Test ID:	1.3.6.1.4.1.25623.1.1.12.2022.5444.1
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-5444-1)
Summary:	The remote host is missing an update for the 'linux-oem-5.14, linux-oem-5.17' package(s) announced via the USN-5444-1 advisory.
Description:	Summary: The remote host is missing an update for the 'linux-oem-5.14, linux-oem-5.17' package(s) announced via the USN-5444-1 advisory. Vulnerability Insight: Kyle Zeng discovered that the Network Queuing and Scheduling subsystem of the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. Affected Software/OS: 'linux-oem-5.14, linux-oem-5.17' package(s) on Ubuntu 20.04, Ubuntu 22.04. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2022-29581 Debian Security Information: DSA-5173 (Google Search) https://www.debian.org/security/2022/dsa-5173 http://packetstormsecurity.com/files/167386/Kernel-Live-Patch-Security-Notice-LSN-0086-1.html http://packetstormsecurity.com/files/168191/Kernel-Live-Patch-Security-Notice-LSN-0089-1.html https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3db09e762dc79584a69c10d74a6b98f89a9979f8 https://kernel.dance/#3db09e762dc79584a69c10d74a6b98f89a9979f8 http://www.openwall.com/lists/oss-security/2022/05/18/2
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.