Advisory for Ubuntu Packages Security Update

  • NIC-CERT/2022-12/515
  • Date: 2022-12-20
  • CVE ID: Multiple
  • Severity: High

Description:

Multiple vulnerabilities have been reported in multiple Ubuntu packages which could allow an attackerto take control of the affected system.

Security Issues Fixed:

Ubuntu has released an advisory for multiple packages which contains vulnerabilities inLinux kernel.

Affected Package and Solution:

Affected Package

CVE IDs

Updated Version

linux-oem-5.17- Linux kernel for OEM systems

CVE-2022-42896

Ubuntu 22.04 LTS

emacs24- GNU Emacs editor

CVE-2022-45939

Ubuntu 16.04 ESM

linux-oem-6.0- Linux kernel for OEM systems

CVE-2022-3524

CVE-2022-3628

CVE-2022-42895

CVE-2022-3619

CVE-2022-42896

Ubuntu 22.04 LTS

linux-azure- Linux kernel for Microsoft Azure Cloud systems

linux-azure-5.15- Linux kernel for Microsoft Azure cloud systems

linux-azure-fde- Linux kernel for Microsoft Azure CVM cloud systems

CVE-2022-42703

CVE-2022-3524

CVE-2022-3594

CVE-2022-3566

CVE-2022-3621

CVE-202243945

CVE-2022-3564

CVE-2022-3565

CVE-2022-3567

Ubuntu 22.04 LTS

Ubuntu 20.04 LTS

xorg-server- X.Org X11 server

xorg-server-hwe-18.04- X.Org X11 server

xwayland- X server for running X clients under Wayland

CVE-2022-46341

CVE-2022-46342

CVE-2022-46340

CVE-2022-4283

CVE-2022-46344

CVE-2022-46343

Ubuntu 22.10

Ubuntu 22.04 LTS

Ubuntu 20.04 LTS

Ubuntu 18.04 LTS

firefox- Mozilla Open Source web browser

CVE-2022-46878

CVE-2022-46872

CVE-2022-46879

CVE-2022-46874

CVE-2022-46873

CVE-2022-46877

CVE-2022-46871

Ubuntu 20.04 LTS

Ubuntu 18.04 LTS

The problem can be corrected by updating your system the updated package versions:

References:

https://ubuntu.com/security/notices