Advisory for Ubuntu Packages Security Update

  • NIC-CERT/2022-10/443
  • Date: 2022-10-19
  • CVE ID: Multiple
  • Severity: High

Description:

Multiple vulnerabilities have been reported in multiple Ubuntu packages which could allow an attackerto take control of the affected system.

Security Issues Fixed:

Ubuntu has released an advisory for multiple packages which contains vulnerabilities inlinux-azure, gitFRR.

Affected Package and Solution:

Affected Package

CVE IDs

Updated Version

linux-azure-4.15 - Linux kernel for Microsoft Azure Cloud systems

CVE-2022-26365

CVE-2022-32296

CVE-2022-1012

CVE-2022-2318

CVE-2022-33744

CVE-2022-0812

CVE-2022-33742

CVE-2022-33741

CVE-2022-33740

Ubuntu 18.04

git - fast, scalable, distributed revision control system

CVE-2022-39260

CVE-2022-39253

Ubuntu 22.04

Ubuntu 20.04

Ubuntu 18,04

frr - FRRouting suite of internet protocols

CVE-2022-37032

CVE-2022-37035

Ubuntu 22.04

linux-azure - Linux kernel for Microsoft Azure Cloud systems

CVE-2022-33741 CVE-2022-32296 CVE-2022-1012 CVE-2022-33740 CVE-2022-33744 CVE-2022-33742 CVE-2022-0812 CVE-2022-2318 CVE-2022-26365

Ubuntu 16.04

Ubuntu 14.04

zlib - Lossless data-compression library

CVE-2022-37434

Ubuntu 22.04

Ubuntu 20.04

gthumb - image viewer and browser

CVE-2019-20326CVE-2020-36427

Ubuntu 20.04

linux-aws-5.4 - Linux kernel for Amazon Web Services (AWS) systems

CVE-2022-26365CVE-2022-36879CVE-2022-2318 CVE-2022-20369CVE-2022-33742CVE-2021-4159CVE-2022-33744CVE-2022-3176CVE-2022-33741CVE-2022-33740CVE-2022-26373

Ubuntu 18.04

linux-ibm - Linux kernel for IBM cloud systems

CVE-2022-36946CVE-2022-26365CVE-2022-34495CVE-2021-33655CVE-2022-2318CVE-2022-33744CVE-2022-3176CVE-2022-39189CVE-2022-33740CVE-2022-36879CVE-2022-1882CVE-2022-33742CVE-2022-34494CVE-2022-33741CVE-2022-33743CVE-2022-26373

Ubuntu 22.04

The problem can be corrected by updating your system the updated package versions.

References:

https://ubuntu.com/security/notices