating systems & Components / Operating system package or component |
Vendor | Canonical Ltd. |
Security Bulletin
This security bulletin contains information about 8 vulnerabilities.
EUVDB-ID: #VU61258
Risk: Low
CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-4197
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to missing permissions checks within the cgroups (control groups) functionality of Linux Kernel when writing into a file descriptor. A local low privileged process can trick a higher privileged parent process into writing arbitrary data into files, which can result in denial of service or privileges escalation.
Update the affected package linux to the latest version.
Vulnerable software versionsUbuntu: 16.04
linux-image-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-1145-aws (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-generic (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-aws (Ubuntu package): before 4.4.0.229.235
linux-image-generic (Ubuntu package): before 4.4.0.229.235
linux-image-virtual (Ubuntu package): before 4.4.0.229.235
External linkshttp://ubuntu.com/security/notices/USN-5500-1
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU63764
Risk: Low
CVSSv3.1: 5.8 [CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-4202
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error in the nci_request() function in net/nfc/nci/core.c in NFC Controller Interface (NCI) in the Linux kernel. A local user can cause a data race problem while the device is getting removed and escalate privileges on the system.
MitigationUpdate the affected package linux to the latest version.
Vulnerable software versionsUbuntu: 16.04
linux-image-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-1145-aws (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-generic (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-aws (Ubuntu package): before 4.4.0.229.235
linux-image-generic (Ubuntu package): before 4.4.0.229.235
linux-image-virtual (Ubuntu package): before 4.4.0.229.235
External linkshttp://ubuntu.com/security/notices/USN-5500-1
Q & A
Can this vulnerability be exploited remotely?
No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU63388
Risk: Low
CVSSv3.1: 6.2 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-1353
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to excessive data output by the application in the pfkey_register function in net/key/af_key.c in the Linux kernel. A local user can gain unauthorized access to kernel memory, leading to a system crash or a leak of internal kernel information.
MitigationUpdate the affected package linux to the latest version.
Vulnerable software versionsUbuntu: 16.04
linux-image-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-1145-aws (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-generic (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-aws (Ubuntu package): before 4.4.0.229.235
linux-image-generic (Ubuntu package): before 4.4.0.229.235
linux-image-virtual (Ubuntu package): before 4.4.0.229.235
External linkshttp://ubuntu.com/security/notices/USN-5500-1
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU63418
Risk: Low
CVSSv3.1: 5.8 [CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-1419
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error in vgem_gem_dumb_create() function in Linux kernel. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.
MitigationUpdate the affected package linux to the latest version.
Vulnerable software versionsUbuntu: 16.04
linux-image-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-1145-aws (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-generic (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-aws (Ubuntu package): before 4.4.0.229.235
linux-image-generic (Ubuntu package): before 4.4.0.229.235
linux-image-virtual (Ubuntu package): before 4.4.0.229.235
External linkshttp://ubuntu.com/security/notices/USN-5500-1
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU64434
Risk: Low
CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-1652
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to use-after-free error in the bad_flp_intr() function. A local user can execute a specially-crafted program to cause a denial of service condition on the system or escalate privileges on the system.
MitigationUpdate the affected package linux to the latest version.
Vulnerable software versionsUbuntu: 16.04
linux-image-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-1145-aws (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-generic (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-aws (Ubuntu package): before 4.4.0.229.235
linux-image-generic (Ubuntu package): before 4.4.0.229.235
linux-image-virtual (Ubuntu package): before 4.4.0.229.235
External linkshttp://ubuntu.com/security/notices/USN-5500-1
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU64861
Risk: Low
CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-1679
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the ath9k_htc_wait_for_target() function in the Linux kernel’s Atheros wireless adapter driver. A local user can execute arbitrary code with elevated privileges.
Update the affected package linux to the latest version.
Vulnerable software versionsUbuntu: 16.04
linux-image-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-1145-aws (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-generic (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-aws (Ubuntu package): before 4.4.0.229.235
linux-image-generic (Ubuntu package): before 4.4.0.229.235
linux-image-virtual (Ubuntu package): before 4.4.0.229.235
External linkshttp://ubuntu.com/security/notices/USN-5500-1
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU64082
Risk: Low
CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-1734
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to Marvell NFC device driver implementation in the Linux kernel did not properly perform memory cleanup operations in some situations. A local user can trigger use-after-free to escalate privileges on the system.
MitigationUpdate the affected package linux to the latest version.
Vulnerable software versionsUbuntu: 16.04
linux-image-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-1145-aws (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-generic (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-aws (Ubuntu package): before 4.4.0.229.235
linux-image-generic (Ubuntu package): before 4.4.0.229.235
linux-image-virtual (Ubuntu package): before 4.4.0.229.235
External linkshttp://ubuntu.com/security/notices/USN-5500-1
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU63390
Risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-28356
CWE-ID:
CWE-401 - Missing release of memory after effective lifetime
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform DoS attack on the target system.
The vulnerability exists due memory leak in net/llc/af_llc.c component. A remote attacker can force the system to leak memory and perform denial of service attack.
MitigationUpdate the affected package linux to the latest version.
Vulnerable software versionsUbuntu: 16.04
linux-image-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-1145-aws (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-generic (Ubuntu package): before 4.4.0.229.235
linux-image-4.4.0-229-lowlatency (Ubuntu package): before 4.4.0.229.235
linux-image-aws (Ubuntu package): before 4.4.0.229.235
linux-image-generic (Ubuntu package): before 4.4.0.229.235
linux-image-virtual (Ubuntu package): before 4.4.0.229.235
External linkshttp://ubuntu.com/security/notices/USN-5500-1
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.