Ubuntu Security Update USN-5358-2: Linux kernel vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,969
Reaction score
80
Credits
-1,257
It was discovered that the network traffic control implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-1055) It was discovered that the IPsec implementation in the Linux kernel did not properly allocate enough memory when performing ESP transformations, leading to a heap-based buffer overflow. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-27666)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-8248-2: NASM regression
Replies
0
Views
101
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8282-2: Unbound vulnerabilities
Replies
0
Views
90
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8248-1: NASM vulnerabilities
Replies
0
Views
93
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8375-1: nginx vulnerabilities
Replies
0
Views
102
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8098-2: Linux kernel (GCP) vulnerabilities
Replies
0
Views
161
LinuxBot
LinuxBot


Follow Linux.org

Staff online

Members online

Total: 1,970 (members: 8, guests: 1,962)

Latest posts

Top