USN-5317-1

See a problem?
Source
https://ubuntu.com/security/notices/USN-5317-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/USN-5317-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-5317-1
Related
  • CVE-2022-0001
  • CVE-2022-0002
  • CVE-2022-0847
  • CVE-2022-23960
  • CVE-2022-25636
  • https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/BHI
Published
2022-03-09T00:00:42.556125Z
Modified
2022-03-09T00:00:42.556125Z
Summary
linux, linux-aws, linux-aws-5.13, linux-azure, linux-azure-5.13, linux-gcp, linux-gcp-5.13, linux-hwe-5.13, linux-kvm, linux-oem-5.14, linux-oracle, linux-oracle-5.13, linux-raspi vulnerabilities
Details

Nick Gregory discovered that the Linux kernel incorrectly handled network offload functionality. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2022-25636)

Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida discovered that hardware mitigations added by ARM to their processors to address Spectre-BTI were insufficient. A local attacker could potentially use this to expose sensitive information. (CVE-2022-23960)

Max Kellermann discovered that the Linux kernel incorrectly handled Unix pipes. A local attacker could potentially use this to modify any file that could be opened for reading. (CVE-2022-0847)

Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida discovered that hardware mitigations added by Intel to their processors to address Spectre-BTI were insufficient. A local attacker could potentially use this to expose sensitive information. (CVE-2022-0001, CVE-2022-0002)

References

Affected packages

Ubuntu:20.04:LTS / linux-oem-5.14

Package

Name
linux-oem-5.14

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-1027.30

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-oem-5.14-tools-host": "5.14.0-1027.30",
            "linux-oem-20.04c": "5.14.0.1027.24",
            "linux-tools-oem-20.04c": "5.14.0.1027.24",
            "linux-oem-5.14-headers-5.14.0-1027": "5.14.0-1027.30",
            "linux-image-oem-20.04d": "5.14.0.1027.24",
            "linux-headers-oem-20.04b": "5.14.0.1027.24",
            "linux-oem-20.04b": "5.14.0.1027.24",
            "linux-headers-5.14.0-1027-oem": "5.14.0-1027.30",
            "linux-image-oem-20.04": "5.14.0.1027.24",
            "linux-headers-oem-20.04c": "5.14.0.1027.24",
            "linux-tools-oem-20.04d": "5.14.0.1027.24",
            "linux-image-oem-20.04c": "5.14.0.1027.24",
            "linux-image-5.14.0-1027-oem": "5.14.0-1027.30",
            "linux-tools-oem-20.04": "5.14.0.1027.24",
            "linux-oem-20.04": "5.14.0.1027.24",
            "linux-modules-5.14.0-1027-oem": "5.14.0-1027.30",
            "linux-headers-oem-20.04": "5.14.0.1027.24",
            "linux-buildinfo-5.14.0-1027-oem": "5.14.0-1027.30",
            "linux-oem-5.14-tools-5.14.0-1027": "5.14.0-1027.30",
            "linux-tools-oem-20.04b": "5.14.0.1027.24",
            "linux-oem-20.04d": "5.14.0.1027.24",
            "linux-headers-oem-20.04d": "5.14.0.1027.24",
            "linux-image-oem-20.04b": "5.14.0.1027.24",
            "linux-image-unsigned-5.14.0-1027-oem": "5.14.0-1027.30",
            "linux-tools-5.14.0-1027-oem": "5.14.0-1027.30"
        }
    ]
}

Ubuntu:20.04:LTS / linux-oracle-5.13

Package

Name
linux-oracle-5.13

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.13.0-1021.26~20.04.1

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-tools-5.13.0-1021-oracle": "5.13.0-1021.26~20.04.1",
            "linux-modules-extra-5.13.0-1021-oracle": "5.13.0-1021.26~20.04.1",
            "linux-image-unsigned-5.13.0-1021-oracle": "5.13.0-1021.26~20.04.1",
            "linux-oracle-5.13-tools-5.13.0-1021": "5.13.0-1021.26~20.04.1",
            "linux-oracle-5.13-headers-5.13.0-1021": "5.13.0-1021.26~20.04.1",
            "linux-tools-oracle-edge": "5.13.0.1021.26~20.04.1",
            "linux-oracle": "5.13.0.1021.26~20.04.1",
            "linux-buildinfo-5.13.0-1021-oracle": "5.13.0-1021.26~20.04.1",
            "linux-headers-5.13.0-1021-oracle": "5.13.0-1021.26~20.04.1",
            "linux-modules-5.13.0-1021-oracle": "5.13.0-1021.26~20.04.1",
            "linux-headers-oracle": "5.13.0.1021.26~20.04.1",
            "linux-oracle-edge": "5.13.0.1021.26~20.04.1",
            "linux-image-oracle-edge": "5.13.0.1021.26~20.04.1",
            "linux-headers-oracle-edge": "5.13.0.1021.26~20.04.1",
            "linux-image-5.13.0-1021-oracle": "5.13.0-1021.26~20.04.1",
            "linux-tools-oracle": "5.13.0.1021.26~20.04.1",
            "linux-image-oracle": "5.13.0.1021.26~20.04.1"
        }
    ]
}

Ubuntu:20.04:LTS / linux-azure-5.13

Package

Name
linux-azure-5.13

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.13.0-1017.19~20.04.1

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-modules-extra-azure": "5.13.0.1017.19~20.04.7",
            "linux-image-5.13.0-1017-azure": "5.13.0-1017.19~20.04.1",
            "linux-buildinfo-5.13.0-1017-azure": "5.13.0-1017.19~20.04.1",
            "linux-azure-5.13-tools-5.13.0-1017": "5.13.0-1017.19~20.04.1",
            "linux-azure": "5.13.0.1017.19~20.04.7",
            "linux-headers-5.13.0-1017-azure": "5.13.0-1017.19~20.04.1",
            "linux-modules-extra-5.13.0-1017-azure": "5.13.0-1017.19~20.04.1",
            "linux-azure-5.13-cloud-tools-5.13.0-1017": "5.13.0-1017.19~20.04.1",
            "linux-azure-5.13-headers-5.13.0-1017": "5.13.0-1017.19~20.04.1",
            "linux-tools-5.13.0-1017-azure": "5.13.0-1017.19~20.04.1",
            "linux-azure-edge": "5.13.0.1017.19~20.04.7",
            "linux-headers-azure-edge": "5.13.0.1017.19~20.04.7",
            "linux-modules-5.13.0-1017-azure": "5.13.0-1017.19~20.04.1",
            "linux-tools-azure-edge": "5.13.0.1017.19~20.04.7",
            "linux-cloud-tools-azure": "5.13.0.1017.19~20.04.7",
            "linux-cloud-tools-azure-edge": "5.13.0.1017.19~20.04.7",
            "linux-cloud-tools-5.13.0-1017-azure": "5.13.0-1017.19~20.04.1",
            "linux-tools-azure": "5.13.0.1017.19~20.04.7",
            "linux-headers-azure": "5.13.0.1017.19~20.04.7",
            "linux-image-azure": "5.13.0.1017.19~20.04.7",
            "linux-image-azure-edge": "5.13.0.1017.19~20.04.7",
            "linux-image-unsigned-5.13.0-1017-azure": "5.13.0-1017.19~20.04.1",
            "linux-modules-extra-azure-edge": "5.13.0.1017.19~20.04.7"
        }
    ]
}

Ubuntu:20.04:LTS / linux-hwe-5.13

Package

Name
linux-hwe-5.13

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.13.0-35.40~20.04.1

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-headers-5.13.0-35-generic-64k": "5.13.0-35.40~20.04.1",
            "linux-headers-5.13.0-35-lowlatency": "5.13.0-35.40~20.04.1",
            "linux-cloud-tools-5.13.0-35-lowlatency": "5.13.0-35.40~20.04.1",
            "linux-tools-generic-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-image-generic-lpae-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-headers-generic-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-image-generic-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-image-generic-64k-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-hwe-5.13-cloud-tools-5.13.0-35": "5.13.0-35.40~20.04.1",
            "linux-image-5.13.0-35-generic-64k": "5.13.0-35.40~20.04.1",
            "linux-headers-generic-lpae-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-buildinfo-5.13.0-35-generic-64k": "5.13.0-35.40~20.04.1",
            "linux-image-unsigned-5.13.0-35-generic": "5.13.0-35.40~20.04.1",
            "linux-modules-extra-5.13.0-35-generic": "5.13.0-35.40~20.04.1",
            "linux-hwe-5.13-source-5.13.0": "5.13.0-35.40~20.04.1",
            "linux-modules-5.13.0-35-lowlatency": "5.13.0-35.40~20.04.1",
            "linux-lowlatency-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-generic-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-tools-5.13.0-35-generic-lpae": "5.13.0-35.40~20.04.1",
            "linux-headers-5.13.0-35-generic-lpae": "5.13.0-35.40~20.04.1",
            "linux-generic-64k-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-tools-virtual-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-image-extra-virtual-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-hwe-5.13-cloud-tools-common": "5.13.0-35.40~20.04.1",
            "linux-image-5.13.0-35-generic-lpae": "5.13.0-35.40~20.04.1",
            "linux-hwe-5.13-headers-5.13.0-35": "5.13.0-35.40~20.04.1",
            "linux-image-5.13.0-35-generic": "5.13.0-35.40~20.04.1",
            "linux-tools-5.13.0-35-generic": "5.13.0-35.40~20.04.1",
            "linux-tools-generic-lpae-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-headers-lowlatency-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-image-unsigned-5.13.0-35-lowlatency": "5.13.0-35.40~20.04.1",
            "linux-hwe-5.13-tools-5.13.0-35": "5.13.0-35.40~20.04.1",
            "linux-generic-lpae-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-cloud-tools-generic-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-virtual-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-image-5.13.0-35-lowlatency": "5.13.0-35.40~20.04.1",
            "linux-buildinfo-5.13.0-35-generic": "5.13.0-35.40~20.04.1",
            "linux-hwe-5.13-tools-host": "5.13.0-35.40~20.04.1",
            "linux-image-lowlatency-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-cloud-tools-virtual-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-hwe-5.13-tools-common": "5.13.0-35.40~20.04.1",
            "linux-headers-generic-64k-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-tools-lowlatency-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-modules-5.13.0-35-generic": "5.13.0-35.40~20.04.1",
            "linux-headers-virtual-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-image-virtual-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-tools-5.13.0-35-lowlatency": "5.13.0-35.40~20.04.1",
            "linux-buildinfo-5.13.0-35-lowlatency": "5.13.0-35.40~20.04.1",
            "linux-image-unsigned-5.13.0-35-generic-64k": "5.13.0-35.40~20.04.1",
            "linux-tools-generic-64k-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-cloud-tools-lowlatency-hwe-20.04": "5.13.0.35.40~20.04.20",
            "linux-modules-5.13.0-35-generic-lpae": "5.13.0-35.40~20.04.1",
            "linux-cloud-tools-5.13.0-35-generic": "5.13.0-35.40~20.04.1",
            "linux-buildinfo-5.13.0-35-generic-lpae": "5.13.0-35.40~20.04.1",
            "linux-modules-5.13.0-35-generic-64k": "5.13.0-35.40~20.04.1",
            "linux-tools-5.13.0-35-generic-64k": "5.13.0-35.40~20.04.1",
            "linux-headers-5.13.0-35-generic": "5.13.0-35.40~20.04.1"
        }
    ]
}

Ubuntu:20.04:LTS / linux-gcp-5.13

Package

Name
linux-gcp-5.13

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.13.0-1019.23~20.04.1

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-gcp-5.13-headers-5.13.0-1019": "5.13.0-1019.23~20.04.1",
            "linux-tools-gcp": "5.13.0.1019.23~20.04.1",
            "linux-image-5.13.0-1019-gcp": "5.13.0-1019.23~20.04.1",
            "linux-modules-5.13.0-1019-gcp": "5.13.0-1019.23~20.04.1",
            "linux-tools-5.13.0-1019-gcp": "5.13.0-1019.23~20.04.1",
            "linux-tools-gcp-edge": "5.13.0.1019.23~20.04.1",
            "linux-gcp": "5.13.0.1019.23~20.04.1",
            "linux-headers-gcp-edge": "5.13.0.1019.23~20.04.1",
            "linux-modules-extra-5.13.0-1019-gcp": "5.13.0-1019.23~20.04.1",
            "linux-image-gcp-edge": "5.13.0.1019.23~20.04.1",
            "linux-headers-gcp": "5.13.0.1019.23~20.04.1",
            "linux-image-gcp": "5.13.0.1019.23~20.04.1",
            "linux-modules-extra-gcp-edge": "5.13.0.1019.23~20.04.1",
            "linux-gcp-edge": "5.13.0.1019.23~20.04.1",
            "linux-image-unsigned-5.13.0-1019-gcp": "5.13.0-1019.23~20.04.1",
            "linux-modules-extra-gcp": "5.13.0.1019.23~20.04.1",
            "linux-gcp-5.13-tools-5.13.0-1019": "5.13.0-1019.23~20.04.1",
            "linux-headers-5.13.0-1019-gcp": "5.13.0-1019.23~20.04.1",
            "linux-buildinfo-5.13.0-1019-gcp": "5.13.0-1019.23~20.04.1"
        }
    ]
}

Ubuntu:20.04:LTS / linux-aws-5.13

Package

Name
linux-aws-5.13

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.13.0-1017.19~20.04.1

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-aws-5.13-tools-5.13.0-1017": "5.13.0-1017.19~20.04.1",
            "linux-image-aws-edge": "5.13.0.1017.19~20.04.10",
            "linux-tools-5.13.0-1017-aws": "5.13.0-1017.19~20.04.1",
            "linux-headers-5.13.0-1017-aws": "5.13.0-1017.19~20.04.1",
            "linux-headers-aws": "5.13.0.1017.19~20.04.10",
            "linux-aws": "5.13.0.1017.19~20.04.10",
            "linux-buildinfo-5.13.0-1017-aws": "5.13.0-1017.19~20.04.1",
            "linux-image-5.13.0-1017-aws": "5.13.0-1017.19~20.04.1",
            "linux-image-aws": "5.13.0.1017.19~20.04.10",
            "linux-headers-aws-edge": "5.13.0.1017.19~20.04.10",
            "linux-modules-extra-aws": "5.13.0.1017.19~20.04.10",
            "linux-cloud-tools-5.13.0-1017-aws": "5.13.0-1017.19~20.04.1",
            "linux-modules-5.13.0-1017-aws": "5.13.0-1017.19~20.04.1",
            "linux-modules-extra-5.13.0-1017-aws": "5.13.0-1017.19~20.04.1",
            "linux-image-unsigned-5.13.0-1017-aws": "5.13.0-1017.19~20.04.1",
            "linux-aws-5.13-headers-5.13.0-1017": "5.13.0-1017.19~20.04.1",
            "linux-modules-extra-aws-edge": "5.13.0.1017.19~20.04.10",
            "linux-tools-aws-edge": "5.13.0.1017.19~20.04.10",
            "linux-aws-edge": "5.13.0.1017.19~20.04.10",
            "linux-aws-5.13-cloud-tools-5.13.0-1017": "5.13.0-1017.19~20.04.1",
            "linux-tools-aws": "5.13.0.1017.19~20.04.10"
        }
    ]
}