Lucene search

K
ubuntuUbuntuUSN-5596-1
HistorySep 02, 2022 - 12:00 a.m.

Linux kernel (OEM) vulnerabilities

2022-09-0200:00:00
ubuntu.com
37

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.1%

Releases

  • Ubuntu 22.04 LTS

Packages

  • linux-oem-5.17 - Linux kernel for OEM systems

Details

Asaf Modelevsky discovered that the Intel® 10GbE PCI Express (ixgbe)
Ethernet driver for the Linux kernel performed insufficient control flow
management. A local attacker could possibly use this to cause a denial of
service. (CVE-2021-33061)

It was discovered that the framebuffer driver on the Linux kernel did not
verify size limits when changing font or screen size, leading to an out-of-
bounds write. A local attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2021-33655)