CVE-2022-25258 and CVE-2022-25375
Bug #1971205 reported by
Luís Infante da Câmara
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux-aws (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-aws-5.13 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-aws-5.4 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-azure (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-azure-4.15 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-azure-5.13 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-azure-5.4 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-bluefield (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-dell300x (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-gcp (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-gcp-4.15 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-gcp-5.13 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-gcp-5.4 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-gke (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-gke-5.4 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-gkeop (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-gkeop-5.4 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-hwe-5.13 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-hwe-5.4 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-ibm (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-ibm-5.4 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-kvm (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-oracle (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-oracle-5.13 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-oracle-5.4 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-raspi (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-raspi-5.4 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-raspi2 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-riscv (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
linux-snapdragon (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
These packages are vulnerable to CVE-2022-25258 and CVE-2022-25375 in at least one Ubuntu release, as stated in the Ubuntu CVE Tracker.
Please release fixed packages.
Debian released an advisory on March 7.
CVE References
description: | updated |
description: | updated |
summary: |
- CVE-2022-25258 + CVE-2022-25258 and CVE-2022-25375 |
information type: | Private Security → Public Security |
no longer affects: | linux-azure-fde (Ubuntu) |
Changed in linux-aws (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-aws-5.13 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-aws-5.4 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-azure (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-azure-4.15 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-azure-5.13 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-azure-5.4 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-bluefield (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-dell300x (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-gcp (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-gcp-4.15 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-gcp-5.13 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-gcp-5.4 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-gke (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-gke-5.4 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-gkeop (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-gkeop-5.4 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-hwe-5.13 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-hwe-5.4 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-ibm (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-ibm-5.4 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-kvm (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-oracle (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-oracle-5.13 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-oracle-5.4 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-raspi (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-raspi-5.4 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-raspi2 (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-riscv (Ubuntu): | |
status: | New → Confirmed |
Changed in linux-aws (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-aws-5.13 (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-aws-5.4 (Ubuntu): | |
status: | Confirmed → Fix Committed |
Changed in linux-azure (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-azure-4.15 (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-azure-5.13 (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-azure-5.4 (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-gcp-5.4 (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-gcp-5.13 (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-gke (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-gke-5.4 (Ubuntu): | |
status: | Confirmed → Fix Committed |
Changed in linux-gkeop (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-gkeop-5.4 (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-hwe-5.13 (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-hwe-5.4 (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-ibm (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-ibm-5.4 (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-kvm (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-oracle (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-oracle-5.13 (Ubuntu): | |
status: | Confirmed → Fix Committed |
Changed in linux-oracle-5.4 (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-raspi (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-raspi-5.4 (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-raspi2 (Ubuntu): | |
status: | Confirmed → Fix Committed |
Changed in linux-riscv (Ubuntu): | |
status: | Confirmed → Fix Committed |
Changed in linux-snapdragon (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in linux-riscv (Ubuntu): | |
status: | Fix Committed → Fix Released |
Changed in linux-raspi2 (Ubuntu): | |
status: | Fix Committed → Fix Released |
Changed in linux-aws-5.4 (Ubuntu): | |
status: | Fix Committed → Fix Released |
Changed in linux-gke-5.4 (Ubuntu): | |
status: | Fix Committed → Fix Released |
Changed in linux-oracle-5.13 (Ubuntu): | |
status: | Fix Committed → Fix Released |
Changed in linux-bluefield (Ubuntu): | |
status: | Confirmed → Fix Committed |
To post a comment you must log in.
The security team doesn't track security updates using launchpad bugs. The CVE tracker is where security updates are tracked:
https:/ /ubuntu. com/security/ cves
You can follow the progress on those CVEs here:
https:/ /ubuntu. com/security/ cve-2022- 25258 /ubuntu. com/security/ cve-2022- 25375
https:/