UBUNTU-CVE-2022-2590

Details

A race condition was found in the way the Linux kernel's memory subsystem handled the copy-on-write (COW) breakage of private read-only shared memory mappings. This flaw allows an unprivileged, local user to gain write access to read-only memory mappings, increasing their privileges on the system.

Affected Packages(141 packages)

linux

Ubuntu 20.04 LTS

Affected versions:

5.3.0-18.195.3.0-24.26

Fixed in:

5.4.0-9.12

linux

Ubuntu 24.04 LTS

Fixed in:

6.5.0-9.9

linux

Ubuntu 22.04 LTS

Fixed in:

5.13.0-19.19

linux

Ubuntu 18.04 LTS

Fixed in:

4.13.0-16.19

linux-aws

Ubuntu 22.04 LTS

Fixed in:

5.13.0-1005.6

linux-aws

Ubuntu 18.04 LTS

Fixed in:

4.15.0-1001.1

linux-aws

Ubuntu 20.04 LTS

Affected versions:

5.3.0-1003.35.3.0-1008.95.3.0-1009.105.3.0-1010.11

Fixed in:

5.4.0-1005.5

linux-aws

Ubuntu 24.04 LTS

Fixed in:

6.5.0-1008.8

linux-aws-5.0

Ubuntu Pro 18.04 LTS

Affected versions:

5.0.0-1021.24~18.04.15.0.0-1022.25~18.04.15.0.0-1023.26~18.04.15.0.0-1024.27~18.04.15.0.0-1025.285.0.0-1027.30

linux-aws-5.11

Ubuntu Pro 20.04 LTS

Affected versions:

5.11.0-1009.9~20.04.25.11.0-1014.15~20.04.15.11.0-1016.17~20.04.15.11.0-1017.18~20.04.15.11.0-1019.20~20.04.15.11.0-1020.21~20.04.25.11.0-1021.22~20.04.25.11.0-1022.23~20.04.15.11.0-1023.24~20.04.15.11.0-1025.27~20.04.1+2 more

References

REPORThttps://lore.kernel.org/linux-mm/20220808073232.8808-1-david@redhat.com/REPORThttps://ubuntu.com/security/CVE-2022-2590 REPORThttps://ubuntu.com/security/notices/USN-6071-1 REPORThttps://www.cve.org/CVERecord?id=CVE-2022-2590 REPORThttps://www.openwall.com/lists/oss-security/2022/08/08/1

UBUNTU-CVE-2022-2590

Details

Affected Packages(141 packages)

References

CVSS Analysis

Related

Ecosystems(18)

Timeline