Jordy Zomer and Alexandra Sandulescu discovered that syscalls invoking the do_prlimit() function in the Linux kernel did not properly handle speculative execution barriers. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2023-0458)
It was discovered that a race condition existed in the btrfs file system implementation in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information. (CVE-2023-1611)
It was discovered that the XFS file system implementation in the Linux kernel did not properly perform metadata validation when mounting certain images. An attacker could use this to specially craft a file system image that, when mounted, could cause a denial of service (system crash). (CVE-2023-2124)
It was discovered that a use-after-free vulnerability existed in the iSCSI TCP implementation in the Linux kernel. A local attacker could possibly use this to cause a denial of service (system crash). (CVE-2023-2162)
It was discovered that the ext4 file system implementation in the Linux kernel did not properly handle extra inode size for extended attributes, leading to a use-after-free vulnerability. A privileged attacker could possibly use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-2513)
It was discovered that the IP-VLAN network driver for the Linux kernel did not properly initialize memory in some situations, leading to an out-of- bounds write vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-3090)
It was discovered that the Ricoh R5C592 MemoryStick card reader driver in the Linux kernel contained a race condition during module unload, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-3141)
It was discovered that a use-after-free vulnerability existed in the IEEE 1394 (Firewire) implementation in the Linux kernel. A privileged attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-3159)
Sanan Hasanov discovered that the framebuffer console driver in the Linux kernel did not properly perform checks for font dimension limits. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-3161)
It was discovered that the kernel->user space relay implementation in the Linux kernel did not properly perform certain buffer calculations, leading to an out-of-bounds read vulnerability. A local attacker could use this to cause a denial of service (system crash) or expose sensitive information (kernel memory). (CVE-2023-3268)
It was discovered that the netfilter subsystem in the Linux kernel did not properly handle some error conditions, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-3390)
Tanguy Dubroca discovered that the netfilter subsystem in the Linux kernel did not properly handle certain pointer data type, leading to an out-of- bounds write vulnerability. A privileged attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-35001)
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "linux-aws-cloud-tools-4.4.0-1121": "4.4.0-1121.127", "linux-buildinfo-4.4.0-1121-aws": "4.4.0-1121.127", "linux-headers-4.4.0-1121-aws": "4.4.0-1121.127", "linux-modules-4.4.0-1121-aws": "4.4.0-1121.127", "linux-image-4.4.0-1121-aws": "4.4.0-1121.127", "linux-cloud-tools-4.4.0-1121-aws": "4.4.0-1121.127", "linux-image-4.4.0-1121-aws-dbgsym": "4.4.0-1121.127", "linux-aws-tools-4.4.0-1121": "4.4.0-1121.127", "linux-tools-4.4.0-1121-aws": "4.4.0-1121.127", "linux-aws-headers-4.4.0-1121": "4.4.0-1121.127" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "kernel-image-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "mouse-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "plip-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "nic-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "message-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "vlan-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-headers-4.4.0-243-lowlatency": "4.4.0-243.277~14.04.1", "parport-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "pata-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-image-4.4.0-243-generic-dbgsym": "4.4.0-243.277~14.04.1", "block-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "nic-shared-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "nic-pcmcia-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-image-unsigned-4.4.0-243-lowlatency-dbgsym": "4.4.0-243.277~14.04.1", "nfs-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-lts-xenial-tools-4.4.0-243": "4.4.0-243.277~14.04.1", "sata-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "md-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-cloud-tools-4.4.0-243-lowlatency": "4.4.0-243.277~14.04.1", "linux-tools-4.4.0-243-lowlatency": "4.4.0-243.277~14.04.1", "multipath-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-headers-4.4.0-243-generic": "4.4.0-243.277~14.04.1", "pcmcia-storage-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "ppp-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-buildinfo-4.4.0-243-lowlatency": "4.4.0-243.277~14.04.1", "speakup-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "input-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "firewire-core-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-image-4.4.0-243-generic": "4.4.0-243.277~14.04.1", "usb-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "fat-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-buildinfo-4.4.0-243-generic": "4.4.0-243.277~14.04.1", "linux-tools-4.4.0-243-generic": "4.4.0-243.277~14.04.1", "linux-headers-4.4.0-243": "4.4.0-243.277~14.04.1", "fs-core-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-image-unsigned-4.4.0-243-generic": "4.4.0-243.277~14.04.1", "serial-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "pcmcia-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "fs-secondary-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-lts-xenial-cloud-tools-4.4.0-243": "4.4.0-243.277~14.04.1", "linux-modules-4.4.0-243-lowlatency": "4.4.0-243.277~14.04.1", "crypto-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-image-unsigned-4.4.0-243-generic-dbgsym": "4.4.0-243.277~14.04.1", "linux-modules-extra-4.4.0-243-generic": "4.4.0-243.277~14.04.1", "irda-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "ipmi-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "nic-usb-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "floppy-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "storage-core-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "scsi-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-lts-xenial-udebs-generic": "4.4.0-243.277~14.04.1", "linux-image-unsigned-4.4.0-243-lowlatency": "4.4.0-243.277~14.04.1", "fb-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "virtio-modules-4.4.0-243-generic-di": "4.4.0-243.277~14.04.1", "linux-cloud-tools-4.4.0-243-generic": "4.4.0-243.277~14.04.1", "linux-modules-4.4.0-243-generic": "4.4.0-243.277~14.04.1" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "kernel-image-4.4.0-243-generic-di": "4.4.0-243.277", "mouse-modules-4.4.0-243-generic-di": "4.4.0-243.277", "plip-modules-4.4.0-243-generic-di": "4.4.0-243.277", "nic-modules-4.4.0-243-generic-di": "4.4.0-243.277", "message-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-source-4.4.0": "4.4.0-243.277", "linux-headers-4.4.0-243-lowlatency": "4.4.0-243.277", "vlan-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-udebs-generic": "4.4.0-243.277", "parport-modules-4.4.0-243-generic-di": "4.4.0-243.277", "pata-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-image-4.4.0-243-generic-dbgsym": "4.4.0-243.277", "linux-tools-4.4.0-243": "4.4.0-243.277", "nic-shared-modules-4.4.0-243-generic-di": "4.4.0-243.277", "nic-pcmcia-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-image-unsigned-4.4.0-243-lowlatency-dbgsym": "4.4.0-243.277", "block-modules-4.4.0-243-generic-di": "4.4.0-243.277", "nfs-modules-4.4.0-243-generic-di": "4.4.0-243.277", "sata-modules-4.4.0-243-generic-di": "4.4.0-243.277", "md-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-cloud-tools-4.4.0-243": "4.4.0-243.277", "dasd-extra-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-cloud-tools-4.4.0-243-lowlatency": "4.4.0-243.277", "linux-tools-4.4.0-243-lowlatency": "4.4.0-243.277", "multipath-modules-4.4.0-243-generic-di": "4.4.0-243.277", "dasd-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-headers-4.4.0-243-generic": "4.4.0-243.277", "pcmcia-storage-modules-4.4.0-243-generic-di": "4.4.0-243.277", "ppp-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-buildinfo-4.4.0-243-lowlatency": "4.4.0-243.277", "speakup-modules-4.4.0-243-generic-di": "4.4.0-243.277", "input-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-cloud-tools-common": "4.4.0-243.277", "firewire-core-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-image-4.4.0-243-generic": "4.4.0-243.277", "linux-libc-dev": "4.4.0-243.277", "usb-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-doc": "4.4.0-243.277", "fat-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-buildinfo-4.4.0-243-generic": "4.4.0-243.277", "linux-tools-4.4.0-243-generic": "4.4.0-243.277", "linux-headers-4.4.0-243": "4.4.0-243.277", "fs-core-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-image-unsigned-4.4.0-243-generic": "4.4.0-243.277", "serial-modules-4.4.0-243-generic-di": "4.4.0-243.277", "pcmcia-modules-4.4.0-243-generic-di": "4.4.0-243.277", "fs-secondary-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-tools-host": "4.4.0-243.277", "linux-modules-4.4.0-243-lowlatency": "4.4.0-243.277", "crypto-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-image-unsigned-4.4.0-243-generic-dbgsym": "4.4.0-243.277", "linux-modules-extra-4.4.0-243-generic": "4.4.0-243.277", "irda-modules-4.4.0-243-generic-di": "4.4.0-243.277", "ipmi-modules-4.4.0-243-generic-di": "4.4.0-243.277", "nic-usb-modules-4.4.0-243-generic-di": "4.4.0-243.277", "floppy-modules-4.4.0-243-generic-di": "4.4.0-243.277", "storage-core-modules-4.4.0-243-generic-di": "4.4.0-243.277", "scsi-modules-4.4.0-243-generic-di": "4.4.0-243.277", "virtio-modules-4.4.0-243-generic-di": "4.4.0-243.277", "fb-modules-4.4.0-243-generic-di": "4.4.0-243.277", "linux-image-unsigned-4.4.0-243-lowlatency": "4.4.0-243.277", "linux-tools-common": "4.4.0-243.277", "linux-cloud-tools-4.4.0-243-generic": "4.4.0-243.277", "linux-modules-4.4.0-243-generic": "4.4.0-243.277" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "linux-cloud-tools-4.4.0-1159-aws": "4.4.0-1159.174", "linux-headers-4.4.0-1159-aws": "4.4.0-1159.174", "linux-tools-4.4.0-1159-aws": "4.4.0-1159.174", "linux-modules-4.4.0-1159-aws": "4.4.0-1159.174", "linux-aws-headers-4.4.0-1159": "4.4.0-1159.174", "linux-aws-cloud-tools-4.4.0-1159": "4.4.0-1159.174", "linux-aws-tools-4.4.0-1159": "4.4.0-1159.174", "linux-buildinfo-4.4.0-1159-aws": "4.4.0-1159.174", "linux-image-4.4.0-1159-aws-dbgsym": "4.4.0-1159.174", "linux-image-4.4.0-1159-aws": "4.4.0-1159.174", "linux-modules-extra-4.4.0-1159-aws": "4.4.0-1159.174" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "linux-headers-4.4.0-1122-kvm": "4.4.0-1122.132", "linux-buildinfo-4.4.0-1122-kvm": "4.4.0-1122.132", "linux-image-4.4.0-1122-kvm": "4.4.0-1122.132", "linux-tools-4.4.0-1122-kvm": "4.4.0-1122.132", "linux-kvm-cloud-tools-4.4.0-1122": "4.4.0-1122.132", "linux-kvm-headers-4.4.0-1122": "4.4.0-1122.132", "linux-modules-4.4.0-1122-kvm": "4.4.0-1122.132", "linux-cloud-tools-4.4.0-1122-kvm": "4.4.0-1122.132", "linux-image-4.4.0-1122-kvm-dbgsym": "4.4.0-1122.132", "linux-kvm-tools-4.4.0-1122": "4.4.0-1122.132" } ] }