Software description
- aws – Linux kernel for Amazon Web Services (AWS) systems - (>= 4.15.0-1159, >= 5.15.0-1000, >= 6.8.0-1008, >= 4.4.0-1159)
- aws-5.15 – Linux kernel for Amazon Web Services (AWS) systems - (>= 5.15.0-1000)
- aws-hwe – Linux kernel for Amazon Web Services (AWS-HWE) systems - (>= 4.15.0-1126)
- azure – Linux kernel for Microsoft Azure Cloud systems - (>= 5.15.0-1000, >= 6.8.0-1007, >= 4.15.0-1114)
- azure-4.15 – Linux kernel for Microsoft Azure Cloud systems - (>= 4.15.0-1168)
- azure-5.15 – Linux kernel for Microsoft Azure cloud systems - (>= 5.15.0-1069)
- gcp – Linux kernel for Google Cloud Platform (GCP) systems - (>= 5.15.0-1000, >= 6.8.0-1007, >= 4.15.0-1118)
- gcp-4.15 – Linux kernel for Google Cloud Platform (GCP) systems - (>= 4.15.0-1154)
- gcp-5.15 – Linux kernel for Google Cloud Platform (GCP) systems - (>= 5.15.0-1000)
- generic-4.15 – Linux hardware enablement (HWE) kernel - (>= 4.15.0-214, >= 4.15.0-143)
- generic-4.4 – Linux kernel - (>= 4.4.0-168, >= 4.4.0-243)
- generic-5.15 – Linux hardware enablement (HWE) kernel - (>= 5.15.0-0)
- aws – Linux kernel for Amazon Web Services (AWS) systems - (>= 4.15.0-1159, >= 5.15.0-1000, >= 6.8.0-1008, >= 4.4.0-1159)
- aws-5.15 – Linux kernel for Amazon Web Services (AWS) systems - (>= 5.15.0-1000)
- aws-hwe – Linux kernel for Amazon Web Services (AWS-HWE) systems - (>= 4.15.0-1126)
- azure – Linux kernel for Microsoft Azure Cloud systems - (>= 5.15.0-1000, >= 6.8.0-1007, >= 4.15.0-1114)
- azure-4.15 – Linux kernel for Microsoft Azure Cloud systems - (>= 4.15.0-1168)
- azure-5.15 – Linux kernel for Microsoft Azure cloud systems - (>= 5.15.0-1069)
- gcp – Linux kernel for Google Cloud Platform (GCP) systems - (>= 5.15.0-1000, >= 6.8.0-1007, >= 4.15.0-1118)
- gcp-4.15 – Linux kernel for Google Cloud Platform (GCP) systems - (>= 4.15.0-1154)
- gcp-5.15 – Linux kernel for Google Cloud Platform (GCP) systems - (>= 5.15.0-1000)
- generic-4.15 – Linux hardware enablement (HWE) kernel - (>= 4.15.0-214, >= 4.15.0-143)
- generic-4.4 – Linux kernel - (>= 4.4.0-168, >= 4.4.0-243)
- generic-5.15 – Linux hardware enablement (HWE) kernel - (>= 5.15.0-0)
- gke – Linux kernel for Google Container Engine (GKE) systems - (>= 5.15.0-1000)
- ibm – Linux kernel for IBM cloud systems - (>= 5.15.0-1000, >= 6.8.0-1005)
- ibm-5.15 – Linux kernel for IBM cloud systems - (>= 5.15.0-1000)
- linux – Linux kernel - (>= 5.15.0-71, >= 5.15.0-24, >= 6.8.0-1)
- lowlatency-4.15 – Linux hardware enablement (HWE) kernel - (>= 4.15.0-214, >= 4.15.0-143)
- lowlatency-4.4 – Linux kernel - (>= 4.4.0-168, >= 4.4.0-243)
- lowlatency-5.15 – Linux hardware enablement (HWE) kernel - (>= 5.15.0-0)
- oracle – Linux kernel for Oracle Cloud systems - (>= 4.15.0-1129, >= 5.15.0-1055, >= 6.8.0-1005)
- oracle-5.15 – Linux kernel for Oracle Cloud systems - (>= 5.15.0-1055)
Details
In the Linux kernel, the following vulnerability has been
resolved: bfq: fix use-after-free in bfq_dispatch_request KASAN reports a
use-after-free report when doing normal scsi-mq test .
In the Linux kernel, the following vulnerability has been
resolved: block, bfq: don't move oom_bfqq Our test report a UAF: .
In the Linux kernel, the following vulnerability has been
resolved: Bluetooth: L2CAP: fix use-after-free in l2cap_conn_del() When
l2cap_recv_frame() is invoked to receive data, and the cid is
L2CAP_CID_A2MP, if the channel does not exist, it will create a channel.
However, after a channel is created, the hold operation of the channel is
not performed.
In the Linux kernel, the following vulnerability has been
resolved: SUNRPC: Fix UAF in svc_tcp_listen_data_ready() After the listener
svc_sock is freed, and before invoking svc_tcp_accept() for the established
child sock, there is a window that the newsock...
In the Linux kernel, the following vulnerability has been
resolved: bfq: fix use-after-free in bfq_dispatch_request KASAN reports a
use-after-free report when doing normal scsi-mq test .
In the Linux kernel, the following vulnerability has been
resolved: block, bfq: don't move oom_bfqq Our test report a UAF: .
In the Linux kernel, the following vulnerability has been
resolved: Bluetooth: L2CAP: fix use-after-free in l2cap_conn_del() When
l2cap_recv_frame() is invoked to receive data, and the cid is
L2CAP_CID_A2MP, if the channel does not exist, it will create a channel.
However, after a channel is created, the hold operation of the channel is
not performed.
In the Linux kernel, the following vulnerability has been
resolved: SUNRPC: Fix UAF in svc_tcp_listen_data_ready() After the listener
svc_sock is freed, and before invoking svc_tcp_accept() for the established
child sock, there is a window that the newsock retaining a freed listener
svc_sock in sk_user_data which cloning from parent.
In the Linux kernel, the following vulnerability has been
resolved: ext4: aovid use-after-free in ext4_ext_insert_extent() As Ojaswin
mentioned in Link, in ext4_ext_insert_extent(), if the path is reallocated
in ext4_ext_create_new_leaf(), we'll use the stale path and cause UAF.
Below is a sample trace with dummy values: ext4_ext_insert_extent path .
In the Linux kernel, the following vulnerability has been
resolved: ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy
and Mbox devices A bogus device can provide a bNumConfigurations value that
exceeds the initial value used in usb_get_configuration for allocating
dev->config.
In the Linux kernel, the following vulnerability has been
resolved: ovl: fix UAF in ovl_dentry_update_reval by moving dput() in
ovl_link_up The issue was caused by dput(upper) being called before
ovl_dentry_update_reval(), while upper->d_flags was still accessed in
ovl_dentry_remote().
In the Linux kernel, the following vulnerability has been
resolved: RDMA/erdma: Prevent use-after-free in erdma_accept_newconn()
After the erdma_cep_put(new_cep) being called, new_cep will be freed, and
the following dereference will cause a UAF problem.
Checking update status
To check your kernel type and Livepatch version, enter this command:
canonical-livepatch statusThe problem can be corrected in these Livepatch versions:
| Kernel type | 24.04 | 22.04 | 20.04 | 18.04 | 16.04 | 14.04 |
|---|---|---|---|---|---|---|
| aws | 114.1 | 114.1 | — | 114.1 | 114.1 | — |
| aws-5.15 | — | — | 114.1 | — | — | — |
| aws-hwe | — | — | — | — | 114.1 | — |
| azure | 114.1 | 114.1 | — | — | 114.1 | — |
| azure-4.15 | — | — | — | 114.1 | — | — |
| azure-5.15 | — | — | 114.1 | — | — | — |
| gcp | 114.1 | 114.1 | — | — | 114.1 | — |
| gcp-4.15 | — | — | — | 114.1 | — | — |
| gcp-5.15 | — | — | 114.1 | — | — | — |
| generic-4.15 | — | — | — | 114.1 | 114.1 | — |
| generic-4.4 | — | — | — | — | 114.1 | 114.1 |
| generic-5.15 | — | — | 114.1 | — | — | — |
| gke | — | 114.1 | — | — | — | — |
| ibm | 114.1 | 114.1 | — | — | — | — |
| ibm-5.15 | — | — | 114.1 | — | — | — |
| linux | 114.1 | 114.1 | — | — | — | — |
| lowlatency-4.15 | — | — | — | 114.1 | 114.1 | — |
| lowlatency-4.4 | — | — | — | — | 114.1 | 114.1 |
| lowlatency-5.15 | — | — | 114.1 | — | — | — |
| oracle | 114.1 | 114.1 | — | 114.1 | — | — |
| oracle-5.15 | — | — | 114.1 | — | — | — |
References
Have additional questions?