Lucene search
UbuntuUSN-5485-1HistoryJun 17, 2022 - 12:00 a.m.
Linux kernel vulnerabilities
2022-06-1700:00:00
ubuntu.com
143
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.7 Medium
AI Score
Confidence
High
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
24.1%
Releases
- Ubuntu 22.04 LTS
- Ubuntu 21.10
- Ubuntu 20.04 LTS
- Ubuntu 18.04 ESM
- Ubuntu 16.04 ESM
- Ubuntu 14.04 ESM
Packages
- linux - Linux kernel
- linux-aws - Linux kernel for Amazon Web Services (AWS) systems
- linux-aws-5.13 - Linux kernel for Amazon Web Services (AWS) systems
- linux-aws-5.4 - Linux kernel for Amazon Web Services (AWS) systems
- linux-aws-hwe - Linux kernel for Amazon Web Services (AWS-HWE) systems
- linux-azure - Linux kernel for Microsoft Azure Cloud systems
- linux-azure-4.15 - Linux kernel for Microsoft Azure Cloud systems
- linux-azure-5.13 - Linux kernel for Microsoft Azure cloud systems
- linux-azure-5.4 - Linux kernel for Microsoft Azure cloud systems
- linux-azure-fde - Linux kernel for Microsoft Azure cloud systems
- linux-dell300x - Linux kernel for Dell 300x platforms
- linux-gcp - Linux kernel for Google Cloud Platform (GCP) systems
- linux-gcp-4.15 - Linux kernel for Google Cloud Platform (GCP) systems
- linux-gcp-5.13 - Linux kernel for Google Cloud Platform (GCP) systems
- linux-gcp-5.4 - Linux kernel for Google Cloud Platform (GCP) systems
- linux-gke - Linux kernel for Google Container Engine (GKE) systems
- linux-gke-5.4 - Linux kernel for Google Container Engine (GKE) systems
- linux-gkeop - Linux kernel for Google Container Engine (GKE) systems
- linux-gkeop-5.4 - Linux kernel for Google Container Engine (GKE) systems
- linux-hwe - Linux hardware enablement (HWE) kernel
- linux-hwe-5.13 - Linux hardware enablement (HWE) kernel
- linux-hwe-5.4 - Linux hardware enablement (HWE) kernel
- linux-ibm - Linux kernel for IBM cloud systems
- linux-ibm-5.4 - Linux kernel for IBM cloud systems
- linux-intel-5.13 - Linux kernel for Intel IOTG
- linux-intel-iotg - Linux kernel for Intel IoT platforms
- linux-kvm - Linux kernel for cloud environments
- linux-lowlatency - Linux low latency kernel
- linux-oracle - Linux kernel for Oracle Cloud systems
- linux-oracle-5.13 - Linux kernel for Oracle Cloud systems
- linux-oracle-5.4 - Linux kernel for Oracle Cloud systems
Details
It was discovered that some Intel processors did not completely perform
cleanup actions on multi-core shared buffers. A local attacker could
possibly use this to expose sensitive information. (CVE-2022-21123)
It was discovered that some Intel processors did not completely perform
cleanup actions on microarchitectural fill buffers. A local attacker could
possibly use this to expose sensitive information. (CVE-2022-21125)
It was discovered that some Intel processors did not properly perform
cleanup during specific special register write operations. A local attacker
could possibly use this to expose sensitive information. (CVE-2022-21166)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 22.04 | noarch | linux-image-5.15.0-39-generic-64k | < 5.15.0-39.42 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-image-5.15.0-39-generic | < 5.15.0-39.42 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-image-5.15.0-39-generic-dbgsym | < 5.15.0-39.42 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-image-intel-iotg | < 5.15.0.1010.10 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-headers-intel-iotg | < 5.15.0.1010.10 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-intel-iotg | < 5.15.0.1010.10 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-tools-intel-iotg | < 5.15.0.1010.10 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-image-virtual | < 5.15.0.39.40 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-cloud-tools-generic | < 5.15.0.39.40 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-cloud-tools-generic-hwe-20.04 | < 5.15.0.39.40 | UNKNOWN |
Related
nessus
nessus
Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-5485-1)
2022-06-17 00:00:00
AlmaLinux 8 : kernel-rt (ALSA-2022:6437)
2022-10-12 00:00:00
Fedora 36 : kernel (2022-391e24517d)
2022-06-17 00:00:00
osv
osv
linux-oem-5.14 vulnerabilities
2022-07-01 17:45:51
Moderate: kernel security, bug fix, and enhancement update
2022-09-13 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5485-1)
2022-06-18 00:00:00
Missing Linux Kernel mitigations for 'Processor MMIO Stale Data' hardware vulnerabilities (INTEL-SA-00615)
2022-07-14 00:00:00
Ubuntu: Security Advisory (USN-5485-2)
2022-07-02 00:00:00
redhat
redhat
(RHSA-2022:6460) Moderate: kernel security, bug fix, and enhancement update
2022-09-13 07:37:13
(RHSA-2022:6437) Moderate: kernel-rt security and bug fix update
2022-09-13 07:36:33
(RHSA-2022:7279) Important: kernel security and bug fix update
2022-11-01 14:04:32
ubuntu
ubuntu
Linux kernel (OEM) vulnerabilities
2022-07-01 00:00:00
Linux kernel vulnerabilities
2022-06-16 00:00:00
Intel Microcode vulnerabilities
2022-07-28 00:00:00
xen
xen
x86: MMIO Stale Data vulnerabilities
2022-06-14 18:21:00
almalinux
almalinux
Moderate: kernel security, bug fix, and enhancement update
2022-09-13 00:00:00
Moderate: kernel-rt security and bug fix update
2022-09-13 00:00:00
vmware
vmware
rocky
rocky
kernel-rt security and bug fix update
2022-09-13 07:36:33
kernel security, bug fix, and enhancement update
2022-09-13 07:37:13
microcode_ctl bug fix and enhancement update
2022-11-02 13:51:49
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2022-09-14 00:00:00
kernel security and bug fix update
2022-08-11 00:00:00
Unbreakable Enterprise kernel-container security update
2022-06-14 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: xen-4.16.1-4.fc36
2022-07-01 01:09:33
[SECURITY] Fedora 36 Update: kernel-5.18.5-200.fc36
2022-06-17 01:16:22
[SECURITY] Fedora 35 Update: kernel-5.18.5-100.fc35
2022-06-18 01:45:12
hp
hp
Intel® Processors June 2022 Security Update
2022-06-14 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2022-06-29 19:18:17
Updated kernel-linus packages fix security vulnerabilities
2022-06-29 19:18:17
mscve
mscve
Microsoft Guidance on Intel Processor MMIO Stale Data Vulnerabilities
2022-06-14 07:00:00
Intel: CVE-2022-21125 Shared Buffers Data Sampling (SBDS)
2022-06-14 07:00:00
Intel: CVE-2022-21123 Shared Buffers Data Read (SBDR)
2022-06-14 07:00:00
intel
intel
Intel® Processors MMIO Stale Data Advisory
2022-10-19 00:00:00
malwarebytes
malwarebytes
Intel CPU vulnerabilities fixed. But should you update?
2023-03-06 07:00:00
debian
debian
[SECURITY] [DSA 5178-1] intel-microcode security update
2022-07-06 13:12:52
[SECURITY] [DSA 5184-1] xen security update
2022-07-15 18:05:47
centos
centos
bpftool, kernel, perf, python security update
2022-08-15 17:35:43
citrix
citrix
Citrix Hypervisor Security Update
2022-06-23 20:06:39
ibm
ibm
Security Bulletin: Multiple vulnerabilities in Intel Processors affect IBM Cloud Pak System
2023-03-31 15:06:36
Security Bulletin: IBM DataPower Gateway potentially affected by CPU side-channel (CVE-2022-21166)
2022-12-16 18:59:39
Security Bulletin: For IBM Cloudpak for Watson AIOPS 3.5.1
2022-11-23 22:42:31
f5
f5
redhatcve
redhatcve
debiancve
debiancve
cve
cve
ubuntucve
ubuntucve
veracode
veracode
Information Disclosure
2022-06-16 21:06:02
Information Disclosure
2022-06-16 21:03:37
Information Disclosure
2022-06-16 21:02:26
prion
prion
Design/Logic Flaw
2022-06-15 20:15:00
Input validation
2022-06-15 20:15:00
Information disclosure
2022-06-15 21:15:00
suse
suse
Security update for xen (important)
2022-07-29 00:00:00
Security update for xen (important)
2022-07-29 00:00:00
Security update for xen (important)
2022-09-01 00:00:00
amazon
amazon
Important: kernel
2022-07-06 03:13:00
Medium: microcode_ctl
2022-06-30 23:38:00
ics
ics
Siemens SIMATIC MV500 Devices
2023-07-13 12:00:00
cloudfoundry
cloudfoundry
USN-5486-1: Intel Microcode vulnerabilities | Cloud Foundry
2022-06-30 00:00:00
mskb
mskb
June 14, 2022—KB5014752 (Monthly Rollup)
2022-06-14 07:00:00
June 14, 2022—KB5014743 (Security-only update)
2022-06-14 07:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.7 Medium
AI Score
Confidence
High
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
24.1%
Related for USN-5485-1