Sicherheit: Zwei Probleme in Linux

Lesezeichen hinzufügen

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============8191954646357490863==
Content-Language: en-US
Content-Type: multipart/signed; micalg=pgp-sha256;
protocol="application/pgp-signature";
boundary="------------AHsqYElI0u0RJiyMpCvPOWBG"

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--------------AHsqYElI0u0RJiyMpCvPOWBG
Content-Type: multipart/mixed;
boundary="------------zqw2tqxCzfhI6oKOD3QQ0qz4";
protected-headers="v1"
From: Rodrigo Figueiredo Zaiden <rodrigo.zaiden@canonical.com>
Reply-To: security@ubuntu.com
To: ubuntu-security-announce@lists.ubuntu.com
Message-ID: <898eb142-5488-6906-2bb9-c16e8e0e9164@canonical.com>
Subject: [USN-5596-1] Linux kernel (OEM) vulnerabilities

--------------zqw2tqxCzfhI6oKOD3QQ0qz4
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: base64

==========================================================================
Ubuntu Security Notice USN-5596-1
September 02, 2022

linux-oem-5.17 vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:
- linux-oem-5.17: Linux kernel for OEM systems

Details:

Asaf Modelevsky discovered that the Intel(R) 10GbE PCI Express (ixgbe)
Ethernet driver for the Linux kernel performed insufficient control flow
management. A local attacker could possibly use this to cause a denial
of service. (CVE-2021-33061)

It was discovered that the framebuffer driver on the Linux kernel did
not verify size limits when changing font or screen size, leading to an
out-of-bounds write. A local attacker could use this to cause a denial
of service (system crash) or possibly execute arbitrary code.
(CVE-2021-33655)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS:
linux-image-5.17.0-1016-oem 5.17.0-1016.17
linux-image-oem-22.04 5.17.0.1016.15
linux-image-oem-22.04a 5.17.0.1016.15

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
https://ubuntu.com/security/notices/USN-5596-1
CVE-2021-33061, CVE-2021-33655

Package Information:
https://launchpad.net/ubuntu/+source/linux-oem-5.17/5.17.0-1016.17
--------------zqw2tqxCzfhI6oKOD3QQ0qz4--

--------------AHsqYElI0u0RJiyMpCvPOWBG
Content-Type: application/pgp-signature; name="OpenPGP_signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="OpenPGP_signature"

-----BEGIN PGP SIGNATURE-----

wsB5BAABCAAjFiEEYrygdx1GDec9TV8EZ0GeRcM5nt0FAmMShRsFAwAAAAAACgkQZ0GeRcM5nt22
0QgAtguUpPujiZ5PcAiyNqkH/f9yVJUwYoabfeEV2yrcLAgLmS2RMnVjocNdX5g/SRwjyXPlRLvN
hdFfn1micb2NnKAt0Sn5omaNBSJMzQg7MYEG9LavmzZuecFSAP8VqUh6gKrXj1jXfkjIBN/KEbxk
26xLBtUz/HU4P48AkBxtFVzxE9RMKnd6CEErx1+s4Ec8KEn7X99/jWMazVVcTTlm9km3piNlHF7u
svNtxKdkn6LjuUS+Rgd8yXmvriYgNgtY1u5+q5XDKkria8cefyEI0nl+te9sf034u9L+bwBnYg7M
MC23JNBa37NdOBN39aCGdHv8UDCVNuXYkOZl317NdA==
=vsFL
-----END PGP SIGNATURE-----

--------------AHsqYElI0u0RJiyMpCvPOWBG--

--===============8191954646357490863==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline

Cg==

--===============8191954646357490863==--