Ubuntu update for linux

Published: 2023-07-26 | Updated: 2024-12-18

Risk	Low
Patch available	YES
Number of vulnerabilities	4
CVE-ID	CVE-2023-3090 CVE-2023-32629 CVE-2023-3390 CVE-2023-35001
CWE-ID	CWE-787 CWE-264 CWE-416
Exploitation vector	Local
Public exploit	Public exploit code for vulnerability #2 is available. Public exploit code for vulnerability #4 is available.
Vulnerable software	Ubuntu Operating systems & Components / Operating system linux-image-raspi (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-gkeop (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-gcp-lts-20.04 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-ibm-lts-20.04 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-lowlatency (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-generic-lpae (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-oracle-lts-20.04 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-1073-gkeop (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-kvm (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-1026-xilinx-zynqmp (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-1090-raspi (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-gke-5.4 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-1112-azure (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-gke (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-155-lowlatency (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-raspi2 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-aws-lts-20.04 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-1109-gcp (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-1106-aws (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-1053-ibm (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-1104-gke (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-155-generic (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-1095-kvm (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-azure-lts-20.04 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-xilinx-zynqmp (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-oem-osp1 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-ibm (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-oem (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-generic (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-1105-oracle (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-virtual (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-gkeop-5.4 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.4.0-155-generic-lpae (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-lowlatency-hwe-18.04 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-virtual-hwe-18.04 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-generic-lpae-hwe-18.04 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-snapdragon-hwe-18.04 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-generic-hwe-18.04 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-raspi-hwe-18.04 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-aws (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-gcp (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-azure (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-oracle (Ubuntu package) Operating systems & Components / Operating system package or component
Vendor	Canonical Ltd.

Security Bulletin

This security bulletin contains information about 4 vulnerabilities.

1) Out-of-bounds write

EUVDB-ID: #VU78010

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3090

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the ipvlan network driver in Linux kernel. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package linux to the latest version.

Vulnerable software versions

Ubuntu: 18.04 - 20.04

linux-image-raspi (Ubuntu package): before 5.4.0.1090.120

linux-image-gkeop (Ubuntu package): before 5.4.0.1073.71

linux-image-gcp-lts-20.04 (Ubuntu package): before 5.4.0.1109.111

linux-image-ibm-lts-20.04 (Ubuntu package): before 5.4.0.1053.79

linux-image-lowlatency (Ubuntu package): before 5.4.0.155.151

linux-image-generic-lpae (Ubuntu package): before 5.4.0.155.151

linux-image-oracle-lts-20.04 (Ubuntu package): before 5.4.0.1105.98

linux-image-5.4.0-1073-gkeop (Ubuntu package): before 5.4.0-1073.77

linux-image-kvm (Ubuntu package): before 5.4.0.1095.90

linux-image-5.4.0-1026-xilinx-zynqmp (Ubuntu package): before 5.4.0-1026.30

linux-image-5.4.0-1090-raspi (Ubuntu package): before Ubuntu Pro

linux-image-gke-5.4 (Ubuntu package): before 5.4.0.1104.109

linux-image-5.4.0-1112-azure (Ubuntu package): before Ubuntu Pro

linux-image-gke (Ubuntu package): before 5.4.0.1104.109

linux-image-5.4.0-155-lowlatency (Ubuntu package): before Ubuntu Pro

linux-image-raspi2 (Ubuntu package): before 5.4.0.1090.120

linux-image-aws-lts-20.04 (Ubuntu package): before 5.4.0.1106.103

linux-image-5.4.0-1109-gcp (Ubuntu package): before Ubuntu Pro

linux-image-5.4.0-1106-aws (Ubuntu package): before Ubuntu Pro

linux-image-5.4.0-1053-ibm (Ubuntu package): before Ubuntu Pro

linux-image-5.4.0-1104-gke (Ubuntu package): before 5.4.0-1104.111

linux-image-5.4.0-155-generic (Ubuntu package): before Ubuntu Pro

linux-image-5.4.0-1095-kvm (Ubuntu package): before 5.4.0-1095.101

linux-image-azure-lts-20.04 (Ubuntu package): before 5.4.0.1112.105

linux-image-xilinx-zynqmp (Ubuntu package): before 5.4.0.1026.28

linux-image-oem-osp1 (Ubuntu package): before 5.4.0.155.151

linux-image-ibm (Ubuntu package): before 5.4.0.1053.79

linux-image-oem (Ubuntu package): before 5.4.0.155.151

linux-image-generic (Ubuntu package): before 5.4.0.155.151

linux-image-5.4.0-1105-oracle (Ubuntu package): before Ubuntu Pro

linux-image-virtual (Ubuntu package): before 5.4.0.155.151

linux-image-gkeop-5.4 (Ubuntu package): before 5.4.0.1073.71

linux-image-5.4.0-155-generic-lpae (Ubuntu package): before Ubuntu Pro

linux-image-lowlatency-hwe-18.04 (Ubuntu package): before Ubuntu Pro

linux-image-virtual-hwe-18.04 (Ubuntu package): before Ubuntu Pro

linux-image-generic-lpae-hwe-18.04 (Ubuntu package): before Ubuntu Pro

linux-image-snapdragon-hwe-18.04 (Ubuntu package): before Ubuntu Pro

linux-image-generic-hwe-18.04 (Ubuntu package): before Ubuntu Pro

linux-image-raspi-hwe-18.04 (Ubuntu package): before Ubuntu Pro

linux-image-aws (Ubuntu package): before Ubuntu Pro (Infra-only)

linux-image-gcp (Ubuntu package): before Ubuntu Pro (Infra-only)

linux-image-azure (Ubuntu package): before Ubuntu Pro (Infra-only)

linux-image-oracle (Ubuntu package): before Ubuntu Pro (Infra-only)

CPE2.3

External links

https://ubuntu.com/security/notices/USN-6251-1

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Permissions, Privileges, and Access Controls

EUVDB-ID: #VU78674

Risk: Low

CVSSv4.0: 8.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Clear]

CVE-ID: CVE-2023-32629

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to ovl_copy_up_meta_inode_data skips permission checks when calling ovl_do_setxattr on Ubuntu kernels. A local user can execute arbitrary code with elevated privileges.