UBUNTU-CVE-2023-35061

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2023-35061

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-35061.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2023-35061

Upstream

CVE-2023-35061

Published

2024-02-14T14:15:00Z

Modified

2026-02-28T05:44:37.629067Z

Severity

4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
2.3 (Low) CVSS_V4 - CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N CVSS Calculator
Ubuntu - medium

Summary

[none]

Details

Improper initialization for the Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable information disclosure via adjacent access.

References

Affected packages

Ubuntu:14.04:LTS

linux-firmware

Package

Name: linux-firmware
Purl: pkg:deb/ubuntu/linux-firmware@1.127.24?arch=source&distro=trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.116

1.117

1.118

1.119

1.121

1.122

1.123

1.124

1.125

1.126

1.127

1.127.2

1.127.3

1.127.4

1.127.5

1.127.6

1.127.7

1.127.8

1.127.10

1.127.11

1.127.12

1.127.13

1.127.14

1.127.15

1.127.16

1.127.18

1.127.19

1.127.20

1.127.22

1.127.23

1.127.24

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.127.24",
            "binary_name": "linux-firmware"
        },
        {
            "binary_version": "1.127.24",
            "binary_name": "nic-firmware"
        },
        {
            "binary_version": "1.127.24",
            "binary_name": "scsi-firmware"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-35061.json"

Ubuntu:16.04:LTS

linux-firmware

Package

Name: linux-firmware
Purl: pkg:deb/ubuntu/linux-firmware@1.157.23?arch=source&distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.149

1.150

1.152

1.153

1.154

1.155

1.156

1.157

1.157.1

1.157.2

1.157.3

1.157.4

1.157.5

1.157.6

1.157.8

1.157.10

1.157.11

1.157.12

1.157.13

1.157.14

1.157.15

1.157.16

1.157.17

1.157.18

1.157.19

1.157.20

1.157.21

1.157.22

1.157.23

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.157.23",
            "binary_name": "linux-firmware"
        },
        {
            "binary_version": "1.157.23",
            "binary_name": "nic-firmware"
        },
        {
            "binary_version": "1.157.23",
            "binary_name": "scsi-firmware"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-35061.json"

Ubuntu:22.04:LTS

linux-firmware

Package

Name: linux-firmware
Purl: pkg:deb/ubuntu/linux-firmware@20220329.git681281e4-0ubuntu3.41?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.201

1.202

1.204

20220124.*

20220124.git0c6a7b3b-0ubuntu1

20220217.*

20220217.git6342082c-0ubuntu1

20220217.git6342082c-0ubuntu3

20220302.*

20220302.gitee0667aa-0ubuntu1

20220314.*

20220314.gitcd01f857-0ubuntu1

20220314.gitcd01f857-0ubuntu2

20220329.*

20220329.git681281e4-0ubuntu1

20220329.git681281e4-0ubuntu3

20220329.git681281e4-0ubuntu3.2

20220329.git681281e4-0ubuntu3.3

20220329.git681281e4-0ubuntu3.4

20220329.git681281e4-0ubuntu3.5

20220329.git681281e4-0ubuntu3.6

20220329.git681281e4-0ubuntu3.7

20220329.git681281e4-0ubuntu3.9

20220329.git681281e4-0ubuntu3.10

20220329.git681281e4-0ubuntu3.11

20220329.git681281e4-0ubuntu3.12

20220329.git681281e4-0ubuntu3.13

20220329.git681281e4-0ubuntu3.14

20220329.git681281e4-0ubuntu3.16

20220329.git681281e4-0ubuntu3.17

20220329.git681281e4-0ubuntu3.18

20220329.git681281e4-0ubuntu3.19

20220329.git681281e4-0ubuntu3.21

20220329.git681281e4-0ubuntu3.22

20220329.git681281e4-0ubuntu3.23

20220329.git681281e4-0ubuntu3.24

20220329.git681281e4-0ubuntu3.26

20220329.git681281e4-0ubuntu3.29

20220329.git681281e4-0ubuntu3.30

20220329.git681281e4-0ubuntu3.31

20220329.git681281e4-0ubuntu3.34

20220329.git681281e4-0ubuntu3.35

20220329.git681281e4-0ubuntu3.36

20220329.git681281e4-0ubuntu3.37

20220329.git681281e4-0ubuntu3.38

20220329.git681281e4-0ubuntu3.39

20220329.git681281e4-0ubuntu3.40

20220329.git681281e4-0ubuntu3.41

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "20220329.git681281e4-0ubuntu3.41",
            "binary_name": "linux-firmware"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-35061.json"

Ubuntu:24.04:LTS

linux-firmware

Package

Name: linux-firmware
Purl: pkg:deb/ubuntu/linux-firmware@20240318.git3b128b60-0ubuntu2.25?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

20230919.*

20230919.git3672ccab-0ubuntu2.1

20230919.git3672ccab-0ubuntu2.2

20240202.*

20240202.git36777504-0ubuntu1

20240318.*

20240318.git3b128b60-0ubuntu1

20240318.git3b128b60-0ubuntu2

20240318.git3b128b60-0ubuntu2.1

20240318.git3b128b60-0ubuntu2.2

20240318.git3b128b60-0ubuntu2.3

20240318.git3b128b60-0ubuntu2.4

20240318.git3b128b60-0ubuntu2.5

20240318.git3b128b60-0ubuntu2.6

20240318.git3b128b60-0ubuntu2.7

20240318.git3b128b60-0ubuntu2.9

20240318.git3b128b60-0ubuntu2.10

20240318.git3b128b60-0ubuntu2.11

20240318.git3b128b60-0ubuntu2.12

20240318.git3b128b60-0ubuntu2.13

20240318.git3b128b60-0ubuntu2.14

20240318.git3b128b60-0ubuntu2.15

20240318.git3b128b60-0ubuntu2.17

20240318.git3b128b60-0ubuntu2.19

20240318.git3b128b60-0ubuntu2.21

20240318.git3b128b60-0ubuntu2.22

20240318.git3b128b60-0ubuntu2.23

20240318.git3b128b60-0ubuntu2.25

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "20240318.git3b128b60-0ubuntu2.25",
            "binary_name": "linux-firmware"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-35061.json"

Ubuntu:25.10

linux-firmware

Package

Name: linux-firmware
Purl: pkg:deb/ubuntu/linux-firmware@20250901.git993ff19b-0ubuntu1.9?arch=source&distro=questing

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

20250317.*

20250317.git1d4c88ee-0ubuntu1

20250606.*

20250606.git3b75d677-0ubuntu1

20250701.*

20250701.gite2dad11e-0ubuntu1

20250711.*

20250711.git99d64b4f-0ubuntu1

20250807.*

20250807.gitb6b0b152-0ubuntu1

20250818.*

20250818.git07ed893d-0ubuntu1

20250901.*

20250901.git993ff19b-0ubuntu1

20250901.git993ff19b-0ubuntu1.2

20250901.git993ff19b-0ubuntu1.4

20250901.git993ff19b-0ubuntu1.5

20250901.git993ff19b-0ubuntu1.6

20250901.git993ff19b-0ubuntu1.7

20250901.git993ff19b-0ubuntu1.9

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "20250901.git993ff19b-0ubuntu1.9",
            "binary_name": "linux-firmware"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-35061.json"

Ubuntu:Pro:18.04:LTS

linux-firmware

Package

Name: linux-firmware
Purl: pkg:deb/ubuntu/linux-firmware@1.173.21?arch=source&distro=esm-infra/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.169

1.170

1.171

1.172

1.173

1.173.1

1.173.2

1.173.3

1.173.5

1.173.6

1.173.8

1.173.9

1.173.12

1.173.13

1.173.14

1.173.15

1.173.16

1.173.17

1.173.18

1.173.19

1.173.20

1.173.21

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.173.21",
            "binary_name": "linux-firmware"
        },
        {
            "binary_version": "1.173.21",
            "binary_name": "nic-firmware"
        },
        {
            "binary_version": "1.173.21",
            "binary_name": "scsi-firmware"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-35061.json"

Ubuntu:Pro:20.04:LTS

linux-firmware

Package

Name: linux-firmware
Purl: pkg:deb/ubuntu/linux-firmware@1.187.39?arch=source&distro=esm-infra/focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.183

1.183.1

1.183.2

1.184

1.185

1.186

1.187

1.187.1

1.187.2

1.187.3

1.187.4

1.187.6

1.187.7

1.187.8

1.187.9

1.187.10

1.187.11

1.187.12

1.187.14

1.187.15

1.187.16

1.187.17

1.187.19

1.187.20

1.187.23

1.187.24

1.187.25

1.187.26

1.187.27

1.187.29

1.187.30

1.187.31

1.187.32

1.187.33

1.187.34

1.187.35

1.187.36

1.187.38

1.187.39

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.187.39",
            "binary_name": "linux-firmware"
        },
        {
            "binary_version": "1.187.39",
            "binary_name": "nic-firmware"
        },
        {
            "binary_version": "1.187.39",
            "binary_name": "scsi-firmware"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-35061.json"