Advisory for Ubuntu Packages Security Update

  • NIC-CERT/2022-10/439
  • Date: 2022-10-14
  • CVE ID: Multiple
  • Severity: High

Description:

Multiple vulnerabilities have been reported in multiple Ubuntu packages which could allow an attackerto take control of the affected system.

Security Issues Fixed:

Ubuntu has released an advisory for multiple packages which contains vulnerabilities inLinux Kernel,Heimdall, PostgreSQL,XML Library, unzip.

Affected Package and Solution:

Affected Package

CVE IDs

Updated Version

linux-aws-hwe - Linux kernel for Amazon Web Services (AWS-HWE) systems

CVE-2022-26365

CVE-2022-33741

CVE-2022-2318

CVE-2022-1012

CVE-2022-33744

CVE-2022-0812

CVE-2022-33740

CVE-2022-32296

CVE-2022-33742

Ubuntu 16.04

linux-aws - Linux kernel for Amazon Web Services (AWS) systems

linux-gcp-4.15 - Linux kernel for Google Cloud Platform (GCP) systems

CVE-2022-26365

CVE-2022-2318

CVE-2022-32296

CVE-2022-33742

CVE-2022-1012

CVE-2022-33744

CVE-2022-33741

CVE-2022-33740

CVE-2022-0812

Ubuntu 18.04

linux-gcp - Linux kernel for Google Cloud Platform (GCP) systems

linux-oracle-5.4 - Linux kernel for Oracle Cloud systems

linux-raspi - Linux kernel for Raspberry Pi systems

linux-raspi-5.4 - Linux kernel for Raspberry Pi systems

CVE-2022-26365

CVE-2022-36879

CVE-2022-33741

CVE-2022-2318

CVE-2022-3176

CVE-2021-4159

CVE-2022-33744

CVE-2022-20369

CVE-2022-33740

CVE-2022-26373

CVE-2022-33742

Ubuntu 20.04

Ubuntu 18.04

heimdal - Heimdal Kerberos Network Authentication Protocol

CVE-2018-16860

CVE-2022-3116

CVE-2019-12098

CVE-2021-3671

Ubuntu 20.04

Ubuntu 18.04

Ubuntu 16.04

Ubuntu 14.04

postgresql-9.5 - Object-relational SQL database

CVE-2022-1552

Ubuntu 16.04

xmlsec1 - XML security command line processor

CVE-2017-1000061

Ubuntu 16.04

unzip - De-archiver for .zip files

CVE-2022-0529

CVE-2021-4217

CVE-2022-0530

Ubuntu 22.04

Ubuntu 20.04

Ubuntu 18.04

Ubuntu 16.04

Ubuntu 14.04

gmp - Multiprecision arithmetic library developer’s tools

CVE-2021-43618

Ubuntu 20.04

Ubuntu 18.04

Ubuntu 16.04

advancecomp - collection of recompression utilities

CVE-2019-8379

CVE-2019-8383

Ubuntu 18.04

Ubuntu 16.04

The problem can be corrected by updating your system the updated package versions.

References:

https://ubuntu.com/security/notices