Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2023-4244

Published: 6 September 2023

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Due to a race condition between nf_tables netlink control plane transaction and nft_set element garbage collection, it is possible to underflow the reference counter causing a use-after-free vulnerability. We recommend upgrading past commit 3e91b0ebd994635df2346353322ac51ce84ce6d8.

From the Ubuntu Security Team

Bien Pham discovered that the netfiler subsystem in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. A local user could use this to cause a denial of service (system crash) or possibly execute arbitrary code.

Notes

AuthorNote
Priority reason:
Allows local code execution / privilege escalation
cascardo
Looks like a duplicate of CVE-2023-4563
rodrigo-zaiden
CVE-2023-4563 was marked as duplicated of this.
USN-6443-1 was firstly announced fixing this CVE for
linux-oem-6.1 in version 6.1.0-1024.24, but one of the fix commits was
missing in that version. The complete fix in linux-oem-6.1 is available
in version 6.1.0-1025.25.

Mitigation

If not needed, disable the ability for unprivileged users
to create namespaces. To do this temporarily, do:
  sudo sysctl -w kernel.unprivileged_userns_clone=0
To disable across reboots, do:
  echo kernel.unprivileged_userns_clone=0 | \
  sudo tee /etc/sysctl.d/99-disable-unpriv-userns.conf

Priority

High

Cvss 3 Severity Score

7.0

Score breakdown

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
bionic Needed

focal
Released (5.4.0-173.191)
jammy
Released (5.15.0-87.97)
lunar
Released (6.2.0-35.35)
mantic
Released (6.5.0-13.13)
noble Not vulnerable
(6.6.0-14.14)
trusty Not vulnerable
(3.11.0-12.19)
upstream
Released (6.6~rc1)
xenial Needed

Patches:
Introduced by

3c4287f62044a90e73a561aa05fc46e62da173da

Fixed by 24138933b97b055d486e8064b4a1721702442a9b
Introduced by

8d8540c4f5e03d847c004e71d6a577bf4f8c78cd

Fixed by 24138933b97b055d486e8064b4a1721702442a9b
Introduced by

9d0982927e79049675cb6c6c04a0ebb3dad5a434

Fixed by 24138933b97b055d486e8064b4a1721702442a9b
Introduced by

cfed7e1b1f8ed9b3d81ab12203cfb69c3ef24ac6

Fixed by 5f68718b34a531a556f2f50300ead2862278da26
Introduced by

3c4287f62044a90e73a561aa05fc46e62da173da

Fixed by f6c383b8c31a93752a52697f8430a71dcbc46adf
Introduced by

8d8540c4f5e03d847c004e71d6a577bf4f8c78cd

Fixed by f6c383b8c31a93752a52697f8430a71dcbc46adf
Introduced by

9d0982927e79049675cb6c6c04a0ebb3dad5a434

Fixed by f6c383b8c31a93752a52697f8430a71dcbc46adf
Introduced by

9d0982927e79049675cb6c6c04a0ebb3dad5a434

Fixed by f6c383b8c31a93752a52697f8430a71dcbc46adf
Introduced by

d0a8d877da976c244092ce859683b2fa116217db

Fixed by c92db3030492b8ad1d0faace7a93bbcf53850d0c
Introduced by

5f68718b34a531a556f2f50300ead2862278da26

Fixed by 6a33d8b73dfac0a41f3877894b38082bd0c9a5bc
Introduced by

5f68718b34a531a556f2f50300ead2862278da26

Fixed by 02c6c24402bf1c1e986899c14ba22a10b510916b
Introduced by

5f68718b34a531a556f2f50300ead2862278da26

Fixed by 02c6c24402bf1c1e986899c14ba22a10b510916b
Introduced by

8aeff920dcc9b3f8cf43042a76428582634d9208

Fixed by 23185c6aed1ffb8fc44087880ba2767aba493779
Introduced by

f6c383b8c31a93752a52697f8430a71dcbc46adf

Fixed by 2ee52ae94baabf7ee09cf2a8d854b990dac5d0e4
linux-allwinner
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Does not exist

lunar Ignored
(end of kernel support)
mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(end of life)
xenial Does not exist

linux-allwinner-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Ignored
(end of kernel support, was needs-triage)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-aws
Launchpad, Ubuntu, Debian
bionic Needed

focal
Released (5.4.0-1120.130)
jammy
Released (5.15.0-1048.53)
lunar
Released (6.2.0-1014.14)
mantic
Released (6.5.0-1010.10)
noble Not vulnerable
(6.6.0-1001.1)
trusty Needed

upstream
Released (6.6~rc1)
xenial Needed

linux-aws-5.0
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-hwe-5.3)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-hwe-5.3)
xenial Does not exist

linux-aws-5.11
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-aws-5.13)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-aws-5.13)
xenial Does not exist

linux-aws-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-aws-5.15)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-aws-5.15)
xenial Does not exist

linux-aws-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.15.0-1048.53~20.04.1)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-aws-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Ignored
(superseded by linux-aws-6.2)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-aws-6.2)
xenial Does not exist

linux-aws-5.3
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-aws-5.4)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-aws-5.4)
xenial Does not exist

linux-aws-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1120.130~18.04.1)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-aws-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-aws-5.11)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-aws-5.11)
xenial Does not exist

linux-aws-6.2
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (6.2.0-1014.14~22.04.1)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-aws-6.5
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

linux-aws-fips
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

linux-aws-hwe
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Needed

linux-azure
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-azure-5.3)
focal
Released (5.4.0-1126.133)
jammy
Released (5.15.0-1050.57)
lunar
Released (6.2.0-1015.15)
mantic
Released (6.5.0-1009.9)
noble Not vulnerable
(6.6.0-1001.1)
trusty Needed

upstream
Released (6.6~rc1)
xenial Needed

linux-azure-4.15
Launchpad, Ubuntu, Debian
bionic Needed

focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-azure-5.11
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-azure-5.13)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-azure-5.13)
xenial Does not exist

linux-azure-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-azure-5.15)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-azure-5.15)
xenial Does not exist

linux-azure-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.15.0-1050.57~20.04.1)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-azure-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Ignored
(superseded by linux-azure-6.2, was needs-triage)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-azure-5.3
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-azure-5.4)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-azure-5.4)
xenial Does not exist

linux-azure-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1126.133~18.04.1)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-azure-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-azure-5.11)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-azure-5.11)
xenial Does not exist

linux-azure-6.2
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (6.2.0-1015.15~22.04.1)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-azure-6.5
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

linux-azure-edge
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-azure-5.3)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-azure-5.3)
xenial Does not exist

linux-azure-fde
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-azure-fde-5.15)
jammy
Released (5.15.0-1050.57)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-azure-fde-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.15.0-1050.57~20.04.1)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-azure-fde-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Ignored
(superseded by linux-azure-fde-6.2, was needs-triage)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-azure-fde-6.2
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (6.2.0-1015.15~22.04.1)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-azure-fips
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

linux-bluefield
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.4.0-1080.87)
jammy
Released (5.15.0-1028.30)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-dell300x
Launchpad, Ubuntu, Debian
bionic Ignored
(end of standard support)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(end of life)
xenial Does not exist

linux-fips
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Ignored
(end of standard support)
upstream
Released (6.6~rc1)
xenial Ignored
(end of standard support)
linux-gcp
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-gcp-5.3)
focal
Released (5.4.0-1124.133)
jammy
Released (5.15.0-1045.53)
lunar
Released (6.2.0-1017.19)
mantic
Released (6.5.0-1010.10)
noble Not vulnerable
(6.6.0-1001.1)
trusty Does not exist

upstream
Released (6.6~rc1)
xenial Needed

linux-gcp-4.15
Launchpad, Ubuntu, Debian
bionic Needed

focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-gcp-5.11
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-gcp-5.13)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-gcp-5.13)
xenial Does not exist

linux-gcp-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-gcp-5.15)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-gcp-5.15)
xenial Does not exist

linux-gcp-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.15.0-1045.53~20.04.2)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-gcp-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Ignored
(superseded by linux-gcp-6.2)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-gcp-5.3
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-gcp-5.4)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-gcp-5.4)
xenial Does not exist

linux-gcp-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1124.133~18.04.1)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-gcp-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-gcp-5.11)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-gcp-5.11)
xenial Does not exist

linux-gcp-6.2
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (6.2.0-1017.19~22.04.1)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-gcp-6.5
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

linux-gcp-fips
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

linux-gke
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(end of kernel support)
jammy
Released (5.15.0-1045.50)
lunar Does not exist

mantic Does not exist

noble Needs triage

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Ignored
(end of standard support)
linux-gke-4.15
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-gke-5.0)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-gke-5.0)
xenial Does not exist

linux-gke-5.0
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-gke-5.3)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-gke-5.3)
xenial Does not exist

linux-gke-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(end of kernel support)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(end of life)
xenial Does not exist

linux-gke-5.3
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-gke-5.4)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-gke-5.4)
xenial Does not exist

linux-gke-5.4
Launchpad, Ubuntu, Debian
bionic Ignored
(end of kernel support)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(end of life)
xenial Does not exist

linux-gkeop
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.4.0-1087.91)
jammy
Released (5.15.0-1031.37)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-gkeop-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.15.0-1031.37~20.04.1)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-gkeop-5.4
Launchpad, Ubuntu, Debian
bionic Ignored
(end of kernel support)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(end of life)
xenial Does not exist

linux-hwe
Launchpad, Ubuntu, Debian
bionic Ignored
(replaced by linux-hwe-5.4)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Needed

linux-hwe-5.11
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-hwe-5.13)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-hwe-5.13)
xenial Does not exist

linux-hwe-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-hwe-5.15)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-hwe-5.15)
xenial Does not exist

linux-hwe-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.15.0-87.97~20.04.1)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-hwe-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Ignored
(superseded by linux-hwe-6.2, was needs-triage)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-hwe-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-173.191~18.04.1)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-hwe-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-hwe-5.11)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-hwe-5.11)
xenial Does not exist

linux-hwe-6.2
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (6.2.0-35.35~22.04.1)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-hwe-6.5
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable
(6.5.0-14.14~22.04.1)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-hwe-edge
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-hwe-5.4)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(end of life)
xenial Ignored
(superseded by linux-hwe)
linux-ibm
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.4.0-1067.72)
jammy
Released (5.15.0-1041.44)
lunar Ignored
(end of kernel support, was needs-triage)
mantic Ignored
(end of kernel support, was needs-triage)
noble Pending
(6.6.0-1001.1)
trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-ibm-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.15.0-1041.44~20.04.1)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-ibm-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1067.72~18.04.1)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-intel-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(end of kernel support)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(end of life)
xenial Does not exist

linux-intel-iotg
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (5.15.0-1043.49)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-intel-iotg-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.15.0-1043.49~20.04.1)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-iot
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.4.0-1032.33)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-kvm
Launchpad, Ubuntu, Debian
bionic Needed

focal
Released (5.4.0-1108.115)
jammy
Released (5.15.0-1045.50)
lunar
Released (6.2.0-1015.15)
mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Needed

linux-laptop
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Does not exist

lunar Does not exist

mantic
Released (6.5.0-1006.9)
noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-lowlatency
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (5.15.0-87.96)
lunar
Released (6.2.0-1015.15)
mantic
Released (6.5.0-13.13.1)
noble Not vulnerable
(6.6.0-14.14.1)
trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-lowlatency-hwe-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.15.0-87.96~20.04.1)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-lowlatency-hwe-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Ignored
(superseded by linux-lowlatency-hwe-6.2, was needs-triage)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-lowlatency-hwe-6.2
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (6.2.0-1015.15~22.04.1)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-lowlatency-hwe-6.5
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable
(6.5.0-14.14.1~22.04.1)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-lts-xenial
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Needed

upstream
Released (6.6~rc1)
xenial Does not exist

linux-nvidia
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (5.15.0-1039.39)
lunar Does not exist

mantic Does not exist

noble Not vulnerable

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-nvidia-6.2
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (6.2.0-1011.11)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-nvidia-6.5
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

linux-oem
Launchpad, Ubuntu, Debian
bionic Ignored
(replaced by linux-hwe-5.4)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(end of life)
xenial Ignored
(end of standard support)
linux-oem-5.10
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-oem-5.13)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-oem-5.13)
xenial Does not exist

linux-oem-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-oem-5.14)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-oem-5.14)
xenial Does not exist

linux-oem-5.14
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(replaced by linux-hwe-5.15)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(replaced by linux-hwe-5.15)
xenial Does not exist

linux-oem-5.17
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Ignored
(superseded by linux-oem-6.1, was needs-triage)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-oem-5.6
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-oem-5.10)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-oem-5.10)
xenial Does not exist

linux-oem-6.0
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Ignored
(superseded by linux-oem-6.1, was needs-triage)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-oem-6.1
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (6.1.0-1025.25)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-oem-6.5
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (6.5.0-1008.8)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-oem-osp1
Launchpad, Ubuntu, Debian
bionic Ignored
(end of standard support)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(end of life)
xenial Does not exist

linux-oracle
Launchpad, Ubuntu, Debian
bionic Needed

focal
Released (5.4.0-1119.128)
jammy
Released (5.15.0-1046.52)
lunar
Released (6.2.0-1014.14)
mantic
Released (6.5.0-1012.12)
noble Not vulnerable
(6.6.0-1001.1)
trusty Does not exist

upstream
Released (6.6~rc1)
xenial Needed

linux-oracle-5.0
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-oracle-5.3)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-oracle-5.3)
xenial Does not exist

linux-oracle-5.11
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-oracle-5.13)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-oracle-5.13)
xenial Does not exist

linux-oracle-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-oracle-5.15)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-oracle-5.15)
xenial Does not exist

linux-oracle-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.15.0-1046.52~20.04.1)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-oracle-5.3
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-oracle-5.4)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-oracle-5.4)
xenial Does not exist

linux-oracle-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1119.128~18.04.1)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-oracle-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-oracle-5.11)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-oracle-5.11)
xenial Does not exist

linux-oracle-6.5
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

linux-raspi
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.4.0-1104.116)
jammy
Released (5.15.0-1041.44)
lunar
Released (6.2.0-1015.17)
mantic
Released (6.5.0-1007.9)
noble Pending
(6.7.0-1001.1)
trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-raspi-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1104.116~18.04.1)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-raspi2
Launchpad, Ubuntu, Debian
bionic Ignored
(end of standard support)
focal Ignored
(replaced by linux-raspi)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(replaced by linux-raspi)
xenial Ignored
(end of standard support)
linux-raspi2-5.3
Launchpad, Ubuntu, Debian
bionic Ignored
(end of standard support)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-raspi2-5.4)
xenial Does not exist

linux-riscv
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-riscv-5.8)
jammy Ignored
(end of kernel support)
lunar
Released (6.2.0-35.35.1)
mantic
Released (6.5.0-13.13.1)
noble Pending

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-riscv-5.11
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-riscv-5.13)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-riscv-5.13)
xenial Does not exist

linux-riscv-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.15.0-1044.48~20.04.1)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-riscv-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Ignored
(end of kernel support)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(end of life)
xenial Does not exist

linux-riscv-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Ignored
(superseded by linux-riscv-5.11)
jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(superseded by linux-riscv-5.11)
xenial Does not exist

linux-riscv-6.5
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

linux-snapdragon
Launchpad, Ubuntu, Debian
bionic Ignored
(end of standard support)
focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(end of life)
xenial Ignored
(end of standard support)
linux-starfive
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Does not exist

lunar
Released (6.2.0-1007.8)
mantic
Released (6.5.0-1004.5)
noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-starfive-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Ignored
(end of kernel support)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Ignored
(end of life)
xenial Does not exist

linux-starfive-6.2
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy
Released (6.2.0-1007.8~22.04.1)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

linux-starfive-6.5
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

linux-xilinx-zynqmp
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.4.0-1039.43)
jammy
Released (5.15.0-1025.29)
lunar Does not exist

mantic Does not exist

noble Does not exist

trusty Does not exist

upstream
Released (6.6~rc1)
xenial Does not exist

Severity score breakdown

Parameter Value
Base score 7.0
Attack vector Local
Attack complexity High
Privileges required Low
User interaction None
Scope Unchanged
Confidentiality High
Integrity impact High
Availability impact High
Vector CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H