USN-6415-1: Linux kernel (OEM) vulnerabilities
4 October 2023
Several security issues were fixed in the Linux kernel.
Releases
Packages
- linux-oem-6.1 - Linux kernel for OEM systems
Details
Daniel Trujillo, Johannes Wikner, and Kaveh Razavi discovered that some AMD
processors utilising speculative execution and branch prediction may allow
unauthorised memory reads via a speculative side-channel attack. A local
attacker could use this to expose sensitive information, including kernel
memory. (CVE-2023-20569)
Ivan D Barrera, Christopher Bednarz, Mustafa Ismail, and Shiraz Saleem
discovered that the InfiniBand RDMA driver in the Linux kernel did not
properly check for zero-length STAG or MR registration. A remote attacker
could possibly use this to execute arbitrary code. (CVE-2023-25775)
It was discovered that the USB subsystem in the Linux kernel contained a
race condition while handling device descriptors in certain situations,
leading to a out-of-bounds read vulnerability. A local attacker could
possibly use this to cause a denial of service (system crash).
(CVE-2023-37453)
Lin Ma discovered that the Netlink Transformation (XFRM) subsystem in the
Linux kernel contained a null pointer dereference vulnerability in some
situations. A local privileged attacker could use this to cause a denial of
service (system crash). (CVE-2023-3772)
Lin Ma discovered that the Netlink Transformation (XFRM) subsystem in the
Linux kernel did not properly initialize a policy data structure, leading
to an out-of-bounds vulnerability. A local privileged attacker could use
this to cause a denial of service (system crash) or possibly expose
sensitive information (kernel memory). (CVE-2023-3773)
Kyle Zeng discovered that the netfiler subsystem in the Linux kernel did
not properly calculate array offsets, leading to a out-of-bounds write
vulnerability. A local user could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2023-42753)
Bing-Jhong Billy Jheng discovered that the Unix domain socket
implementation in the Linux kernel contained a race condition in certain
situations, leading to a use-after-free vulnerability. A local attacker
could use this to cause a denial of service (system crash) or possibly
execute arbitrary code. (CVE-2023-4622)
Budimir Markovic discovered that the qdisc implementation in the Linux
kernel did not properly validate inner classes, leading to a use-after-free
vulnerability. A local user could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2023-4623)
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 22.04
-
linux-image-6.1.0-1023-oem
-
6.1.0-1023.23
-
linux-image-oem-22.04a
-
6.1.0.1023.24
-
linux-image-oem-22.04b
-
6.1.0.1023.24
-
linux-image-oem-22.04c
-
6.1.0.1023.24
After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.
Related notices
- USN-6534-1
- USN-6549-1
- USN-6534-2
- USN-6549-2
- USN-6534-3
- USN-6549-3
- USN-6549-4
- USN-6549-5
- USN-6439-1
- USN-6440-1
- USN-6440-2
- USN-6439-2
- USN-6440-3
- USN-6462-1
- USN-6464-1
- USN-6465-1
- USN-6466-1
- USN-6465-2
- USN-6465-3
- USN-6462-2
- USN-6516-1
- USN-6520-1
- USN-6319-1
- USN-6412-1
- USN-6416-1
- USN-6416-2
- USN-6416-3
- USN-6445-1
- USN-6445-2
- USN-6441-1
- USN-6442-1
- USN-6444-1
- USN-6446-1
- USN-6441-2
- USN-6444-2
- USN-6446-2
- USN-6446-3
- USN-6441-3
- LSN-0099-1
- USN-6548-1
- USN-6548-2
- USN-6548-3
- USN-6548-4
- USN-6548-5
- USN-6635-1
- USN-6496-1
- USN-6502-1
- USN-6502-2
- USN-6502-3
- USN-6496-2
- USN-6502-4
- USN-6460-1