{"id":21476,"date":"2022-03-09T19:28:21","date_gmt":"2022-03-09T16:28:21","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/166241\/USN-5317-1.txt"},"modified":"2022-03-12T08:23:26","modified_gmt":"2022-03-12T04:53:26","slug":"ubuntu-security-notice-usn-5317-1","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/ubuntu-security-notice-usn-5317-1\/","title":{"rendered":"Ubuntu Security Notice USN-5317-1"},"content":{"rendered":"<p dir=\"ltr\">==========================================================================<br \/>\nUbuntu Security Notice USN-5317-1<br \/>\nMarch 09, 2022<\/p>\n<p dir=\"ltr\">linux, linux-aws, linux-aws-5.13, linux-azure, linux-azure-5.13,<br \/>\nlinux-gcp, linux-gcp-5.13, linux-hwe-5.13, linux-kvm, linux-oem-5.14,<br \/>\nlinux-oracle, linux-oracle-5.13, linux-raspi vulnerabilities<br \/>\n==========================================================================<\/p>\n<p dir=\"ltr\">A security issue affects these releases of Ubuntu and its derivatives:<\/p>\n<p dir=\"ltr\">&#8211; Ubuntu 21.10<br \/>\n&#8211; Ubuntu 20.04 LTS<\/p>\n<p dir=\"ltr\">Summary:<\/p>\n<p dir=\"ltr\">Several security issues were fixed in the Linux kernel.<\/p>\n<p dir=\"ltr\">Software Description:<br \/>\n&#8211; linux: Linux kernel<br \/>\n&#8211; linux-aws: Linux kernel for Amazon Web Services (AWS) systems<br \/>\n&#8211; linux-azure: Linux kernel for Microsoft Azure Cloud systems<br \/>\n&#8211; linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems<br \/>\n&#8211; linux-kvm: Linux kernel for cloud environments<br \/>\n&#8211; linux-oracle: Linux kernel for Oracle Cloud systems<br \/>\n&#8211; linux-raspi: Linux kernel for Raspberry Pi systems<br \/>\n&#8211; linux-aws-5.13: Linux kernel for Amazon Web Services (AWS) systems<br \/>\n&#8211; linux-azure-5.13: Linux kernel for Microsoft Azure cloud systems<br \/>\n&#8211; linux-gcp-5.13: Linux kernel for Google Cloud Platform (GCP) systems<br \/>\n&#8211; linux-hwe-5.13: Linux hardware enablement (HWE) kernel<br \/>\n&#8211; linux-oem-5.14: Linux kernel for OEM systems<br \/>\n&#8211; linux-oracle-5.13: Linux kernel for Oracle Cloud systems<\/p>\n<p dir=\"ltr\">Details:<\/p>\n<p dir=\"ltr\">Nick Gregory discovered that the Linux kernel incorrectly handled network<br \/>\noffload functionality. A local attacker could use this to cause a denial of<br \/>\nservice or possibly execute arbitrary code. (CVE-2022-25636)<\/p>\n<p dir=\"ltr\">Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano<br \/>\nGiuffrida discovered that hardware mitigations added by ARM to their<br \/>\nprocessors to address Spectre-BTI were insufficient. A local attacker could<br \/>\npotentially use this to expose sensitive information. (CVE-2022-23960)<\/p>\n<p dir=\"ltr\">Max Kellermann discovered that the Linux kernel incorrectly handled Unix<br \/>\npipes. A local attacker could potentially use this to modify any file that<br \/>\ncould be opened for reading. (CVE-2022-0847)<\/p>\n<p dir=\"ltr\">Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano<br \/>\nGiuffrida discovered that hardware mitigations added by Intel to their<br \/>\nprocessors to address Spectre-BTI were insufficient. A local attacker could<br \/>\npotentially use this to expose sensitive information. (CVE-2022-0001,<br \/>\nCVE-2022-0002)<\/p>\n<p dir=\"ltr\">Update instructions:<\/p>\n<p dir=\"ltr\">The problem can be corrected by updating your system to the following<br \/>\npackage versions:<\/p>\n<p dir=\"ltr\">Ubuntu 21.10:<br \/>\nlinux-image-5.13.0-1016-kvm 5.13.0-1016.17<br \/>\nlinux-image-5.13.0-1017-aws 5.13.0-1017.19<br \/>\nlinux-image-5.13.0-1017-azure 5.13.0-1017.19<br \/>\nlinux-image-5.13.0-1019-gcp 5.13.0-1019.23<br \/>\nlinux-image-5.13.0-1020-raspi 5.13.0-1020.22<br \/>\nlinux-image-5.13.0-1020-raspi-nolpae 5.13.0-1020.22<br \/>\nlinux-image-5.13.0-1021-oracle 5.13.0-1021.26<br \/>\nlinux-image-5.13.0-35-generic 5.13.0-35.40<br \/>\nlinux-image-5.13.0-35-generic-64k 5.13.0-35.40<br \/>\nlinux-image-5.13.0-35-generic-lpae 5.13.0-35.40<br \/>\nlinux-image-5.13.0-35-lowlatency 5.13.0-35.40<br \/>\nlinux-image-aws 5.13.0.1017.18<br \/>\nlinux-image-azure 5.13.0.1017.17<br \/>\nlinux-image-gcp 5.13.0.1019.17<br \/>\nlinux-image-generic 5.13.0.35.44<br \/>\nlinux-image-generic-64k 5.13.0.35.44<br \/>\nlinux-image-generic-lpae 5.13.0.35.44<br \/>\nlinux-image-gke 5.13.0.1019.17<br \/>\nlinux-image-kvm 5.13.0.1016.16<br \/>\nlinux-image-lowlatency 5.13.0.35.44<br \/>\nlinux-image-oem-20.04 5.13.0.35.44<br \/>\nlinux-image-oracle 5.13.0.1021.21<br \/>\nlinux-image-raspi 5.13.0.1020.25<br \/>\nlinux-image-raspi-nolpae 5.13.0.1020.25<br \/>\nlinux-image-virtual 5.13.0.35.44<\/p>\n<p dir=\"ltr\">Ubuntu 20.04 LTS:<br \/>\nlinux-image-5.13.0-1017-aws 5.13.0-1017.19~20.04.1<br \/>\nlinux-image-5.13.0-1017-azure 5.13.0-1017.19~20.04.1<br \/>\nlinux-image-5.13.0-1019-gcp 5.13.0-1019.23~20.04.1<br \/>\nlinux-image-5.13.0-1021-oracle 5.13.0-1021.26~20.04.1<br \/>\nlinux-image-5.13.0-35-generic 5.13.0-35.40~20.04.1<br \/>\nlinux-image-5.13.0-35-generic-64k 5.13.0-35.40~20.04.1<br \/>\nlinux-image-5.13.0-35-generic-lpae 5.13.0-35.40~20.04.1<br \/>\nlinux-image-5.13.0-35-lowlatency 5.13.0-35.40~20.04.1<br \/>\nlinux-image-5.14.0-1027-oem 5.14.0-1027.30<br \/>\nlinux-image-aws 5.13.0.1017.19~20.04.10<br \/>\nlinux-image-azure 5.13.0.1017.19~20.04.7<br \/>\nlinux-image-gcp 5.13.0.1019.23~20.04.1<br \/>\nlinux-image-generic-64k-hwe-20.04 5.13.0.35.40~20.04.20<br \/>\nlinux-image-generic-hwe-20.04 5.13.0.35.40~20.04.20<br \/>\nlinux-image-generic-lpae-hwe-20.04 5.13.0.35.40~20.04.20<br \/>\nlinux-image-lowlatency-hwe-20.04 5.13.0.35.40~20.04.20<br \/>\nlinux-image-oem-20.04 5.14.0.1027.24<br \/>\nlinux-image-oem-20.04b 5.14.0.1027.24<br \/>\nlinux-image-oem-20.04c 5.14.0.1027.24<br \/>\nlinux-image-oem-20.04d 5.14.0.1027.24<br \/>\nlinux-image-oracle 5.13.0.1021.26~20.04.1<br \/>\nlinux-image-virtual-hwe-20.04 5.13.0.35.40~20.04.20<\/p>\n<p dir=\"ltr\">After a standard system update you need to reboot your computer to make<br \/>\nall the necessary changes.<\/p>\n<p dir=\"ltr\">ATTENTION: Due to an unavoidable ABI change the kernel updates have<br \/>\nbeen given a new version number, which requires you to recompile and<br \/>\nreinstall all third party kernel modules you might have installed.<br \/>\nUnless you manually uninstalled the standard kernel metapackages<br \/>\n(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,<br \/>\nlinux-powerpc), a standard system upgrade will automatically perform<br \/>\nthis as well.<\/p>\n<p dir=\"ltr\">References:<br \/>\nhttps:\/\/ubuntu.com\/security\/notices\/USN-5317-1<br \/>\nCVE-2022-0001, CVE-2022-0002, CVE-2022-0847, CVE-2022-23960,<br \/>\nCVE-2022-25636, https:\/\/wiki.ubuntu.com\/SecurityTeam\/KnowledgeBase\/BHI<\/p>\n<p dir=\"ltr\">Package Information:<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux\/5.13.0-35.40<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux-aws\/5.13.0-1017.19<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux-azure\/5.13.0-1017.19<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux-gcp\/5.13.0-1019.23<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux-kvm\/5.13.0-1016.17<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux-oracle\/5.13.0-1021.26<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux-raspi\/5.13.0-1020.22<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux-aws-5.13\/5.13.0-1017.19~20.04.1<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux-azure-5.13\/5.13.0-1017.19~20.04.1<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux-gcp-5.13\/5.13.0-1019.23~20.04.1<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux-hwe-5.13\/5.13.0-35.40~20.04.1<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux-oem-5.14\/5.14.0-1027.30<br \/>\nhttps:\/\/launchpad.net\/ubuntu\/+source\/linux-oracle-5.13\/5.13.0-1021.26~20.04.1<\/p>\n","protected":false},"excerpt":{"rendered":"<p>========================================================================== Ubuntu Security Notice USN-5317-1 March 09, 2022 linux, linux-aws, linux-aws-5.13, linux-azure, linux-azure-5.13, linux-gcp, linux-gcp-5.13, linux-hwe-5.13, linux-kvm, linux-oem-5.14, linux-oracle, linux-oracle-5.13, linux-raspi vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: &#8211; Ubuntu 21.10 &#8211; Ubuntu 20.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: &#8211; linux: &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-21476","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/21476","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=21476"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/21476\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=21476"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=21476"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=21476"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}