Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-6950-4
HistoryAug 21, 2024 - 12:00 a.m.

Linux kernel (HWE) vulnerabilities

2024-08-2100:00:00
ubuntu.com
9
ubuntu 20.04 lts
linux kernel
hwe
security issues
arm32
arm64
bluetooth
gpu
infiniband
networking
sound
cve-2024-36883
cve-2024-36940
cve-2024-36902
cve-2024-36975
cve-2024-36964
cve-2024-36938
cve-2024-36931
cve-2024-35848
cve-2024-26900
cve-2024-36967
cve-2024-36904
cve-2024-27398
cve-2024-36031
cve-2023-52585
cve-2024-36886
cve-2024-36937
cve-2024-36954
cve-2024-36916
cve-2024-36905
cve-2024-36959
cve-2024-26980
cve-2024-26936
cve-2024-36928
cve-2024-36889
cve-2024-36929
cve-2024-36933
cve-2024-27399
cve-2024-36946
cve-2024-36906
cve-2024-36965
cve-2024-36957
cve-2024-36941
cve-2024-36897
cve-2024-36952
cve-2024-36947
cve-2024-36950
cve-2024-36880
cve-2024-36017
cve-2023-52882
cve-2024-36969
cve-2024-38600
cve-2024-36955
cve-2024-36960
cve-2024-27401
cve-2024-36919
cve-2024-36934
cve-2024-35947
cve-2024-36953
cve-2024-36944
cve-2024-36939

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.6

Confidence

Low

EPSS

0.001

Percentile

16.8%

JSON

Releases

  • Ubuntu 20.04 LTS

Packages

  • linux-hwe-5.15 - Linux hardware enablement (HWE) kernel

Details

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:

  • ARM32 architecture;
  • ARM64 architecture;
  • Block layer subsystem;
  • Bluetooth drivers;
  • Clock framework and drivers;
  • FireWire subsystem;
  • GPU drivers;
  • InfiniBand drivers;
  • Multiple devices driver;
  • EEPROM drivers;
  • Network drivers;
  • Pin controllers subsystem;
  • Remote Processor subsystem;
  • S/390 drivers;
  • SCSI drivers;
  • 9P distributed file system;
  • Network file system client;
  • SMB network file system;
  • Socket messages infrastructure;
  • Dynamic debug library;
  • Bluetooth subsystem;
  • Networking core;
  • IPv4 networking;
  • IPv6 networking;
  • Multipath TCP;
  • NSH protocol;
  • Phonet protocol;
  • TIPC protocol;
  • Wireless networking;
  • Key management;
  • ALSA framework;
  • HD-audio driver;
    (CVE-2024-36883, CVE-2024-36940, CVE-2024-36902, CVE-2024-36975,
    CVE-2024-36964, CVE-2024-36938, CVE-2024-36931, CVE-2024-35848,
    CVE-2024-26900, CVE-2024-36967, CVE-2024-36904, CVE-2024-27398,
    CVE-2024-36031, CVE-2023-52585, CVE-2024-36886, CVE-2024-36937,
    CVE-2024-36954, CVE-2024-36916, CVE-2024-36905, CVE-2024-36959,
    CVE-2024-26980, CVE-2024-26936, CVE-2024-36928, CVE-2024-36889,
    CVE-2024-36929, CVE-2024-36933, CVE-2024-27399, CVE-2024-36946,
    CVE-2024-36906, CVE-2024-36965, CVE-2024-36957, CVE-2024-36941,
    CVE-2024-36897, CVE-2024-36952, CVE-2024-36947, CVE-2024-36950,
    CVE-2024-36880, CVE-2024-36017, CVE-2023-52882, CVE-2024-36969,
    CVE-2024-38600, CVE-2024-36955, CVE-2024-36960, CVE-2024-27401,
    CVE-2024-36919, CVE-2024-36934, CVE-2024-35947, CVE-2024-36953,
    CVE-2024-36944, CVE-2024-36939)
OSVersionArchitecturePackageVersionFilename
Ubuntu20.04noarchlinux-image-5.15.0-118-generic< 5.15.0-118.128~20.04.1UNKNOWN
Ubuntu20.04noarchkernel-signed-image-5.15.0-118-generic-di< 5.15.0-118.128~20.04.1UNKNOWN
Ubuntu20.04noarchlinux-image-5.15.0-118-generic-dbgsym< 5.15.0-118.128~20.04.1UNKNOWN
Ubuntu20.04noarchlinux-image-5.15.0-118-generic-64k< 5.15.0-118.128~20.04.1UNKNOWN
Ubuntu20.04noarchlinux-image-5.15.0-118-generic-lpae< 5.15.0-118.128~20.04.1UNKNOWN
Ubuntu20.04noarchlinux-buildinfo-5.15.0-118-generic< 5.15.0-118.128~20.04.1UNKNOWN
Ubuntu20.04noarchlinux-cloud-tools-5.15.0-118-generic< 5.15.0-118.128~20.04.1UNKNOWN
Ubuntu20.04noarchlinux-headers-5.15.0-118-generic< 5.15.0-118.128~20.04.1UNKNOWN
Ubuntu20.04noarchlinux-hwe-5.15-cloud-tools-5.15.0-118< 5.15.0-118.128~20.04.1UNKNOWN
Ubuntu20.04noarchlinux-hwe-5.15-cloud-tools-common< 5.15.0-118.128~20.04.1UNKNOWN
Rows per page:
1-10 of 651

References

Related

nessus 25
osv 27
openvas 16
ubuntu 11
debian 1
amazon 1
fedora 2
redos 1
vulnrichment 14
cbl_mariner 5
ubuntucve 11
nvd 21
cvelist 15
debiancve 19
cve 12
redhatcve 17
prion 1
nessus
nessus
Ubuntu 22.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-6950-3)
2024-08-13 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6950-1)
2024-08-08 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6950-2)
2024-08-13 00:00:00
osv
osv
linux-oracle vulnerabilities
2024-08-13 14:11:15
linux-aws-5.15, linux-gkeop-5.15, linux-ibm, linux-ibm-5.15, linux-raspi vulnerabilities
2024-08-13 00:30:09
linux, linux-aws, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-intel-iotg, linux-intel-iotg-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia vulnerabilities
2024-08-08 22:09:14
openvas
openvas
Ubuntu: Security Advisory (USN-6950-3)
2024-08-14 00:00:00
Ubuntu: Security Advisory (USN-6950-4)
2024-08-22 00:00:00
Ubuntu: Security Advisory (USN-6950-2)
2024-08-13 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-08-13 00:00:00
Linux kernel vulnerabilities
2024-08-08 00:00:00
Linux kernel (Oracle) vulnerabilities
2024-08-13 00:00:00
debian
debian
[SECURITY] [DSA 5703-1] linux security update
2024-06-02 17:04:56
amazon
amazon
Important: kernel
2024-06-19 19:15:00
fedora
fedora
[SECURITY] Fedora 40 Update: kernel-6.8.10-300.fc40
2024-05-22 01:28:10
[SECURITY] Fedora 39 Update: kernel-6.8.10-200.fc39
2024-05-22 01:22:53
redos
redos
ROS-20240905-04
2024-09-05 00:00:00
vulnrichment
vulnrichment
CVE-2024-35848 eeprom: at24: fix memory corruption race condition
2024-05-17 14:47:26
CVE-2024-36928 s390/qeth: Fix kernel panic after setting hsuid
2024-05-30 15:29:20
CVE-2024-36880 Bluetooth: qca: add missing firmware sanity checks
2024-05-30 15:28:51
cbl_mariner
cbl_mariner
CVE-2024-36897 affecting package kernel for versions less than 6.6.35.1-4
2024-08-14 20:43:58
CVE-2024-36967 affecting package kernel for versions less than 6.6.35.1-5
2024-07-22 15:42:40
CVE-2024-36897 affecting package kernel for versions less than 5.15.158.2-1
2024-06-12 22:23:00
ubuntucve
ubuntucve
CVE-2024-36967
2024-06-08 00:00:00
CVE-2024-36975
2024-06-18 00:00:00
CVE-2024-27401
2024-05-14 00:00:00
nvd
nvd
CVE-2023-52585
2024-03-06 07:15:07
CVE-2024-36931
2024-05-30 16:15:16
CVE-2024-36975
2024-06-18 20:15:13
cvelist
cvelist
CVE-2024-36957 octeontx2-af: avoid off-by-one read from userspace
2024-05-30 15:35:50
CVE-2024-36928 s390/qeth: Fix kernel panic after setting hsuid
2024-05-30 15:29:20
CVE-2024-36931 s390/cio: Ensure the copied buf is NUL terminated
2024-05-30 15:29:22
debiancve
debiancve
CVE-2024-36931
2024-05-30 16:15:16
CVE-2024-36916
2024-05-30 16:15:14
CVE-2024-36880
2024-05-30 16:15:11
cve
cve
CVE-2024-36897
2024-05-30 16:15:13
CVE-2024-36931
2024-05-30 16:15:16
CVE-2024-36880
2024-05-30 16:15:11
redhatcve
redhatcve
CVE-2024-36931
2024-06-03 12:34:05
CVE-2023-52882
2024-06-02 16:30:54
CVE-2024-36928
2024-06-03 12:33:51
prion
prion
Spoofing
2024-03-06 07:15:00

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.6

Confidence

Low

EPSS

0.001

Percentile

16.8%

JSON
Related for USN-6950-4
nessus25osv27openvas16ubuntu11debian1amazon1fedora2redos1vulnrichment14cbl_mariner5ubuntucve11nvd21cvelist15debiancve19cve12redhatcve17prion1