Lucene search
UbuntuUSN-6873-2HistoryJul 04, 2024 - 12:00 a.m.
Linux kernel (StarFive) vulnerabilities
2024-07-0400:00:00
ubuntu.com
12
linux kernel
ubuntu 22.04 lts
starfive processors
intel data streaming
analytics accelerator
unprivileged access
denial of service
netfilter subsystem
cve-2024-21823
cve-2024-26643
cve-2024-26925
cve-2024-26924
cve-2024-26809
CVSS3
7.5
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H
AI Score
6.7
Confidence
High
Releases
- Ubuntu 22.04 LTS
Packages
- linux-starfive-6.5 - Linux kernel for StarFive processors
Details
It was discovered that the Intel Data Streaming and Intel Analytics
Accelerator drivers in the Linux kernel allowed direct access to the
devices for unprivileged users and virtual machines. A local attacker could
use this to cause a denial of service. (CVE-2024-21823)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystem:
- Netfilter;
(CVE-2024-26643, CVE-2024-26925, CVE-2024-26924, CVE-2024-26809)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 22.04 | noarch | linux-image-6.5.0-1016-starfive | < 6.5.0-1016.17~22.04.1 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-buildinfo-6.5.0-1016-starfive | < 6.5.0-1016.17~22.04.1 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-headers-6.5.0-1016-starfive | < 6.5.0-1016.17~22.04.1 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-image-6.5.0-1016-starfive-dbgsym | < 6.5.0-1016.17~22.04.1 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-modules-6.5.0-1016-starfive | < 6.5.0-1016.17~22.04.1 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-modules-extra-6.5.0-1016-starfive | < 6.5.0-1016.17~22.04.1 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-starfive-6.5-headers-6.5.0-1016 | < 6.5.0-1016.17~22.04.1 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-starfive-6.5-tools-6.5.0-1016 | < 6.5.0-1016.17~22.04.1 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-tools-6.5.0-1016-starfive | < 6.5.0-1016.17~22.04.1 | UNKNOWN |
| Ubuntu | 22.04 | noarch | linux-image-starfive | < 6.5.0.1016.17~22.04.1 | UNKNOWN |
Related
openvas
openvas
Ubuntu: Security Advisory (USN-6873-2)
2024-07-08 00:00:00
Ubuntu: Security Advisory (USN-6873-1)
2024-07-04 00:00:00
Ubuntu: Security Advisory (USN-6872-1)
2024-07-04 00:00:00
nessus
nessus
Ubuntu 22.04 LTS / 23.10 : Linux kernel vulnerabilities (USN-6873-1)
2024-07-04 00:00:00
Ubuntu 22.04 LTS : Linux kernel (StarFive) vulnerabilities (USN-6873-2)
2024-07-04 00:00:00
Ubuntu 22.04 LTS / 23.10 : Linux kernel vulnerabilities (USN-6872-2)
2024-07-04 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-07-04 00:00:00
Linux kernel vulnerabilities
2024-07-04 00:00:00
Linux kernel vulnerabilities
2024-07-04 00:00:00
osv
osv
linux-starfive-6.5 vulnerabilities
2024-07-04 16:56:28
linux-aws, linux-aws-6.5, linux-oem-6.5, linux-oracle, linux-oracle-6.5, linux-starfive vulnerabilities
2024-07-04 01:58:30
linux-lowlatency, linux-lowlatency-hwe-6.5 vulnerabilities
2024-07-04 16:35:24
redos
redos
ROS-20240821-01
2024-08-21 00:00:00
ROS-20240821-02
2024-08-21 00:00:00
redhatcve
redhatcve
cve
cve
vulnrichment
vulnrichment
CVE-2024-26643 netfilter: nf_tables: mark set as dead when unbinding anonymous set with timeout
2024-03-21 10:43:44
CVE-2024-26924 netfilter: nft_set_pipapo: do not free live element
2024-04-24 21:49:22
CVE-2024-21823
2024-05-16 20:46:57
debiancve
debiancve
ubuntucve
ubuntucve
nvd
nvd
cvelist
cvelist
photon
photon
Important Photon OS Security Update - PHSA-2024-5.0-0248
2024-04-17 00:00:00
Critical Photon OS Security Update - PHSA-2024-4.0-0592
2024-04-17 00:00:00
redhat
redhat
(RHSA-2024:4729) Important: kernel-rt security update
2024-07-23 14:41:34
(RHSA-2024:4731) Important: kernel security update
2024-07-23 14:41:35
(RHSA-2024:3306) Moderate: kernel security and bug fix update
2024-05-23 05:51:19
oraclelinux
oraclelinux
kernel security and bug fix update
2024-05-23 00:00:00
kernel security update
2024-08-28 00:00:00
kernel security update
2024-08-14 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: kernel-6.8.10-200.fc39
2024-05-22 01:22:53
[SECURITY] Fedora 40 Update: kernel-6.8.10-300.fc40
2024-05-22 01:28:10
[SECURITY] Fedora 40 Update: kernel-6.8.8-300.fc40
2024-05-03 01:49:00
mageia
mageia
Updated kernel, kmod-xtables-addons, kmod-virtualbox packages fix security vulnerabilities
2024-04-23 04:20:56
Updated kernel-linus packages fix security vulnerabilities
2024-04-23 04:20:56
debian
debian
[SECURITY] [DSA 5680-1] linux security update
2024-05-06 17:40:02
almalinux
almalinux
Important: kernel security update
2024-08-08 00:00:00
Moderate: kernel-rt security and bug fix update
2024-06-05 00:00:00
Moderate: kernel update
2024-06-05 00:00:00
rocky
rocky
kernel security update
2024-08-21 14:53:21
CVSS3
7.5
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H
AI Score
6.7
Confidence
High
Related for USN-6873-2