网安资讯详情 - SecLens 情报雷达

USN-8423-1: lwIP vulnerabilities

来源： ubuntu_security_notice · 发布时间 2026-06-12 02:54 (UTC+08:00) · 抓取时间 2026-06-12 06:35 (UTC+08:00)

原文链接

摘要

Several security issues were fixed in lwIP.

正文

It was discovered that lwIP contained a buffer overflow in the EAP authentication handling code. An attacker could possibly use this issue to trigger a buffer overflow, resulting in arbitrary code execution or a denial of service. This issue only affected Ubuntu 20.04 LTS. (CVE-2020-8597) It was discovered that lwIP incorrectly handled certain ICMPv6 or 6LoWPAN packets. An attacker could possibly use this issue to trigger a buffer overflow, resulting in information disclosure. This issue only affected Ubuntu 20.04 LTS. (CVE-2020-22283, CVE-2020-22284) It was discovered that lwIP did not properly validate certain SNMPv3 authentication parameters. An attacker could possibly use this issue to trigger a stack-based buffer overflow, resulting in arbitrary code execution or a denial of service. (CVE-2026-8836)

标签

• release:focal
• release:jammy
• release:noble
• release:resolute
• USN

扩展字段

{
  "cve_ids": [
    "CVE-2026-8836",
    "CVE-2020-22284",
    "CVE-2020-22283",
    "CVE-2020-8597"
  ],
  "guid": "https://ubuntu.com/security/notices/USN-8423-1",
  "instructions": "In general, a standard system update will make all the necessary changes.",
  "raw_pub_date": "Thu, 11 Jun 2026 18:54:54 +0000",
  "release_packages": {
    "focal": [
      {
        "description": "Lightweight TCP/IP stack",
        "is_source": true,
        "name": "lwip",
        "version": "2.1.2+dfsg1-4ubuntu0.1~esm1"
      },
      {
        "is_source": false,
        "is_visible": true,
        "name": "liblwip-dev",
        "pocket": "esm-apps",
        "source_link": "https://launchpad.net/ubuntu/+source/lwip",
        "version": "2.1.2+dfsg1-4ubuntu0.1~esm1",
        "version_link": null
      },
      {
        "is_source": false,
        "is_visible": true,
        "name": "liblwip-doc",
        "pocket": "esm-apps",
        "source_link": "https://launchpad.net/ubuntu/+source/lwip",
        "version": "2.1.2+dfsg1-4ubuntu0.1~esm1",
        "version_link": null
      },
      {
        "is_source": false,
        "is_visible": true,
        "name": "liblwip0",
        "pocket": "esm-apps",
        "source_link": "https://launchpad.net/ubuntu/+source/lwip",
        "version": "2.1.2+dfsg1-4ubuntu0.1~esm1",
        "version_link": null
      }
    ],
    "jammy": [
      {
        "description": "Lightweight TCP/IP stack",
        "is_source": true,
        "name": "lwip",
        "version": "2.1.3+dfsg1-1ubuntu0.1~esm1"
      },
      {
        "is_source": false,
        "is_visible": true,
        "name": "liblwip-dev",
        "pocket": "esm-apps",
        "source_link": "https://launchpad.net/ubuntu/+source/lwip",
        "version": "2.1.3+dfsg1-1ubuntu0.1~esm1",
        "version_link": null
      },
      {
        "is_source": false,
        "is_visible": true,
        "name": "liblwip-doc",
        "pocket": "esm-apps",
        "source_link": "https://launchpad.net/ubuntu/+source/lwip",
        "version": "2.1.3+dfsg1-1ubuntu0.1~esm1",
        "version_link": null
      },
      {
        "is_source": false,
        "is_visible": true,
        "name": "liblwip0",
        "pocket": "esm-apps",
        "source_link": "https://launchpad.net/ubuntu/+source/lwip",
        "version": "2.1.3+dfsg1-1ubuntu0.1~esm1",
        "version_link": null
      }
    ],
    "noble": [
      {
        "description": "Lightweight TCP/IP stack",
        "is_source": true,
        "name": "lwip",
        "version": "2.2.0+dfsg1-6.1ubuntu0.1~esm1"
      },
      {
        "is_source": false,
        "is_visible": true,
        "name": "liblwip-dev",
        "pocket": "esm-apps",
        "source_link": "https://launchpad.net/ubuntu/+source/lwip",
        "version": "2.2.0+dfsg1-6.1ubuntu0.1~esm1",
        "version_link": null
      },
      {
        "is_source": false,
        "is_visible": true,
        "name": "liblwip-doc",
        "pocket": "esm-apps",
        "source_link": "https://launchpad.net/ubuntu/+source/lwip",
        "version": "2.2.0+dfsg1-6.1ubuntu0.1~esm1",
        "version_link": null
      },
      {
        "is_source": false,
        "is_visible": true,
        "name": "liblwip0t64",
        "pocket": "esm-apps",
        "source_link": "https://launchpad.net/ubuntu/+source/lwip",
        "version": "2.2.0+dfsg1-6.1ubuntu0.1~esm1",
        "version_link": null
      }
    ],
    "resolute": [
      {
        "description": "Lightweight TCP/IP stack",
        "is_source": true,
        "name": "lwip",
        "version": "2.2.1+dfsg1-4ubuntu0.1~esm1"
      },
      {
        "is_source": false,
        "is_visible": true,
        "name": "liblwip-dev",
        "pocket": "esm-apps",
        "source_link": "https://launchpad.net/ubuntu/+source/lwip",
        "version": "2.2.1+dfsg1-4ubuntu0.1~esm1",
        "version_link": null
      },
      {
        "is_source": false,
        "is_visible": true,
        "name": "liblwip-doc",
        "pocket": "esm-apps",
        "source_link": "https://launchpad.net/ubuntu/+source/lwip",
        "version": "2.2.1+dfsg1-4ubuntu0.1~esm1",
        "version_link": null
      },
      {
        "is_source": false,
        "is_visible": true,
        "name": "liblwip0t64",
        "pocket": "esm-apps",
        "source_link": "https://launchpad.net/ubuntu/+source/lwip",
        "version": "2.2.1+dfsg1-4ubuntu0.1~esm1",
        "version_link": null
      }
    ]
  },
  "releases": [
    {
      "codename": "resolute",
      "support_tag": "LTS",
      "version": "26.04"
    },
    {
      "codename": "noble",
      "support_tag": "LTS",
      "version": "24.04"
    },
    {
      "codename": "jammy",
      "support_tag": "LTS",
      "version": "22.04"
    },
    {
      "codename": "focal",
      "support_tag": "ESM",
      "version": "20.04"
    }
  ]
}