SB2023072613 - Ubuntu update for linux-oem-6.0 

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2023072613

SB2023072613 - Ubuntu update for linux-oem-6.0

Published: July 26, 2023 Updated: December 18, 2024

Security Bulletin ID SB2023072613
Severity
Medium
Patch available
YES
Number of vulnerabilities 7
Exploitation vector Local access
Highest impact Code execution

Breakdown by Severity

Medium 14% Low 86%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 7 secuirty vulnerabilities.


1) NULL pointer dereference (CVE-ID: CVE-2022-47929)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in the traffic control subsystem in Linux kernel. A local user can pass pass a specially crafted traffic control configuration that is set up with "tc qdisc" and "tc class" commands and perform a denial of service (DoS) attack.


2) Double Free (CVE-ID: CVE-2023-21106)

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to a boundary error within the adreno_set_param() function in adreno_gpu.c. A local application can trigger a double free error and execute arbitrary code with elevated privileges.


3) Permissions, Privileges, and Access Controls (CVE-ID: CVE-2023-2640)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to missing permission checks for trusted.overlayfs.* xattrs". A local user can set privileged extended attributes on the mounted files, leading them to be set on the upper files without the appropriate security checks.


4) Use-after-free (CVE-ID: CVE-2023-31248)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in nft_chain_lookup_byid() function, which failed to check whether a chain was active and CAP_NET_ADMIN is in any user or network namespace. A local user ca trigger a use-after-free error and execute arbitrary code with elevated privileges.


5) Permissions, Privileges, and Access Controls (CVE-ID: CVE-2023-32629)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to ovl_copy_up_meta_inode_data skips permission checks when calling ovl_do_setxattr on Ubuntu kernels. A local user can execute arbitrary code with elevated privileges.


6) Use-after-free (CVE-ID: CVE-2023-3389)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in the Linux Kernel io_uring subsystem. A local user can exploit a race condition and execute arbitrary code with elevated privileges.


7) Out-of-bounds write (CVE-ID: CVE-2023-35001)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the nft_byteorder() function. A local user can trigger an out-of-bounds write and execute arbitrary code on the target system.


Remediation

Install update from vendor's website.

References