LSN-0102-1

Description

Kernel Live Patch Security Notice It was discovered that a race condition existed in the io_uring subsystem in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-1872) Lonial Con discovered that the netfilter subsystem in the Linux kernel contained a memory leak when handling certain element flush operations. A local attacker could use this to expose sensitive information (kernel memory).(CVE-2023-4569) It was discovered that the TLS subsystem in the Linux kernel did not properly perform cryptographic operations in some situations, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-6176) It was discovered that a race condition existed in the AppleTalk networking subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-51781) Jann Horn discovered that the TLS subsystem in the Linux kernel did not properly handle spliced messages, leading to an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2024-0646) Notselwyn discovered that the netfilter subsystem in the Linux kernel did not properly handle verdict parameters in certain cases, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2024-1086)

Affected Systems

• ubuntu•linux

  all | < 5.15.0-71.78 | < 4.4.0-252.286 | < 4.15.0-223.235 | < 5.4.0-174.193 | < 5.15.0-101.111

• ubuntu•linux-aws

  all | < 5.15.0-1035.39 | < 4.4.0-1167.182 | < 4.15.0-1166.179 | < 5.4.0-1121.131 | < 5.15.0-1056.61

• ubuntu•linux-aws-5.15

  < 5.15.0-1035.39~20.04.1 | < 5.15.0-1056.61~20.04.1

• ubuntu•linux-aws-5.4

  all | < 5.4.0-1121.131~18.04.1

• ubuntu•linux-aws-6.5

  all | < 6.5.0-1016.16~22.04.1

• ubuntu•linux-aws-hwe

  all | < 4.15.0-1166.179~16.04.1

• ubuntu•linux-azure

  all | < 5.15.0-1037.44 | < 4.15.0-1175.190~16.04.1 | < 5.4.0-1126.133 | < 5.15.0-1059.67

• ubuntu•linux-azure-4.15

  all | < 4.15.0-1175.190

• ubuntu•linux-azure-5.4

  all | < 5.4.0-1126.133~18.04.1

• ubuntu•linux-azure-6.5

  all | < 6.5.0-1017.17~22.04.1

• ubuntu•linux-gcp

  all | < 5.15.0-1034.42 | < 4.15.0-1160.177~16.04.1 | < 5.4.0-1125.134 | < 5.15.0-1054.62

• ubuntu•linux-gcp-4.15

  all | < 4.15.0-1160.177

• ubuntu•linux-gcp-5.15

  < 5.15.0-1033.41~20.04.1 | < 5.15.0-1054.62~20.04.1

• ubuntu•linux-gcp-5.4

  all | < 5.4.0-1125.134~18.04.1

• ubuntu•linux-gcp-6.5

  all | < 6.5.0-1016.16~22.04.1

• ubuntu•linux-gke

  < 5.15.0-1032.37 | all | < 5.15.0-1053.58

• ubuntu•linux-gke-5.15

  < 5.15.0-1032.37~20.04.1

• ubuntu•linux-gkeop

  all | < 5.4.0-1088.92

• ubuntu•linux-hwe

  all | < 4.15.0-223.235~16.04.1

• ubuntu•linux-hwe-5.15

  < 5.15.0-71.78~20.04.1 | < 5.15.0-101.111~20.04.1

• ubuntu•linux-hwe-5.4

  all | < 5.4.0-174.193~18.04.1

• ubuntu•linux-hwe-6.5

  all | < 6.5.0-26.26~22.04.1

• ubuntu•linux-ibm

  all | < 5.15.0-1029.32 | < 5.4.0-1068.73 | < 5.15.0-1049.52

• ubuntu•linux-ibm-5.15

  all | < 5.15.0-1049.52~20.04.1

• ubuntu•linux-lowlatency

  < 5.15.0-71.78 | < 5.15.0-101.111

• ubuntu•linux-lowlatency-hwe-5.15

  < 5.15.0-71.78~20.04.1 | < 5.15.0-101.111~20.04.1

• ubuntu•linux-lts-xenial

  all | < 4.4.0-252.286~14.04.1

References (7)

• https://ubuntu.com/security/notices/LSN-0102-1
• https://ubuntu.com/security/CVE-2023-1872
• https://ubuntu.com/security/CVE-2023-4569
• https://ubuntu.com/security/CVE-2023-6176
• https://ubuntu.com/security/CVE-2023-51781
• https://ubuntu.com/security/CVE-2024-0646
• https://ubuntu.com/security/CVE-2024-1086