USN-6058-1

See a problem?
Source
https://ubuntu.com/security/notices/USN-6058-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/USN-6058-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-6058-1
Related
  • CVE-2023-1829
Published
2023-05-05T10:32:19.943730Z
Modified
2023-05-05T10:32:19.943730Z
Summary
linux-aws, linux-aws-hwe vulnerability
Details

It was discovered that the Traffic-Control Index (TCINDEX) implementation in the Linux kernel did not properly perform filter deactivation in some situations. A local attacker could possibly use this to gain elevated privileges. Please note that with the fix for this CVE, kernel support for the TCINDEX classifier has been removed.

References

Affected packages

Ubuntu:18.04:LTS / linux-aws

Package

Name
linux-aws

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.15.0-1155.168

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-cloud-tools-4.15.0-1155-aws": "4.15.0-1155.168",
            "linux-aws-tools-4.15.0-1155": "4.15.0-1155.168",
            "linux-image-4.15.0-1155-aws": "4.15.0-1155.168",
            "linux-headers-4.15.0-1155-aws": "4.15.0-1155.168",
            "linux-headers-aws-lts-18.04": "4.15.0.1155.153",
            "linux-aws-lts-18.04": "4.15.0.1155.153",
            "linux-buildinfo-4.15.0-1155-aws": "4.15.0-1155.168",
            "linux-image-unsigned-4.15.0-1155-aws": "4.15.0-1155.168",
            "linux-aws-headers-4.15.0-1155": "4.15.0-1155.168",
            "linux-modules-extra-aws-lts-18.04": "4.15.0.1155.153",
            "linux-tools-aws-lts-18.04": "4.15.0.1155.153",
            "linux-modules-4.15.0-1155-aws": "4.15.0-1155.168",
            "linux-aws-cloud-tools-4.15.0-1155": "4.15.0-1155.168",
            "linux-modules-extra-4.15.0-1155-aws": "4.15.0-1155.168",
            "linux-tools-4.15.0-1155-aws": "4.15.0-1155.168",
            "linux-image-aws-lts-18.04": "4.15.0.1155.153"
        }
    ]
}

Ubuntu:Pro:16.04:LTS / linux-aws-hwe

Package

Name
linux-aws-hwe

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.15.0-1155.168~16.04.1

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "linux-cloud-tools-4.15.0-1155-aws": "4.15.0-1155.168~16.04.1",
            "linux-image-4.15.0-1155-aws": "4.15.0-1155.168~16.04.1",
            "linux-modules-extra-aws-hwe": "4.15.0.1155.138",
            "linux-headers-4.15.0-1155-aws": "4.15.0-1155.168~16.04.1",
            "linux-buildinfo-4.15.0-1155-aws": "4.15.0-1155.168~16.04.1",
            "linux-image-unsigned-4.15.0-1155-aws": "4.15.0-1155.168~16.04.1",
            "linux-aws-headers-4.15.0-1155": "4.15.0-1155.168~16.04.1",
            "linux-modules-4.15.0-1155-aws": "4.15.0-1155.168~16.04.1",
            "linux-aws-hwe": "4.15.0.1155.138",
            "linux-headers-aws-hwe": "4.15.0.1155.138",
            "linux-aws-hwe-tools-4.15.0-1155": "4.15.0-1155.168~16.04.1",
            "linux-aws-hwe-cloud-tools-4.15.0-1155": "4.15.0-1155.168~16.04.1",
            "linux-image-aws-hwe": "4.15.0.1155.138",
            "linux-modules-extra-4.15.0-1155-aws": "4.15.0-1155.168~16.04.1",
            "linux-aws-edge": "4.15.0.1155.138",
            "linux-tools-4.15.0-1155-aws": "4.15.0-1155.168~16.04.1",
            "linux-tools-aws-hwe": "4.15.0.1155.138"
        }
    ]
}