跳转到帖子
官方通告:安全方向 - WEB渗透 /Windows & 安卓远控/ 逆向破解 /安全审计 /嵌入式开发联系 Telegram:@HackAptTeam,或者点击此处查看详细介绍。收SHELL、出SHELL。劫持合作。

Ubuntu: (Multiple Advisories) (CVE-2023-1998): Linux kernel (OEM) vulnerabilities

ISHACK AI BOT
ISHACK AI BOT
?day POC 漏洞数据库

recommended_posts

发布于
  • Members

Ubuntu: (Multiple Advisories) (CVE-2023-1998): Linux kernel (OEM) vulnerabilities

Severity
4
CVSS
(AV:L/AC:M/Au:S/C:C/I:N/A:N)
Published
04/19/2023
Created
05/05/2023
Added
04/21/2023
Modified
01/28/2025

Description

The Linux kernel allows userspace processes to enable mitigations by calling prctl with PR_SET_SPECULATION_CTRL which disables the speculation feature as well as by using seccomp. We had noticed that on VMs of at least one major cloud provider, the kernel still left the victim process exposed to attacks in some cases even after enabling the spectre-BTI mitigation with prctl. The same behavior can be observed on a bare-metal machine when forcing the mitigation to IBRS on boot command line. This happened because when plain IBRS was enabled (not enhanced IBRS), the kernel had some logic that determined that STIBP was not needed. The IBRS bit implicitly protects against cross-thread branch target injection. However, with legacy IBRS, the IBRS bit was cleared on returning to userspace, due to performance reasons, which disabled the implicit STIBP and left userspace threads vulnerable to cross-thread branch target injection against which STIBP protects.

Solution(s)

  • ubuntu-upgrade-linux-image-4-15-0-1130-oracle
  • ubuntu-upgrade-linux-image-4-15-0-1151-kvm
  • ubuntu-upgrade-linux-image-4-15-0-1161-gcp
  • ubuntu-upgrade-linux-image-4-15-0-1167-aws
  • ubuntu-upgrade-linux-image-4-15-0-1176-azure
  • ubuntu-upgrade-linux-image-4-15-0-224-generic
  • ubuntu-upgrade-linux-image-4-15-0-224-lowlatency
  • ubuntu-upgrade-linux-image-4-4-0-1130-aws
  • ubuntu-upgrade-linux-image-4-4-0-1131-kvm
  • ubuntu-upgrade-linux-image-4-4-0-1168-aws
  • ubuntu-upgrade-linux-image-4-4-0-253-generic
  • ubuntu-upgrade-linux-image-4-4-0-253-lowlatency
  • ubuntu-upgrade-linux-image-5-15-0-1022-gkeop
  • ubuntu-upgrade-linux-image-5-15-0-1032-ibm
  • ubuntu-upgrade-linux-image-5-15-0-1032-raspi
  • ubuntu-upgrade-linux-image-5-15-0-1032-raspi-nolpae
  • ubuntu-upgrade-linux-image-5-15-0-1033-intel-iotg
  • ubuntu-upgrade-linux-image-5-15-0-1035-kvm
  • ubuntu-upgrade-linux-image-5-15-0-1036-gcp
  • ubuntu-upgrade-linux-image-5-15-0-1036-gke
  • ubuntu-upgrade-linux-image-5-15-0-1037-oracle
  • ubuntu-upgrade-linux-image-5-15-0-1038-aws
  • ubuntu-upgrade-linux-image-5-15-0-1040-azure
  • ubuntu-upgrade-linux-image-5-15-0-1040-azure-fde
  • ubuntu-upgrade-linux-image-5-15-0-1041-azure-fde
  • ubuntu-upgrade-linux-image-5-15-0-75-generic
  • ubuntu-upgrade-linux-image-5-15-0-75-generic-64k
  • ubuntu-upgrade-linux-image-5-15-0-75-generic-lpae
  • ubuntu-upgrade-linux-image-5-15-0-75-lowlatency
  • ubuntu-upgrade-linux-image-5-15-0-75-lowlatency-64k
  • ubuntu-upgrade-linux-image-5-19-0-1021-raspi
  • ubuntu-upgrade-linux-image-5-19-0-1021-raspi-nolpae
  • ubuntu-upgrade-linux-image-5-19-0-1024-ibm
  • ubuntu-upgrade-linux-image-5-19-0-1025-kvm
  • ubuntu-upgrade-linux-image-5-19-0-1025-oracle
  • ubuntu-upgrade-linux-image-5-19-0-1026-gcp
  • ubuntu-upgrade-linux-image-5-19-0-1027-aws
  • ubuntu-upgrade-linux-image-5-19-0-1027-lowlatency
  • ubuntu-upgrade-linux-image-5-19-0-1027-lowlatency-64k
  • ubuntu-upgrade-linux-image-5-19-0-1028-azure
  • ubuntu-upgrade-linux-image-5-19-0-45-generic
  • ubuntu-upgrade-linux-image-5-19-0-45-generic-64k
  • ubuntu-upgrade-linux-image-5-19-0-45-generic-lpae
  • ubuntu-upgrade-linux-image-5-4-0-1017-iot
  • ubuntu-upgrade-linux-image-5-4-0-1024-xilinx-zynqmp
  • ubuntu-upgrade-linux-image-5-4-0-1051-ibm
  • ubuntu-upgrade-linux-image-5-4-0-1065-bluefield
  • ubuntu-upgrade-linux-image-5-4-0-1071-gkeop
  • ubuntu-upgrade-linux-image-5-4-0-1088-raspi
  • ubuntu-upgrade-linux-image-5-4-0-1093-kvm
  • ubuntu-upgrade-linux-image-5-4-0-1102-gke
  • ubuntu-upgrade-linux-image-5-4-0-1103-oracle
  • ubuntu-upgrade-linux-image-5-4-0-1104-aws
  • ubuntu-upgrade-linux-image-5-4-0-1107-gcp
  • ubuntu-upgrade-linux-image-5-4-0-1110-azure
  • ubuntu-upgrade-linux-image-5-4-0-152-generic
  • ubuntu-upgrade-linux-image-5-4-0-152-generic-lpae
  • ubuntu-upgrade-linux-image-5-4-0-152-lowlatency
  • ubuntu-upgrade-linux-image-6-1-0-1009-oem
  • ubuntu-upgrade-linux-image-aws
  • ubuntu-upgrade-linux-image-aws-hwe
  • ubuntu-upgrade-linux-image-aws-lts-18-04
  • ubuntu-upgrade-linux-image-aws-lts-20-04
  • ubuntu-upgrade-linux-image-aws-lts-22-04
  • ubuntu-upgrade-linux-image-azure
  • ubuntu-upgrade-linux-image-azure-cvm
  • ubuntu-upgrade-linux-image-azure-fde
  • ubuntu-upgrade-linux-image-azure-fde-lts-22-04
  • ubuntu-upgrade-linux-image-azure-lts-18-04
  • ubuntu-upgrade-linux-image-azure-lts-20-04
  • ubuntu-upgrade-linux-image-azure-lts-22-04
  • ubuntu-upgrade-linux-image-bluefield
  • ubuntu-upgrade-linux-image-gcp
  • ubuntu-upgrade-linux-image-gcp-lts-18-04
  • ubuntu-upgrade-linux-image-gcp-lts-20-04
  • ubuntu-upgrade-linux-image-gcp-lts-22-04
  • ubuntu-upgrade-linux-image-generic
  • ubuntu-upgrade-linux-image-generic-64k
  • ubuntu-upgrade-linux-image-generic-64k-hwe-20-04
  • ubuntu-upgrade-linux-image-generic-64k-hwe-22-04
  • ubuntu-upgrade-linux-image-generic-hwe-16-04
  • ubuntu-upgrade-linux-image-generic-hwe-20-04
  • ubuntu-upgrade-linux-image-generic-hwe-22-04
  • ubuntu-upgrade-linux-image-generic-lpae
  • ubuntu-upgrade-linux-image-generic-lpae-hwe-20-04
  • ubuntu-upgrade-linux-image-generic-lpae-hwe-22-04
  • ubuntu-upgrade-linux-image-generic-lts-xenial
  • ubuntu-upgrade-linux-image-gke
  • ubuntu-upgrade-linux-image-gke-5-15
  • ubuntu-upgrade-linux-image-gke-5-4
  • ubuntu-upgrade-linux-image-gkeop
  • ubuntu-upgrade-linux-image-gkeop-5-15
  • ubuntu-upgrade-linux-image-gkeop-5-4
  • ubuntu-upgrade-linux-image-ibm
  • ubuntu-upgrade-linux-image-ibm-lts-20-04
  • ubuntu-upgrade-linux-image-intel
  • ubuntu-upgrade-linux-image-intel-iotg
  • ubuntu-upgrade-linux-image-kvm
  • ubuntu-upgrade-linux-image-lowlatency
  • ubuntu-upgrade-linux-image-lowlatency-64k
  • ubuntu-upgrade-linux-image-lowlatency-64k-hwe-20-04
  • ubuntu-upgrade-linux-image-lowlatency-hwe-16-04
  • ubuntu-upgrade-linux-image-lowlatency-hwe-20-04
  • ubuntu-upgrade-linux-image-lowlatency-lts-xenial
  • ubuntu-upgrade-linux-image-oem
  • ubuntu-upgrade-linux-image-oem-20-04
  • ubuntu-upgrade-linux-image-oem-20-04b
  • ubuntu-upgrade-linux-image-oem-20-04c
  • ubuntu-upgrade-linux-image-oem-20-04d
  • ubuntu-upgrade-linux-image-oem-22-04c
  • ubuntu-upgrade-linux-image-oem-osp1
  • ubuntu-upgrade-linux-image-oracle
  • ubuntu-upgrade-linux-image-oracle-lts-18-04
  • ubuntu-upgrade-linux-image-oracle-lts-20-04
  • ubuntu-upgrade-linux-image-raspi
  • ubuntu-upgrade-linux-image-raspi-nolpae
  • ubuntu-upgrade-linux-image-raspi2
  • ubuntu-upgrade-linux-image-virtual
  • ubuntu-upgrade-linux-image-virtual-hwe-16-04
  • ubuntu-upgrade-linux-image-virtual-hwe-20-04
  • ubuntu-upgrade-linux-image-virtual-hwe-22-04
  • ubuntu-upgrade-linux-image-virtual-lts-xenial
  • ubuntu-upgrade-linux-image-xilinx-zynqmp

References

  • https://attackerkb.com/topics/cve-2023-1998
  • CVE - 2023-1998
  • USN-6033-1
  • USN-6171-1
  • USN-6172-1
  • USN-6185-1
  • USN-6187-1
  • USN-6207-1
  • USN-6222-1
  • USN-6223-1
  • USN-6256-1
  • USN-6739-1
  • USN-6740-1
View more
  • 引用
  • Mention
    • 查看数 696
    • 已创建
    • 最后回复

    参与讨论

    你可立刻发布并稍后注册。 如果你有帐户,立刻登录发布帖子。
    注意:你的帖子需要版主批准后才能看到。

    游客
    回帖…
    转到主题列表