Canonical published today new kernel security updates for all of its supported Ubuntu Linux releases as a massive update that addresses more than 20 security vulnerabilities discovered by various researchers in the upstream kernels. The new kernel update is available for Ubuntu 22.10 (Kinetic Kudu), 22.04 LTS (Jammy Jellyfish), 20.04 LTS (Focal Fossa), 18.04 LTS (Bionic Beaver), and also Ubuntu 16.04 and 14.04 ESM (Extended Security Maintenance). Vulnerabilities with the highest severity are as follows:
- CVE-2022-2663
- CVE-2022-40307
- CVE-2022-4095
- CVE-2022-3586
- CVE-2022-20421
- CVE-2022-43750
- CVE-2022-3303
- CVE-2022-3646
- CVE-2022-3544
- CVE-2022-3649
- CVE-2022-39842
- CVE-2022-3061
- CVE-2022-39188
- CVE-2022-0171
- CVE-2021-4159
- CVE-2022-3541
- CVE-2022-3543
- CVE-2022-3623
- CVE-2022-3910
- CVE-2022-3977
- CVE-2022-41849
- CVE-2022-41850
- CVE-2022-41849
These vulnerabilities have the potential for denial-of-service, firewall bypass, arbitrary code execution, kernel memory reading, and privilege escalation. The most critical security vulnerability patched in these updates is CVE-2022-2663, a flaw discovered by David Leadbeater in the netfilter IRC protocol tracking implementation that could allow a remote attacker to cause a denial of service or bypass firewall filtering. This affects all Ubuntu kernels except for Ubuntu 18.04 LTS, Ubuntu 16.04 ESM, and Ubuntu 14.04 ESM systems running Linux kernel 4.15.
Analyst Notes
All users of Ubuntu are urged to update as soon as possible. To update, the following command can be used:
sudo apt update && sudo apt full-upgrade
Below are the patched kernel versions for each Ubuntu version:
• Ubuntu 22.10
◦ linux-image 5.19.0.28.25
• Ubuntu 22.04 LTS
◦ linux-image 5.15.0-57.63
• Ubuntu 20.04 LTS
◦ linux-image 5.15.0-57.63~20.04.1
◦ linux-image 5.4.0.136.134
• Ubuntu 18.04 LTS
◦ linux-image 5.4.0.136.153~18.04.111
◦ linux-image 4.15.0.201.184
Ubuntu Users Get Massive Kernel Security Updates, More Than 20 Vulnerabilities Patched
