logo
DATABASE RESOURCES PRICING ABOUT US

Linux kernel (OEM) vulnerabilities

Description

Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-2588) It was discovered that the netfilter subsystem of the Linux kernel did not prevent one nft object from referencing an nft set in another nft table, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-2586) It was discovered that the implementation of POSIX timers in the Linux kernel did not properly clean up timers in some situations. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-2585)


Affected Package


OS OS Version Package Name Package Version
Ubuntu 22.04 linux-image-oem-22.04 5.17.0.1015.14
Ubuntu 22.04 linux-headers-oem-22.04 5.17.0.1015.14
Ubuntu 22.04 linux-headers-oem-22.04a 5.17.0.1015.14
Ubuntu 22.04 linux-image-oem-22.04a 5.17.0.1015.14
Ubuntu 22.04 linux-oem-22.04 5.17.0.1015.14
Ubuntu 22.04 linux-oem-22.04a 5.17.0.1015.14
Ubuntu 22.04 linux-tools-oem-22.04 5.17.0.1015.14
Ubuntu 22.04 linux-tools-oem-22.04a 5.17.0.1015.14
Ubuntu 22.04 linux-image-5.17.0-1015-oem 5.17.0-1015.16
Ubuntu 22.04 linux-image-5.17.0-1003-oem 5.17.0-1015.16
Ubuntu 22.04 linux-image-5.17.0-1003-oem-dbgsym 5.17.0-1015.16
Ubuntu 20.04 linux-image-oem-20.04c 5.14.0.1048.44
Ubuntu 20.04 linux-image-oem-20.04b 5.14.0.1048.44
Ubuntu 20.04 linux-image-oem-20.04d 5.14.0.1048.44
Ubuntu 20.04 linux-image-oem-20.04 5.14.0.1048.44
Ubuntu 20.04 linux-image-5.14.0-1048-oem 5.14.0-1048.55

Related