Lucene search

UbuntuUSN-6868-1

HistoryJul 03, 2024 - 12:00 a.m.

Linux kernel vulnerabilities

2024-07-0300:00:00

ubuntu.com

ubuntu

linux

security

vulnerability

kernel

aws

azure

gcp

gke

ibm

iot

kvm

oracle

raspberry pi

xilinx

cve-2022-0001

cve-2024-2201

cve-2024-26925

cve-2024-26643

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

6.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

AI Score

6.8

Confidence

Low

JSON

Releases

Ubuntu 20.04 LTS
Ubuntu 18.04 ESM

Packages

linux - Linux kernel
linux-aws - Linux kernel for Amazon Web Services (AWS) systems
linux-azure - Linux kernel for Microsoft Azure Cloud systems
linux-azure-5.4 - Linux kernel for Microsoft Azure cloud systems
linux-bluefield - Linux kernel for NVIDIA BlueField platforms
linux-gcp - Linux kernel for Google Cloud Platform (GCP) systems
linux-gkeop - Linux kernel for Google Container Engine (GKE) systems
linux-hwe-5.4 - Linux hardware enablement (HWE) kernel
linux-ibm - Linux kernel for IBM cloud systems
linux-ibm-5.4 - Linux kernel for IBM cloud systems
linux-iot - Linux kernel for IoT platforms
linux-kvm - Linux kernel for cloud environments
linux-oracle - Linux kernel for Oracle Cloud systems
linux-oracle-5.4 - Linux kernel for Oracle Cloud systems
linux-raspi - Linux kernel for Raspberry Pi systems
linux-raspi-5.4 - Linux kernel for Raspberry Pi systems
linux-xilinx-zynqmp - Linux kernel for Xilinx ZynqMP processors

Details

Sander Wiebing, Alvise de Faveri Tron, Herbert Bos, and Cristiano Giuffrida
discovered that the Linux kernel mitigations for the initial Branch History
Injection vulnerability (CVE-2022-0001) were insufficient for Intel
processors. A local attacker could potentially use this to expose sensitive
information. (CVE-2024-2201)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:

Netfilter;
(CVE-2024-26925, CVE-2024-26643)

OSVersionArchitecturePackageVersionFilename
Ubuntu20.04noarchlinux-image-5.4.0-1039-iot< 5.4.0-1039.40UNKNOWN
Ubuntu20.04noarchlinux-image-5.4.0-1039-iot-dbgsym< 5.4.0-1039.40UNKNOWN
Ubuntu20.04noarchlinux-image-5.4.0-1046-xilinx-zynqmp< 5.4.0-1046.50UNKNOWN
Ubuntu20.04noarchlinux-buildinfo-5.4.0-1046-xilinx-zynqmp< 5.4.0-1046.50UNKNOWN
Ubuntu20.04noarchlinux-headers-5.4.0-1046-xilinx-zynqmp< 5.4.0-1046.50UNKNOWN
Ubuntu20.04noarchlinux-image-5.4.0-1046-xilinx-zynqmp-dbgsym< 5.4.0-1046.50UNKNOWN
Ubuntu20.04noarchlinux-modules-5.4.0-1046-xilinx-zynqmp< 5.4.0-1046.50UNKNOWN
Ubuntu20.04noarchlinux-tools-5.4.0-1046-xilinx-zynqmp< 5.4.0-1046.50UNKNOWN
Ubuntu20.04noarchlinux-xilinx-zynqmp-headers-5.4.0-1046< 5.4.0-1046.50UNKNOWN
Ubuntu20.04noarchlinux-xilinx-zynqmp-tools-5.4.0-1046< 5.4.0-1046.50UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	20.04	noarch	linux-image-5.4.0-1039-iot	< 5.4.0-1039.40	UNKNOWN
Ubuntu	20.04	noarch	linux-image-5.4.0-1039-iot-dbgsym	< 5.4.0-1039.40	UNKNOWN
Ubuntu	20.04	noarch	linux-image-5.4.0-1046-xilinx-zynqmp	< 5.4.0-1046.50	UNKNOWN
Ubuntu	20.04	noarch	linux-buildinfo-5.4.0-1046-xilinx-zynqmp	< 5.4.0-1046.50	UNKNOWN
Ubuntu	20.04	noarch	linux-headers-5.4.0-1046-xilinx-zynqmp	< 5.4.0-1046.50	UNKNOWN
Ubuntu	20.04	noarch	linux-image-5.4.0-1046-xilinx-zynqmp-dbgsym	< 5.4.0-1046.50	UNKNOWN
Ubuntu	20.04	noarch	linux-modules-5.4.0-1046-xilinx-zynqmp	< 5.4.0-1046.50	UNKNOWN
Ubuntu	20.04	noarch	linux-tools-5.4.0-1046-xilinx-zynqmp	< 5.4.0-1046.50	UNKNOWN
Ubuntu	20.04	noarch	linux-xilinx-zynqmp-headers-5.4.0-1046	< 5.4.0-1046.50	UNKNOWN
Ubuntu	20.04	noarch	linux-xilinx-zynqmp-tools-5.4.0-1046	< 5.4.0-1046.50	UNKNOWN