USN-5299-1

See a problem?
Source
https://ubuntu.com/security/notices/USN-5299-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/USN-5299-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-5299-1
Related
Published
2022-02-22T10:16:56.367178Z
Modified
2022-02-22T10:16:56.367178Z
Summary
linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities
Details

Mathy Vanhoef discovered that the Linux kernel’s WiFi implementation could reassemble mixed encrypted and plaintext fragments. A physically proximate attacker could possibly use this issue to inject packets or exfiltrate selected fragments. (CVE-2020-26147)

It was discovered that the bluetooth subsystem in the Linux kernel did not properly perform access control. An authenticated attacker could possibly use this to expose sensitive information. (CVE-2020-26558, CVE-2021-0129)

It was discovered that the RPA PCI Hotplug driver implementation in the Linux kernel did not properly handle device name writes via sysfs, leading to a buffer overflow. A privileged attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-28972)

It was discovered that a use-after-free existed in the Bluetooth HCI driver of the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-33034)

Norbert Slusarek discovered that the CAN broadcast manger (bcm) protocol implementation in the Linux kernel did not properly initialize memory in some situations. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2021-34693)

马哲宇 discovered that the IEEE 1394 (Firewire) nosy packet sniffer driver in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-3483)

It was discovered that the bluetooth subsystem in the Linux kernel did not properly handle HCI device initialization failure, leading to a double-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2021-3564)

Murray McAllister discovered that the joystick device interface in the Linux kernel did not properly validate data passed via an ioctl(). A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code on systems with a joystick device registered. (CVE-2021-3612)

It was discovered that the tracing subsystem in the Linux kernel did not properly keep track of per-cpu ring buffer state. A privileged attacker could use this to cause a denial of service. (CVE-2021-3679)

It was discovered that the MAX-3421 host USB device driver in the Linux kernel did not properly handle device removal events. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2021-38204)

It was discovered that the 6pack network protocol driver in the Linux kernel did not properly perform validation checks. A privileged attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2021-42008)

Amit Klein discovered that the IPv6 implementation in the Linux kernel could disclose internal state in some situations. An attacker could possibly use this to expose sensitive information. (CVE-2021-45485)

References

Affected packages

Ubuntu:Pro:14.04:LTS / linux-lts-xenial

Package

Name
linux-lts-xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-219.252~14.04.1

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "linux-headers-lowlatency-lts-xenial": "4.4.0.219.190",
            "linux-image-4.4.0-219-generic": "4.4.0-219.252~14.04.1",
            "linux-signed-lowlatency-lts-xenial": "4.4.0.219.190",
            "linux-modules-4.4.0-219-lowlatency": "4.4.0-219.252~14.04.1",
            "linux-headers-4.4.0-219-generic": "4.4.0-219.252~14.04.1",
            "linux-buildinfo-4.4.0-219-lowlatency": "4.4.0-219.252~14.04.1",
            "linux-cloud-tools-lowlatency-lts-xenial": "4.4.0.219.190",
            "linux-image-virtual-lts-xenial": "4.4.0.219.190",
            "linux-image-unsigned-4.4.0-219-generic": "4.4.0-219.252~14.04.1",
            "linux-generic-lts-xenial": "4.4.0.219.190",
            "linux-headers-4.4.0-219": "4.4.0-219.252~14.04.1",
            "linux-modules-extra-4.4.0-219-generic": "4.4.0-219.252~14.04.1",
            "linux-lts-xenial-cloud-tools-4.4.0-219": "4.4.0-219.252~14.04.1",
            "linux-image-generic-lts-xenial": "4.4.0.219.190",
            "linux-image-extra-virtual-lts-xenial": "4.4.0.219.190",
            "linux-tools-generic-lts-xenial": "4.4.0.219.190",
            "linux-tools-4.4.0-219-lowlatency": "4.4.0-219.252~14.04.1",
            "linux-virtual-lts-xenial": "4.4.0.219.190",
            "linux-headers-4.4.0-219-lowlatency": "4.4.0-219.252~14.04.1",
            "linux-headers-virtual-lts-xenial": "4.4.0.219.190",
            "linux-signed-generic-lts-xenial": "4.4.0.219.190",
            "linux-cloud-tools-generic-lts-xenial": "4.4.0.219.190",
            "linux-headers-generic-lts-xenial": "4.4.0.219.190",
            "linux-image-lowlatency-lts-xenial": "4.4.0.219.190",
            "linux-lowlatency-lts-xenial": "4.4.0.219.190",
            "linux-image-4.4.0-219-lowlatency": "4.4.0-219.252~14.04.1",
            "linux-cloud-tools-virtual-lts-xenial": "4.4.0.219.190",
            "linux-cloud-tools-4.4.0-219-generic": "4.4.0-219.252~14.04.1",
            "linux-signed-image-generic-lts-xenial": "4.4.0.219.190",
            "linux-modules-4.4.0-219-generic": "4.4.0-219.252~14.04.1",
            "linux-signed-image-lowlatency-lts-xenial": "4.4.0.219.190",
            "linux-image-unsigned-4.4.0-219-lowlatency": "4.4.0-219.252~14.04.1",
            "linux-tools-4.4.0-219-generic": "4.4.0-219.252~14.04.1",
            "linux-buildinfo-4.4.0-219-generic": "4.4.0-219.252~14.04.1",
            "linux-tools-virtual-lts-xenial": "4.4.0.219.190",
            "linux-lts-xenial-tools-4.4.0-219": "4.4.0-219.252~14.04.1",
            "linux-tools-lowlatency-lts-xenial": "4.4.0.219.190",
            "linux-cloud-tools-4.4.0-219-lowlatency": "4.4.0-219.252~14.04.1"
        }
    ]
}

Ubuntu:Pro:14.04:LTS / linux-aws

Package

Name
linux-aws

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-1099.104

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "linux-image-4.4.0-1099-aws": "4.4.0-1099.104",
            "linux-cloud-tools-4.4.0-1099-aws": "4.4.0-1099.104",
            "linux-modules-4.4.0-1099-aws": "4.4.0-1099.104",
            "linux-aws-tools-4.4.0-1099": "4.4.0-1099.104",
            "linux-aws-cloud-tools-4.4.0-1099": "4.4.0-1099.104",
            "linux-headers-aws": "4.4.0.1099.97",
            "linux-headers-4.4.0-1099-aws": "4.4.0-1099.104",
            "linux-aws-headers-4.4.0-1099": "4.4.0-1099.104",
            "linux-buildinfo-4.4.0-1099-aws": "4.4.0-1099.104",
            "linux-tools-4.4.0-1099-aws": "4.4.0-1099.104",
            "linux-aws": "4.4.0.1099.97",
            "linux-image-aws": "4.4.0.1099.97",
            "linux-tools-aws": "4.4.0.1099.97"
        }
    ]
}

Ubuntu:Pro:16.04:LTS / linux-aws

Package

Name
linux-aws

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-1135.149

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "linux-image-4.4.0-1135-aws": "4.4.0-1135.149",
            "linux-buildinfo-4.4.0-1135-aws": "4.4.0-1135.149",
            "linux-tools-4.4.0-1135-aws": "4.4.0-1135.149",
            "linux-headers-4.4.0-1135-aws": "4.4.0-1135.149",
            "linux-headers-aws": "4.4.0.1135.140",
            "linux-aws-headers-4.4.0-1135": "4.4.0-1135.149",
            "linux-image-aws": "4.4.0.1135.140",
            "linux-aws": "4.4.0.1135.140",
            "linux-modules-4.4.0-1135-aws": "4.4.0-1135.149",
            "linux-modules-extra-aws": "4.4.0.1135.140",
            "linux-aws-cloud-tools-4.4.0-1135": "4.4.0-1135.149",
            "linux-aws-tools-4.4.0-1135": "4.4.0-1135.149",
            "linux-cloud-tools-4.4.0-1135-aws": "4.4.0-1135.149",
            "linux-modules-extra-4.4.0-1135-aws": "4.4.0-1135.149",
            "linux-tools-aws": "4.4.0.1135.140"
        }
    ]
}

Ubuntu:Pro:16.04:LTS / linux-kvm

Package

Name
linux-kvm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-1100.109

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "linux-headers-kvm": "4.4.0.1100.98",
            "linux-headers-4.4.0-1100-kvm": "4.4.0-1100.109",
            "linux-kvm": "4.4.0.1100.98",
            "linux-image-4.4.0-1100-kvm": "4.4.0-1100.109",
            "linux-kvm-tools-4.4.0-1100": "4.4.0-1100.109",
            "linux-tools-kvm": "4.4.0.1100.98",
            "linux-modules-4.4.0-1100-kvm": "4.4.0-1100.109",
            "linux-tools-4.4.0-1100-kvm": "4.4.0-1100.109",
            "linux-kvm-cloud-tools-4.4.0-1100": "4.4.0-1100.109",
            "linux-buildinfo-4.4.0-1100-kvm": "4.4.0-1100.109",
            "linux-kvm-headers-4.4.0-1100": "4.4.0-1100.109",
            "linux-image-kvm": "4.4.0.1100.98",
            "linux-cloud-tools-4.4.0-1100-kvm": "4.4.0-1100.109"
        }
    ]
}

Ubuntu:Pro:16.04:LTS / linux

Package

Name
linux

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-219.252

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "linux-tools-virtual-lts-vivid": "4.4.0.219.226",
            "linux-tools-generic-lts-wily": "4.4.0.219.226",
            "linux-headers-generic-lts-wily": "4.4.0.219.226",
            "linux-cloud-tools-virtual-lts-wily": "4.4.0.219.226",
            "linux-source-4.4.0": "4.4.0-219.252",
            "linux-cloud-tools-lowlatency-lts-xenial": "4.4.0.219.226",
            "linux-image-extra-virtual-lts-utopic": "4.4.0.219.226",
            "linux-generic-lts-utopic": "4.4.0.219.226",
            "linux-headers-4.4.0-219": "4.4.0-219.252",
            "linux-tools-virtual": "4.4.0.219.226",
            "linux-signed-image-lowlatency": "4.4.0.219.226",
            "linux-source": "4.4.0.219.226",
            "linux-cloud-tools-4.4.0-219": "4.4.0-219.252",
            "linux-cloud-tools-generic": "4.4.0.219.226",
            "linux-tools-generic": "4.4.0.219.226",
            "linux-image-virtual": "4.4.0.219.226",
            "linux-signed-image-generic-lts-wily": "4.4.0.219.226",
            "linux-headers-virtual-lts-utopic": "4.4.0.219.226",
            "linux-image-generic-lts-vivid": "4.4.0.219.226",
            "linux-virtual": "4.4.0.219.226",
            "linux-virtual-lts-utopic": "4.4.0.219.226",
            "linux-crashdump": "4.4.0.219.226",
            "linux-generic-lts-vivid": "4.4.0.219.226",
            "linux-image-lowlatency-lts-xenial": "4.4.0.219.226",
            "linux-generic": "4.4.0.219.226",
            "linux-image-4.4.0-219-lowlatency": "4.4.0-219.252",
            "linux-cloud-tools-4.4.0-219-generic": "4.4.0-219.252",
            "linux-headers-lowlatency-lts-utopic": "4.4.0.219.226",
            "linux-cloud-tools-lowlatency-lts-wily": "4.4.0.219.226",
            "linux-image-generic-lts-wily": "4.4.0.219.226",
            "linux-signed-image-generic": "4.4.0.219.226",
            "linux-tools-lowlatency": "4.4.0.219.226",
            "linux-image-virtual-lts-vivid": "4.4.0.219.226",
            "linux-image-hwe-virtual-trusty": "4.4.0.219.226",
            "linux-cloud-tools-common": "4.4.0-219.252",
            "linux-modules-4.4.0-219-lowlatency": "4.4.0-219.252",
            "linux-libc-dev": "4.4.0-219.252",
            "linux-image-virtual-lts-xenial": "4.4.0.219.226",
            "linux-image-unsigned-4.4.0-219-generic": "4.4.0-219.252",
            "linux-tools-lowlatency-lts-wily": "4.4.0.219.226",
            "linux-image-generic-lts-xenial": "4.4.0.219.226",
            "linux-headers-virtual": "4.4.0.219.226",
            "linux-hwe-generic-trusty": "4.4.0.219.226",
            "linux-virtual-lts-xenial": "4.4.0.219.226",
            "linux-image-generic-lts-utopic": "4.4.0.219.226",
            "linux-headers-4.4.0-219-lowlatency": "4.4.0-219.252",
            "linux-tools-generic-lts-vivid": "4.4.0.219.226",
            "linux-headers-virtual-lts-xenial": "4.4.0.219.226",
            "linux-headers-virtual-lts-vivid": "4.4.0.219.226",
            "linux-generic-lts-wily": "4.4.0.219.226",
            "linux-tools-lts-utopic": "4.4.0.219.226",
            "linux-signed-lowlatency": "4.4.0.219.226",
            "linux-lowlatency-lts-vivid": "4.4.0.219.226",
            "linux-image-extra-virtual-lts-vivid": "4.4.0.219.226",
            "linux-cloud-tools-virtual-lts-xenial": "4.4.0.219.226",
            "linux-headers-generic-lts-vivid": "4.4.0.219.226",
            "linux-lowlatency-lts-utopic": "4.4.0.219.226",
            "linux-signed-image-lowlatency-lts-xenial": "4.4.0.219.226",
            "linux-tools-common": "4.4.0-219.252",
            "linux-image-unsigned-4.4.0-219-lowlatency": "4.4.0-219.252",
            "linux-lowlatency": "4.4.0.219.226",
            "linux-tools-4.4.0-219-generic": "4.4.0-219.252",
            "linux-buildinfo-4.4.0-219-generic": "4.4.0-219.252",
            "linux-tools-generic-lts-utopic": "4.4.0.219.226",
            "linux-headers-generic-lts-utopic": "4.4.0.219.226",
            "linux-tools-4.4.0-219": "4.4.0-219.252",
            "linux-cloud-tools-virtual-lts-utopic": "4.4.0.219.226",
            "linux-signed-image-generic-lts-utopic": "4.4.0.219.226",
            "linux-cloud-tools-generic-lts-wily": "4.4.0.219.226",
            "linux-image-lowlatency-lts-vivid": "4.4.0.219.226",
            "linux-signed-generic-lts-vivid": "4.4.0.219.226",
            "linux-image-hwe-generic-trusty": "4.4.0.219.226",
            "linux-headers-4.4.0-219-generic": "4.4.0-219.252",
            "linux-tools-virtual-lts-wily": "4.4.0.219.226",
            "linux-image-generic": "4.4.0.219.226",
            "linux-lowlatency-lts-wily": "4.4.0.219.226",
            "linux-buildinfo-4.4.0-219-lowlatency": "4.4.0-219.252",
            "linux-cloud-tools-virtual": "4.4.0.219.226",
            "linux-cloud-tools-lowlatency": "4.4.0.219.226",
            "linux-image-virtual-lts-utopic": "4.4.0.219.226",
            "linux-signed-image-generic-lts-xenial": "4.4.0.219.226",
            "linux-modules-4.4.0-219-generic": "4.4.0-219.252",
            "linux-cloud-tools-lowlatency-lts-vivid": "4.4.0.219.226",
            "linux-cloud-tools-generic-lts-vivid": "4.4.0.219.226",
            "linux-cloud-tools-virtual-lts-vivid": "4.4.0.219.226",
            "linux-image-extra-virtual": "4.4.0.219.226",
            "linux-signed-image-lowlatency-lts-wily": "4.4.0.219.226",
            "linux-headers-lowlatency-lts-wily": "4.4.0.219.226",
            "linux-tools-generic-lts-xenial": "4.4.0.219.226",
            "linux-tools-4.4.0-219-lowlatency": "4.4.0-219.252",
            "linux-cloud-tools-lowlatency-lts-utopic": "4.4.0.219.226",
            "linux-signed-image-generic-lts-vivid": "4.4.0.219.226",
            "linux-cloud-tools-generic-lts-xenial": "4.4.0.219.226",
            "linux-headers-generic-lts-xenial": "4.4.0.219.226",
            "linux-lowlatency-lts-xenial": "4.4.0.219.226",
            "linux-virtual-lts-vivid": "4.4.0.219.226",
            "linux-image-lowlatency-lts-utopic": "4.4.0.219.226",
            "linux-image-extra-virtual-lts-wily": "4.4.0.219.226",
            "linux-cloud-tools-4.4.0-219-lowlatency": "4.4.0-219.252",
            "linux-headers-lowlatency-lts-xenial": "4.4.0.219.226",
            "linux-signed-lowlatency-lts-wily": "4.4.0.219.226",
            "linux-image-4.4.0-219-generic": "4.4.0-219.252",
            "linux-tools-lowlatency-lts-vivid": "4.4.0.219.226",
            "linux-signed-lowlatency-lts-xenial": "4.4.0.219.226",
            "linux-image-lowlatency-lts-wily": "4.4.0.219.226",
            "linux-doc": "4.4.0-219.252",
            "linux-generic-lts-xenial": "4.4.0.219.226",
            "linux-headers-lowlatency-lts-vivid": "4.4.0.219.226",
            "linux-modules-extra-4.4.0-219-generic": "4.4.0-219.252",
            "linux-headers-generic": "4.4.0.219.226",
            "linux-headers-lowlatency": "4.4.0.219.226",
            "linux-image-lowlatency": "4.4.0.219.226",
            "linux-image-extra-virtual-lts-xenial": "4.4.0.219.226",
            "linux-tools-virtual-lts-utopic": "4.4.0.219.226",
            "linux-tools-host": "4.4.0-219.252",
            "linux-headers-virtual-lts-wily": "4.4.0.219.226",
            "linux-signed-generic-lts-wily": "4.4.0.219.226",
            "linux-signed-generic-lts-xenial": "4.4.0.219.226",
            "linux-signed-generic-lts-utopic": "4.4.0.219.226",
            "linux-cloud-tools-generic-lts-utopic": "4.4.0.219.226",
            "linux-image-virtual-lts-wily": "4.4.0.219.226",
            "linux-hwe-virtual-trusty": "4.4.0.219.226",
            "linux-tools-lowlatency-lts-utopic": "4.4.0.219.226",
            "linux-signed-generic": "4.4.0.219.226",
            "linux-virtual-lts-wily": "4.4.0.219.226",
            "linux-tools-lowlatency-lts-xenial": "4.4.0.219.226",
            "linux-tools-virtual-lts-xenial": "4.4.0.219.226"
        }
    ]
}