Release Info

Advisory: CLSA-2022:1670261781

OS: Ubuntu 16.04 ELS

Public date: 2022-12-05 00:00:00

Project: linux

Version: 4.4.0-236.270

Errata link: https://errata.tuxcare.com/els_os/ubuntu16.04els/CLSA-2022-1670261781.html

Changelog

* CVE-2022-42703 - mm/rmap.c: don't reuse anon_vma if we just want a copy - mm: rmap: explicitly reset vma->anon_vma in unlink_anon_vmas() - mm, rmap: handle anon_vma_prepare() common case inline - mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse * CVE-2022-3565 - mISDN: fix use-after-free bugs in l1oip timer handlers * CVE-2022-43750 - usb: mon: make mmapped memory read only * CVE-2022-3566 - tcp: Fix data races around icsk->icsk_af_ops. * CVE-2022-3567 - ipv6: annotate some data-races around sk->sk_prot - ipv6: Fix data races around sk->sk_prot. * CVE-2022-3621 - nilfs2: fix NULL pointer dereference at nilfs_bmap_lookup_at_level() * CVE-2022-3564 - Bluetooth: remove unneeded variable in l2cap_stream_rx - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu * CVE-2022-3524 - tcp/udp: Fix memory leak in ipv6_renew_options(). * CVE-2022-3635 - atm: idt77252: fix use-after-free bugs caused by tst_timer * CVE-2022-40768 - scsi: stex: Properly zero out the passthrough command structure * CVE-2022-3239 - media: em28xx: initialize refcount before kref_get * CVE-2022-3649 - nilfs2: fix use-after-free bug of struct nilfs_root * CVE-2022-3594 - r8152: Rate limit overflow messages

Update

Update command: apt-get update apt-get --only-upgrade install linux*

Packages list

linux-buildinfo-4.4.0-236-tuxcare.els7-generic_4.4.0-236.270_amd64.deb linux-buildinfo-4.4.0-236-tuxcare.els7-lowlatency_4.4.0-236.270_amd64.deb linux-cloud-tools-4.4.0-236-tuxcare.els7_4.4.0-236.270_amd64.deb linux-cloud-tools-4.4.0-236-tuxcare.els7-generic_4.4.0-236.270_amd64.deb linux-cloud-tools-4.4.0-236-tuxcare.els7-lowlatency_4.4.0-236.270_amd64.deb linux-cloud-tools-common_4.4.0-236.270_all.deb linux-cloud-tools-generic_4.4.0.236.270_amd64.deb linux-cloud-tools-lowlatency_4.4.0.236.270_amd64.deb linux-crashdump_4.4.0.236.270_amd64.deb linux-doc_4.4.0-236.270_all.deb linux-generic_4.4.0.236.270_amd64.deb linux-headers-4.4.0-236-tuxcare.els7_4.4.0-236.270_all.deb linux-headers-4.4.0-236-tuxcare.els7-generic_4.4.0-236.270_amd64.deb linux-headers-4.4.0-236-tuxcare.els7-lowlatency_4.4.0-236.270_amd64.deb linux-headers-generic_4.4.0.236.270_amd64.deb linux-headers-lowlatency_4.4.0.236.270_amd64.deb linux-image-generic_4.4.0.236.270_amd64.deb linux-image-lowlatency_4.4.0.236.270_amd64.deb linux-image-unsigned-4.4.0-236-tuxcare.els7-generic_4.4.0-236.270_amd64.deb linux-image-unsigned-4.4.0-236-tuxcare.els7-lowlatency_4.4.0-236.270_amd64.deb linux-libc-dev_4.4.0-236.270_amd64.deb linux-lowlatency_4.4.0.236.270_amd64.deb linux-modules-4.4.0-236-tuxcare.els7-generic_4.4.0-236.270_amd64.deb linux-modules-4.4.0-236-tuxcare.els7-lowlatency_4.4.0-236.270_amd64.deb linux-modules-extra-4.4.0-236-tuxcare.els7-generic_4.4.0-236.270_amd64.deb linux-source_4.4.0.236.270_all.deb linux-source-4.4.0_4.4.0-236.270_all.deb linux-tools-4.4.0-236-tuxcare.els7_4.4.0-236.270_amd64.deb linux-tools-4.4.0-236-tuxcare.els7-generic_4.4.0-236.270_amd64.deb linux-tools-4.4.0-236-tuxcare.els7-lowlatency_4.4.0-236.270_amd64.deb linux-tools-common_4.4.0-236.270_all.deb linux-tools-generic_4.4.0.236.270_amd64.deb linux-tools-host_4.4.0-236.270_all.deb linux-tools-lowlatency_4.4.0.236.270_amd64.deb

CVEs

CVE-2022-3635
CVE-2022-3566
CVE-2022-3621
CVE-2022-43750
CVE-2022-3567
CVE-2022-3565
CVE-2022-3649
CVE-2022-3239
CVE-2022-3594
CVE-2022-3564
CVE-2022-3524
CVE-2022-42703
CVE-2022-40768