Kernel Live Patch Security Notice LSN-0078-1

Kernel Live Patch Security Notice LSN-0078-1: Posted Jul 20, 2021; Authored by Benjamin M. Romer; Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could use this issue to execute arbitrary code.; tags | advisory, arbitrary, kernel, local, vulnerability, protocol; systems | linux; advisories | CVE-2021-3609; SHA-256 | e5626ea542e0e7cf4d21b7704ad137ab9dac2e0503a662b96c9d976e9d97f88c; Download | Favorite | View

Kernel Live Patch Security Notice LSN-0078-1

Linux kernel vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

-   Ubuntu 20.04 LTS
-   Ubuntu 18.04 LTS
-   Ubuntu 16.04 ESM

Summary

Several security issues were fixed in the kernel.

Software Description

-   linux - Linux kernel
-   linux-gcp - Linux kernel for Google Cloud Platform (GCP) systems
-   linux-gke - Linux kernel for Google Container Engine (GKE) systems
-   linux-gkeop - Linux kernel for Google Container Engine (GKE)
systems
-   linux-oem - Linux kernel for OEM systems

Details

Norbert Slusarek discovered a race condition in the CAN BCM networking
protocol of the Linux kernel leading to multiple use-after-free
vulnerabilities. A local attacker could use this issue to execute
arbitrary code. (CVE-2021-3609)

Update instructions

The problem can be corrected by updating your kernel livepatch to the
following versions:

Ubuntu 20.04 LTS
    gcp - 78.1
    generic - 78.1
    gke - 78.1
    gkeop - 78.1
    lowlatency - 78.1

Ubuntu 18.04 LTS
    generic - 78.1
    gke - 78.1
    gkeop - 78.1
    lowlatency - 78.1
    oem - 78.1

Ubuntu 16.04 ESM
    generic - 78.1
    lowlatency - 78.1

Support Information

Kernels older than the levels listed below do not receive livepatch
updates. If you are running a kernel version earlier than the one
listed
below, please upgrade your kernel as soon as possible.

Ubuntu 20.04 LTS
    linux-aws - 5.4.0-1009
    linux-azure - 5.4.0-1010
    linux-gcp - 5.4.0-1009
    linux-gke - 5.4.0-1033
    linux-gkeop - 5.4.0-1009
    linux-oem - 5.4.0-26
    linux - 5.4.0-26

Ubuntu 18.04 LTS
    linux-aws - 4.15.0-1054
    linux-gke-4.15 - 4.15.0-1076
    linux-gke-5.4 - 5.4.0-1009
    linux-gkeop-5.4 - 5.4.0-1007
    linux-hwe-5.4 - 5.4.0-26
    linux-oem - 4.15.0-1063
    linux - 4.15.0-69

Ubuntu 16.04 ESM
    linux-aws - 4.4.0-1098
    linux-azure - 4.15.0-1063
    linux-azure - 4.15.0-1078
    linux-hwe - 4.15.0-69
    linux - 4.4.0-168

Ubuntu 14.04 ESM
    linux-lts-xenial - 4.4.0-168

References

-   CVE-2021-3609



-- 
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

Top Authors In Last 30 Days

Red Hat 221 files
Ubuntu 59 files
Debian 30 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
tmrswrr 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,298)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,550)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,453)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

Kernel Live Patch Security Notice LSN-0078-1

Kernel Live Patch Security Notice LSN-0078-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Kernel Live Patch Security Notice LSN-0078-1

Share This

Kernel Live Patch Security Notice LSN-0078-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems