{"id":45318,"date":"2022-02-23T07:45:56","date_gmt":"2022-02-22T22:45:56","guid":{"rendered":"https:\/\/jirak.net\/wp\/usn-5302-1-linux-kernel-oem-vulnerabilities\/"},"modified":"2022-02-23T08:34:11","modified_gmt":"2022-02-22T23:34:11","slug":"usn-5302-1-linux-kernel-oem-vulnerabilities","status":"publish","type":"post","link":"https:\/\/jirak.net\/wp\/usn-5302-1-linux-kernel-oem-vulnerabilities\/","title":{"rendered":"USN-5302-1: Linux kernel (OEM) vulnerabilities"},"content":{"rendered":"<p>USN-5302-1: Linux kernel (OEM) vulnerabilities<\/p>\n<p>Yiqi Sun and Kevin Wang discovered that the cgroups implementation in the<br \/>\nLinux kernel did not properly restrict access to the cgroups v1<br \/>\nrelease_agent feature. A local attacker could use this to gain<br \/>\nadministrative privileges. (CVE-2022-0492)<\/p>\n<p>Brendan Dolan-Gavitt discovered that the Marvell WiFi-Ex USB device driver<br \/>\nin the Linux kernel did not properly handle some error conditions. A<br \/>\nphysically proximate attacker could use this to cause a denial of service<br \/>\n(system crash). (CVE-2021-43976)<\/p>\n<p>Wenqing Liu discovered that the f2fs file system implementation in the<br \/>\nLinux kernel did not properly validate inode types while performing garbage<br \/>\ncollection. An attacker could use this to construct a malicious f2fs image<br \/>\nthat, when mounted and operated on, could cause a denial of service (system<br \/>\ncrash). (CVE-2021-44879)<\/p>\n<p>Samuel Page discovered that the Transparent Inter-Process Communication<br \/>\n(TIPC) protocol implementation in the Linux kernel contained a stack-based<br \/>\nbuffer overflow. A remote attacker could use this to cause a denial of<br \/>\nservice (system crash) for systems that have a TIPC bearer configured.<br \/>\n(CVE-2022-0435)<\/p>\n<p>Lyu Tao discovered that the NFS implementation in the Linux kernel did not<br \/>\nproperly handle requests to open a directory on a regular file. A local<br \/>\nattacker could use this to expose sensitive information (kernel memory).<br \/>\n(CVE-2022-24448)<\/p>\n<p>It was discovered that the YAM AX.25 device driver in the Linux kernel did<br \/>\nnot properly deallocate memory in some error conditions. A local privileged<br \/>\nattacker could use this to cause a denial of service (kernel memory<br \/>\nexhaustion). (CVE-2022-24959)<br \/>\nSource: <a href=\"https:\/\/ubuntu.com\/security\/notices\/USN-5302-1\" target=\"_blank\" rel=\"noopener\">USN-5302-1: Linux kernel (OEM) vulnerabilities<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<div class=\"mh-excerpt\"><p>USN-5302-1: Linux kernel (OEM) vulnerabilities Yiqi Sun and Kevin Wang discovered that the cgroups implementation in the Linux kernel did not properly restrict access to the cgroups v1 release_agent feature. A local attacker could use this to gain administrative privileges. (CVE-2022-0492) Brendan Dolan-Gavitt discovered that the Marvell WiFi-Ex USB device driver in the Linux kernel did not properly handle some error conditions. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2021-43976) Wenqing Liu discovered that the f2fs file system implementation in the Linux kernel did not properly validate inode types while performing garbage collection. An attacker could use this to construct a malicious f2fs image that, when mounted and operated on, could cause a denial of service (system crash). (CVE-2021-44879) Samuel Page discovered that the Transparent Inter-Process Communication (TIPC) protocol implementation in the <a class=\"mh-excerpt-more\" href=\"https:\/\/jirak.net\/wp\/usn-5302-1-linux-kernel-oem-vulnerabilities\/\" title=\"USN-5302-1: Linux kernel (OEM) vulnerabilities\">[ more&#8230; ]<\/a><\/p>\n<\/div>","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[586],"tags":[587],"class_list":["post-45318","post","type-post","status-publish","format-standard","hentry","category-ubuntu-usn","tag-ubuntu-usn"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/45318","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/comments?post=45318"}],"version-history":[{"count":1,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/45318\/revisions"}],"predecessor-version":[{"id":45319,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/45318\/revisions\/45319"}],"wp:attachment":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/media?parent=45318"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/categories?post=45318"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/tags?post=45318"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}