The CERT-FR has issued an advisory regarding multiple vulnerabilities discovered in the Ubuntu Linux kernel. These vulnerabilities pose various risks, including compromise of data confidentiality, integrity, remote denial of service, and potential remote arbitrary code execution.
Summary of Vulnerabilities:
- Affected Systems: Ubuntu 16.04 ESM, Ubuntu 18.04 ESM, Ubuntu 20.04 LTS.
- Risks: Data confidentiality and integrity breaches, remote denial of service, remote arbitrary code execution, and privilege escalation.
Solution: Refer to the security bulletin issued by Ubuntu for obtaining the necessary patches. Detailed information can be found in the documentation section below.
Known CVEs:
- CVE-2022-27672
- CVE-2022-40982
- CVE-2023-2002
- CVE-2023-20588
- CVE-2023-20593
- CVE-2023-21255
- CVE-2023-2163
- CVE-2023-2269
- CVE-2023-31084
- CVE-2023-3212
- CVE-2023-3268
- CVE-2023-35823
- CVE-2023-35824
- CVE-2023-35828
- CVE-2023-3609
- CVE-2023-3611
- CVE-2023-3776
- CVE-2023-3863
- CVE-2023-40283
- CVE-2023-4128