Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 436
Alerts This Week
Warning Icon 1 436

Ubuntu 20.04 LTS: 0085-1 Critical: Local Attack Risks in Kernel

ubuntu
Calendar Grey March 23, 2022
Dist Ubuntu Esm H88
Various vulnerabilities within the Ubuntu Linux kernel might enable malicious actors to escalate their privileges or trigger service disruptions.
Several security issues were fixed in the kernel.

Summary

Update Instructions

The problem can be corrected by updating your kernel livepatch to the
following versions:

Ubuntu 20.04 LTS
    aws - 85.1
    azure - 85.1
    gcp - 85.1
    generic - 85.1
    gke - 85.1
    gkeop - 85.1
    ibm - 85.1
    lowlatency - 85.1

Ubuntu 18.04 LTS
    aws - 85.1
    azure - 85.1
    generic - 85.1
    generic - 85.2
    gke - 85.1
    gkeop - 85.1
    ibm - 85.1
    lowlatency - 85.1
    lowlatency - 85.2
    oem - 85.1

Ubuntu 16.04 ESM
    aws - 85.1
    azure - 85.1
    generic - 85.1
    lowlatency - 85.1

Ubuntu 14.04 ESM
    generic - 85.1
    lowlatency - 85.1

Support Information

Kernels older than the levels listed below do not receive livepatch
updates. If you are running a kernel version earlier than the one listed
below, please upgrade your kernel as soon as possible.

Ubuntu 20.04 LTS
    linux-aws - 5.4.0-1009
    linux-azure - 5.4.0-1010
    linux-gcp - 5.4.0-1009
    linux-gke - 5.4.0-1033
    linux-gkeop - 5.4.0-1009
    linux-ibm - 5.4.0-1009
    linux-oem - 5.4.0-26
    linux - 5.4.0-26

Ubuntu 18.04 LTS
    linux-aws - 4.15.0-1054
    linux-azure-4.15 - 4.15.0-1115
    linux-azure-5.4 - 5.4.0-1069
    linux-gke-4.15 - 4.15.0-1076
    linux-gke-5.4 - 5.4.0-1009
    linux-gkeop-5.4 - 5.4.0-1007
    linux-hwe-5.4 - 5.4.0-26
    linux-ibm-5.4 - 5.4.0-1009
    linux-oem - 4.15.0-1063
    linux - 4.15.0-69

Ubuntu 16.04 ESM
    linux-aws - 4.4.0-1098
    linux-azure - 4.15.0-1063
    linux-hwe - 4.15.0-69
    linux - 4.4.0-168

Ubuntu 14.04 ESM
    linux-lts-xenial - 4.4.0-168

References

-   CVE-2022-0492
-   CVE-2022-25636
</font></pre>

References

Severity
critical
Lowest
Low
Medium
High
Critical

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.