{"id":"USN-5565-1","summary":"linux, linux-hwe-5.15, linux-lowlatency, linux-lowlatency-hwe-5.15 vulnerabilities","details":"Zhenpeng Lin discovered that the network packet scheduler implementation in\nthe Linux kernel did not properly remove all references to a route filter\nbefore freeing it in some situations. A local attacker could use this to\ncause a denial of service (system crash) or execute arbitrary code.\n(CVE-2022-2588)\n\nIt was discovered that the netfilter subsystem of the Linux kernel did not\nprevent one nft object from referencing an nft set in another nft table,\nleading to a use-after-free vulnerability. A local attacker could use this\nto cause a denial of service (system crash) or execute arbitrary code.\n(CVE-2022-2586)\n\nIt was discovered that the implementation of POSIX timers in the Linux\nkernel did not properly clean up timers in some situations. A local\nattacker could use this to cause a denial of service (system crash) or\nexecute arbitrary code. (CVE-2022-2585)\n\nJohannes Wikner and Kaveh Razavi discovered that for some AMD x86-64\nprocessors, the branch predictor could by mis-trained for return\ninstructions in certain circumstances. A local attacker could possibly use\nthis to expose sensitive information. (CVE-2022-29900)\n\nJohannes Wikner and Kaveh Razavi discovered that for some Intel x86-64\nprocessors, the Linux kernel's protections against speculative branch\ntarget injection attacks were insufficient in some circumstances. A local\nattacker could possibly use this to expose sensitive information.\n(CVE-2022-29901)\n\n","modified":"2026-04-27T16:17:19.648480017Z","published":"2022-08-10T17:37:09Z","related":["UBUNTU-CVE-2022-2585","UBUNTU-CVE-2022-2586","UBUNTU-CVE-2022-2588","UBUNTU-CVE-2022-29900","UBUNTU-CVE-2022-29901"],"upstream":["CVE-2022-2585","CVE-2022-2586","CVE-2022-2588","CVE-2022-29900","CVE-2022-29901","UBUNTU-CVE-2022-2585","UBUNTU-CVE-2022-2586","UBUNTU-CVE-2022-2588","UBUNTU-CVE-2022-29900","UBUNTU-CVE-2022-29901"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-5565-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2022-2585"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2022-2586"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2022-2588"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2022-29900"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2022-29901"}],"affected":[{"package":{"name":"linux-hwe-5.15","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/linux-hwe-5.15@5.15.0-46.49~20.04.1?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.15.0-46.49~20.04.1"}]}],"versions":["5.15.0-33.34~20.04.1","5.15.0-41.44~20.04.1","5.15.0-43.46~20.04.1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"linux-buildinfo-5.15.0-46-generic","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-buildinfo-5.15.0-46-generic-64k","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-buildinfo-5.15.0-46-generic-lpae","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-cloud-tools-5.15.0-46-generic","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-headers-5.15.0-46-generic","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-headers-5.15.0-46-generic-64k","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-headers-5.15.0-46-generic-lpae","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-hwe-5.15-cloud-tools-5.15.0-46","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-hwe-5.15-cloud-tools-common","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-hwe-5.15-headers-5.15.0-46","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-hwe-5.15-source-5.15.0","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-hwe-5.15-tools-5.15.0-46","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-hwe-5.15-tools-common","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-hwe-5.15-tools-host","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-image-5.15.0-46-generic","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-image-5.15.0-46-generic-lpae","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-image-unsigned-5.15.0-46-generic","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-image-unsigned-5.15.0-46-generic-64k","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-modules-5.15.0-46-generic","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-modules-5.15.0-46-generic-64k","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-modules-5.15.0-46-generic-lpae","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-modules-extra-5.15.0-46-generic","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-modules-iwlwifi-5.15.0-46-generic","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-tools-5.15.0-46-generic","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-tools-5.15.0-46-generic-64k","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-tools-5.15.0-46-generic-lpae","binary_version":"5.15.0-46.49~20.04.1"}]},"database_specific":{"cves_map":{"cves":[{"severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}],"id":"CVE-2022-2585"},{"id":"CVE-2022-2586","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"id":"CVE-2022-2588","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2022-29900"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2022-29901"}],"ecosystem":"Ubuntu:20.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5565-1.json"}},{"package":{"name":"linux-lowlatency-hwe-5.15","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/linux-lowlatency-hwe-5.15@5.15.0-46.49~20.04.1?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.15.0-46.49~20.04.1"}]}],"versions":["5.15.0-33.34~20.04.1","5.15.0-42.45~20.04.1","5.15.0-43.46~20.04.1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"linux-buildinfo-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-buildinfo-5.15.0-46-lowlatency-64k","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-cloud-tools-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-headers-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-headers-5.15.0-46-lowlatency-64k","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-image-unsigned-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-image-unsigned-5.15.0-46-lowlatency-64k","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-lowlatency-hwe-5.15-cloud-tools-5.15.0-46","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-lowlatency-hwe-5.15-cloud-tools-common","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-lowlatency-hwe-5.15-headers-5.15.0-46","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-lowlatency-hwe-5.15-tools-5.15.0-46","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-lowlatency-hwe-5.15-tools-common","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-lowlatency-hwe-5.15-tools-host","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-modules-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-modules-5.15.0-46-lowlatency-64k","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-modules-iwlwifi-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-tools-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49~20.04.1"},{"binary_name":"linux-tools-5.15.0-46-lowlatency-64k","binary_version":"5.15.0-46.49~20.04.1"}]},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2022-2585","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}],"id":"CVE-2022-2586"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}],"id":"CVE-2022-2588"},{"id":"CVE-2022-29900","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2022-29901","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:20.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5565-1.json"}},{"package":{"name":"linux","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/linux@5.15.0-46.49?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.15.0-46.49"}]}],"versions":["5.13.0-19.19","5.15.0-17.17","5.15.0-18.18","5.15.0-22.22","5.15.0-23.23","5.15.0-25.25","5.15.0-27.28","5.15.0-30.31","5.15.0-33.34","5.15.0-35.36","5.15.0-37.39","5.15.0-39.42","5.15.0-40.43","5.15.0-41.44","5.15.0-43.46"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"linux-buildinfo-5.15.0-46-generic","binary_version":"5.15.0-46.49"},{"binary_name":"linux-buildinfo-5.15.0-46-generic-64k","binary_version":"5.15.0-46.49"},{"binary_name":"linux-buildinfo-5.15.0-46-generic-lpae","binary_version":"5.15.0-46.49"},{"binary_name":"linux-cloud-tools-5.15.0-46","binary_version":"5.15.0-46.49"},{"binary_name":"linux-cloud-tools-5.15.0-46-generic","binary_version":"5.15.0-46.49"},{"binary_name":"linux-cloud-tools-common","binary_version":"5.15.0-46.49"},{"binary_name":"linux-headers-5.15.0-46","binary_version":"5.15.0-46.49"},{"binary_name":"linux-headers-5.15.0-46-generic","binary_version":"5.15.0-46.49"},{"binary_name":"linux-headers-5.15.0-46-generic-64k","binary_version":"5.15.0-46.49"},{"binary_name":"linux-headers-5.15.0-46-generic-lpae","binary_version":"5.15.0-46.49"},{"binary_name":"linux-image-5.15.0-46-generic","binary_version":"5.15.0-46.49"},{"binary_name":"linux-image-5.15.0-46-generic-lpae","binary_version":"5.15.0-46.49"},{"binary_name":"linux-image-unsigned-5.15.0-46-generic","binary_version":"5.15.0-46.49"},{"binary_name":"linux-image-unsigned-5.15.0-46-generic-64k","binary_version":"5.15.0-46.49"},{"binary_name":"linux-modules-5.15.0-46-generic","binary_version":"5.15.0-46.49"},{"binary_name":"linux-modules-5.15.0-46-generic-64k","binary_version":"5.15.0-46.49"},{"binary_name":"linux-modules-5.15.0-46-generic-lpae","binary_version":"5.15.0-46.49"},{"binary_name":"linux-modules-extra-5.15.0-46-generic","binary_version":"5.15.0-46.49"},{"binary_name":"linux-modules-iwlwifi-5.15.0-46-generic","binary_version":"5.15.0-46.49"},{"binary_name":"linux-source-5.15.0","binary_version":"5.15.0-46.49"},{"binary_name":"linux-tools-5.15.0-46","binary_version":"5.15.0-46.49"},{"binary_name":"linux-tools-5.15.0-46-generic","binary_version":"5.15.0-46.49"},{"binary_name":"linux-tools-5.15.0-46-generic-64k","binary_version":"5.15.0-46.49"},{"binary_name":"linux-tools-5.15.0-46-generic-lpae","binary_version":"5.15.0-46.49"},{"binary_name":"linux-tools-common","binary_version":"5.15.0-46.49"},{"binary_name":"linux-tools-host","binary_version":"5.15.0-46.49"}]},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2022-2585","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}],"id":"CVE-2022-2586"},{"id":"CVE-2022-2588","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"id":"CVE-2022-29900","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2022-29901","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:22.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5565-1.json"}},{"package":{"name":"linux-lowlatency","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/linux-lowlatency@5.15.0-46.49?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.15.0-46.49"}]}],"versions":["5.15.0-22.22","5.15.0-23.23","5.15.0-24.24","5.15.0-27.28","5.15.0-30.31","5.15.0-33.34","5.15.0-35.36","5.15.0-37.39","5.15.0-39.42","5.15.0-40.43","5.15.0-41.44","5.15.0-43.46"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"linux-buildinfo-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49"},{"binary_name":"linux-buildinfo-5.15.0-46-lowlatency-64k","binary_version":"5.15.0-46.49"},{"binary_name":"linux-cloud-tools-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49"},{"binary_name":"linux-headers-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49"},{"binary_name":"linux-headers-5.15.0-46-lowlatency-64k","binary_version":"5.15.0-46.49"},{"binary_name":"linux-image-unsigned-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49"},{"binary_name":"linux-image-unsigned-5.15.0-46-lowlatency-64k","binary_version":"5.15.0-46.49"},{"binary_name":"linux-lowlatency-cloud-tools-5.15.0-46","binary_version":"5.15.0-46.49"},{"binary_name":"linux-lowlatency-cloud-tools-common","binary_version":"5.15.0-46.49"},{"binary_name":"linux-lowlatency-headers-5.15.0-46","binary_version":"5.15.0-46.49"},{"binary_name":"linux-lowlatency-tools-5.15.0-46","binary_version":"5.15.0-46.49"},{"binary_name":"linux-lowlatency-tools-common","binary_version":"5.15.0-46.49"},{"binary_name":"linux-lowlatency-tools-host","binary_version":"5.15.0-46.49"},{"binary_name":"linux-modules-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49"},{"binary_name":"linux-modules-5.15.0-46-lowlatency-64k","binary_version":"5.15.0-46.49"},{"binary_name":"linux-modules-iwlwifi-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49"},{"binary_name":"linux-tools-5.15.0-46-lowlatency","binary_version":"5.15.0-46.49"},{"binary_name":"linux-tools-5.15.0-46-lowlatency-64k","binary_version":"5.15.0-46.49"}]},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2022-2585","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"id":"CVE-2022-2586","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"id":"CVE-2022-2588","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"id":"CVE-2022-29900","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2022-29901","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:22.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5565-1.json"}}],"schema_version":"1.7.5"}