In the Linux kernel, the following vulnerability has been resolved:
platform/x86: think-lmi: Fix password opcode ordering for workstations The
Lenovo workstations require the password opcode to be run before the
attribute value is changed (if Admin password is enabled). Tested on some
Thinkpads to confirm they are OK with this order too.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 22.04 | noarch | linux-aws-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-azure-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-gcp-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-nvidia-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-oem-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-oracle-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-starfive-6.5 | < any | UNKNOWN |
git.kernel.org/linus/6f7d0f5fd8e440c3446560100ac4ff9a55eec340 (6.8-rc6)
git.kernel.org/stable/c/2bfbe1e0aed00ba51d58573c79452fada3f62ed4
git.kernel.org/stable/c/6f7d0f5fd8e440c3446560100ac4ff9a55eec340
launchpad.net/bugs/cve/CVE-2024-26836
nvd.nist.gov/vuln/detail/CVE-2024-26836
security-tracker.debian.org/tracker/CVE-2024-26836
www.cve.org/CVERecord?id=CVE-2024-26836