Ubuntu 20.04 LTS / 21.10 : Linux kernel vulnerabilities (USN-5162-1)

high Nessus Plugin ID 155751

Synopsis

The remote Ubuntu host is missing one or more security updates.

Description

The remote Ubuntu 20.04 LTS / 21.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5162-1 advisory.

- An issue was discovered in the Linux kernel before 5.14.8. A use-after-free in selinux_ptrace_traceme (aka the SELinux handler for PTRACE_TRACEME) could be used by local attackers to cause memory corruption and escalate privileges, aka CID-a3727a8bac0a. This occurs because of an attempt to access the subjective credentials of another task. (CVE-2021-43057)

- A vulnerability was found in the Linux kernel in versions prior to v5.14-rc1. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory. (CVE-2021-3655)

- A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption).
This vulnerability is similar with the older CVE-2019-18808. (CVE-2021-3744)

- A memory leak flaw was found in the Linux kernel's ccp_run_aes_gcm_cmd() function that allows an attacker to cause a denial of service. The vulnerability is similar to the older CVE-2019-18808. The highest threat from this vulnerability is to system availability. (CVE-2021-3764)

- An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1. This occurs because a certain comparison uses values that are not memory sizes. (CVE-2021-42252)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

See Also

https://ubuntu.com/security/notices/USN-5162-1

Plugin Details

Severity: High

ID: 155751

File Name: ubuntu_USN-5162-1.nasl

Version: 1.5

Type: local

Agent: unix

Published: 12/1/2021

Updated: 3/21/2023

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 5.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2021-43057

CVSS v3

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:canonical:ubuntu_linux:linux-generic-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-generic-lpae, p-cpe:/a:canonical:ubuntu_linux:linux-generic-lpae-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-generic-lpae-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-gke, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-1006-kvm, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-1007-aws, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-1007-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-1008-azure, cpe:/o:canonical:ubuntu_linux:20.04:-:lts, cpe:/o:canonical:ubuntu_linux:21.10, p-cpe:/a:canonical:ubuntu_linux:linux-aws, p-cpe:/a:canonical:ubuntu_linux:linux-aws-cloud-tools-5.13.0-1007, p-cpe:/a:canonical:ubuntu_linux:linux-aws-headers-5.13.0-1007, p-cpe:/a:canonical:ubuntu_linux:linux-aws-tools-5.13.0-1007, p-cpe:/a:canonical:ubuntu_linux:linux-azure, p-cpe:/a:canonical:ubuntu_linux:linux-azure-cloud-tools-5.13.0-1008, p-cpe:/a:canonical:ubuntu_linux:linux-azure-headers-5.13.0-1008, p-cpe:/a:canonical:ubuntu_linux:linux-azure-tools-5.13.0-1008, p-cpe:/a:canonical:ubuntu_linux:linux-buildinfo-5.13.0-1006-kvm, p-cpe:/a:canonical:ubuntu_linux:linux-buildinfo-5.13.0-1007-aws, p-cpe:/a:canonical:ubuntu_linux:linux-buildinfo-5.13.0-1007-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-buildinfo-5.13.0-1008-azure, p-cpe:/a:canonical:ubuntu_linux:linux-buildinfo-5.13.0-1010-oracle, p-cpe:/a:canonical:ubuntu_linux:linux-buildinfo-5.13.0-1011-raspi, p-cpe:/a:canonical:ubuntu_linux:linux-buildinfo-5.13.0-1011-raspi-nolpae, p-cpe:/a:canonical:ubuntu_linux:linux-buildinfo-5.13.0-1020-oem, p-cpe:/a:canonical:ubuntu_linux:linux-buildinfo-5.13.0-22-generic, p-cpe:/a:canonical:ubuntu_linux:linux-buildinfo-5.13.0-22-generic-64k, p-cpe:/a:canonical:ubuntu_linux:linux-buildinfo-5.13.0-22-generic-lpae, p-cpe:/a:canonical:ubuntu_linux:linux-buildinfo-5.13.0-22-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-5.13.0-1007-aws, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-5.13.0-1008-azure, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-5.13.0-22, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-5.13.0-22-generic, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-5.13.0-22-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-1010-oracle, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-1011-raspi, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-1011-raspi-nolpae, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-1020-oem, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-22, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-22-generic, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-22-generic-64k, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-22-generic-lpae, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-azure, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-common, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-generic, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-generic-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-generic-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-lowlatency-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-lowlatency-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-virtual, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-virtual-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-cloud-tools-virtual-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-crashdump, p-cpe:/a:canonical:ubuntu_linux:linux-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-gcp-headers-5.13.0-1007, p-cpe:/a:canonical:ubuntu_linux:linux-gcp-tools-5.13.0-1007, p-cpe:/a:canonical:ubuntu_linux:linux-generic, p-cpe:/a:canonical:ubuntu_linux:linux-generic-64k, p-cpe:/a:canonical:ubuntu_linux:linux-generic-64k-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-generic-64k-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-generic-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-headers-generic-64k, p-cpe:/a:canonical:ubuntu_linux:linux-headers-generic-64k-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-headers-generic-64k-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-headers-generic-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-headers-generic-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-headers-generic-lpae, p-cpe:/a:canonical:ubuntu_linux:linux-headers-generic-lpae-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-headers-generic-lpae-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-headers-gke, p-cpe:/a:canonical:ubuntu_linux:linux-headers-kvm, p-cpe:/a:canonical:ubuntu_linux:linux-headers-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-headers-lowlatency-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-headers-lowlatency-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-headers-oem-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-headers-oem-20.04c, p-cpe:/a:canonical:ubuntu_linux:linux-headers-oracle, p-cpe:/a:canonical:ubuntu_linux:linux-headers-raspi, p-cpe:/a:canonical:ubuntu_linux:linux-headers-raspi-nolpae, p-cpe:/a:canonical:ubuntu_linux:linux-headers-virtual, p-cpe:/a:canonical:ubuntu_linux:linux-headers-virtual-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-headers-virtual-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.13.0-1006-kvm, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.13.0-1007-aws, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.13.0-1007-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.13.0-1008-azure, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.13.0-1010-oracle, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.13.0-1011-raspi, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.13.0-1011-raspi-nolpae, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.13.0-1020-oem, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.13.0-22-generic, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.13.0-22-generic-64k, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.13.0-22-generic-lpae, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.13.0-22-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-image-aws, p-cpe:/a:canonical:ubuntu_linux:linux-image-azure, p-cpe:/a:canonical:ubuntu_linux:linux-image-extra-virtual, p-cpe:/a:canonical:ubuntu_linux:linux-image-extra-virtual-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-image-extra-virtual-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-image-generic, p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-64k, p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-64k-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-64k-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae, p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-image-gke, p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm, p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-image-oem-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-image-oem-20.04c, p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle, p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi, p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi-nolpae, p-cpe:/a:canonical:ubuntu_linux:linux-image-unsigned-5.13.0-1006-kvm, p-cpe:/a:canonical:ubuntu_linux:linux-image-unsigned-5.13.0-1007-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-image-unsigned-5.13.0-1008-azure, p-cpe:/a:canonical:ubuntu_linux:linux-image-unsigned-5.13.0-1010-oracle, p-cpe:/a:canonical:ubuntu_linux:linux-image-unsigned-5.13.0-1020-oem, p-cpe:/a:canonical:ubuntu_linux:linux-image-unsigned-5.13.0-22-generic, p-cpe:/a:canonical:ubuntu_linux:linux-image-unsigned-5.13.0-22-generic-64k, p-cpe:/a:canonical:ubuntu_linux:linux-image-unsigned-5.13.0-22-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual, p-cpe:/a:canonical:ubuntu_linux:linux-headers-5.13.0-22-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-headers-aws, p-cpe:/a:canonical:ubuntu_linux:linux-headers-azure, p-cpe:/a:canonical:ubuntu_linux:linux-headers-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-headers-generic, p-cpe:/a:canonical:ubuntu_linux:linux-raspi-nolpae, p-cpe:/a:canonical:ubuntu_linux:linux-raspi-tools-5.13.0-1011, p-cpe:/a:canonical:ubuntu_linux:linux-source, p-cpe:/a:canonical:ubuntu_linux:linux-source-5.13.0, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-1006-kvm, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-1007-aws, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-1007-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-1008-azure, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-1010-oracle, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-1011-raspi, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-1011-raspi-nolpae, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-1020-oem, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-22, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-22-generic, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-22-generic-64k, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-22-generic-lpae, p-cpe:/a:canonical:ubuntu_linux:linux-tools-5.13.0-22-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-tools-aws, p-cpe:/a:canonical:ubuntu_linux:linux-tools-azure, p-cpe:/a:canonical:ubuntu_linux:linux-tools-common, p-cpe:/a:canonical:ubuntu_linux:linux-tools-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-tools-generic, p-cpe:/a:canonical:ubuntu_linux:linux-tools-generic-64k, p-cpe:/a:canonical:ubuntu_linux:linux-tools-generic-64k-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-tools-generic-64k-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-tools-generic-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-tools-generic-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-tools-generic-lpae, p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-kvm, p-cpe:/a:canonical:ubuntu_linux:linux-kvm-headers-5.13.0-1006, p-cpe:/a:canonical:ubuntu_linux:linux-kvm-tools-5.13.0-1006, p-cpe:/a:canonical:ubuntu_linux:linux-libc-dev, p-cpe:/a:canonical:ubuntu_linux:linux-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-lowlatency-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-lowlatency-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-modules-5.13.0-1006-kvm, p-cpe:/a:canonical:ubuntu_linux:linux-modules-5.13.0-1007-aws, p-cpe:/a:canonical:ubuntu_linux:linux-modules-5.13.0-1007-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-modules-5.13.0-1008-azure, p-cpe:/a:canonical:ubuntu_linux:linux-modules-5.13.0-1010-oracle, p-cpe:/a:canonical:ubuntu_linux:linux-modules-5.13.0-1011-raspi, p-cpe:/a:canonical:ubuntu_linux:linux-modules-5.13.0-1011-raspi-nolpae, p-cpe:/a:canonical:ubuntu_linux:linux-modules-5.13.0-1020-oem, p-cpe:/a:canonical:ubuntu_linux:linux-modules-5.13.0-22-generic, p-cpe:/a:canonical:ubuntu_linux:linux-modules-5.13.0-22-generic-64k, p-cpe:/a:canonical:ubuntu_linux:linux-modules-5.13.0-22-generic-lpae, p-cpe:/a:canonical:ubuntu_linux:linux-modules-5.13.0-22-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-5.13.0-1007-aws, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-5.13.0-1007-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-5.13.0-1008-azure, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-5.13.0-1010-oracle, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-5.13.0-1011-raspi, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-5.13.0-1011-raspi-nolpae, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-5.13.0-22-generic, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-aws, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-azure, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-gke, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-raspi, p-cpe:/a:canonical:ubuntu_linux:linux-modules-extra-raspi-nolpae, p-cpe:/a:canonical:ubuntu_linux:linux-oem-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-oem-20.04c, p-cpe:/a:canonical:ubuntu_linux:linux-oem-5.13-headers-5.13.0-1020, p-cpe:/a:canonical:ubuntu_linux:linux-oem-5.13-tools-5.13.0-1020, p-cpe:/a:canonical:ubuntu_linux:linux-oem-5.13-tools-host, p-cpe:/a:canonical:ubuntu_linux:linux-oracle, p-cpe:/a:canonical:ubuntu_linux:linux-oracle-headers-5.13.0-1010, p-cpe:/a:canonical:ubuntu_linux:linux-oracle-tools-5.13.0-1010, p-cpe:/a:canonical:ubuntu_linux:linux-raspi, p-cpe:/a:canonical:ubuntu_linux:linux-raspi-headers-5.13.0-1011, p-cpe:/a:canonical:ubuntu_linux:linux-tools-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-tools-lowlatency-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-tools-lowlatency-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-tools-oem-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-tools-oem-20.04c, p-cpe:/a:canonical:ubuntu_linux:linux-tools-oracle, p-cpe:/a:canonical:ubuntu_linux:linux-tools-raspi, p-cpe:/a:canonical:ubuntu_linux:linux-tools-raspi-nolpae, p-cpe:/a:canonical:ubuntu_linux:linux-tools-virtual, p-cpe:/a:canonical:ubuntu_linux:linux-tools-virtual-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-tools-virtual-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-virtual, p-cpe:/a:canonical:ubuntu_linux:linux-virtual-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-virtual-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-tools-generic-lpae-hwe-20.04, p-cpe:/a:canonical:ubuntu_linux:linux-tools-generic-lpae-hwe-20.04-edge, p-cpe:/a:canonical:ubuntu_linux:linux-tools-gke, p-cpe:/a:canonical:ubuntu_linux:linux-tools-host, p-cpe:/a:canonical:ubuntu_linux:linux-tools-kvm

Required KB Items: Host/cpu, Host/Debian/dpkg-l, Host/Ubuntu, Host/Ubuntu/release

Exploit Ease: No known exploits are available

Patch Publication Date: 11/30/2021

Vulnerability Publication Date: 8/5/2021

Reference Information

CVE: CVE-2021-3655, CVE-2021-3744, CVE-2021-3764, CVE-2021-42252, CVE-2021-43057

USN: 5162-1