LSN-0105-1

Advisory lineage Upstream: 10 Downstream: 0
Published: 16 Jul 2024, 10:18
Last modified:03 Jun 2026, 13:33

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

16 Jul 2024, 10:18
Published
Vulnerability first disclosed
03 Jun 2026, 13:33
Last Modified
Vulnerability information updated

Description

Kernel Live Patch Security Notice It was discovered that the ATA over Ethernet (AoE) driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code.(CVE-2023-6270) It was discovered that the netfilter connection tracker for netlink in the Linux kernel did not properly perform reference counting in some error conditions. A local attacker could possibly use this to cause a denial of service (memory exhaustion).(CVE-2023-7192) In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: disallow anonymous set with timeout flag Anonymous sets are never used with timeout from userspace, reject this. Exception to this rule is NFT_SET_EVAL to ensure legacy meters still work.(CVE-2024-26642) In the Linux kernel, the following vulnerability has been resolved: cifs: fix underflow in parse_server_interfaces() In this loop, we step through the buffer and after each item we check if the size_left is greater than the minimum size we need. However, the problem is that 'bytes_left' is type ssize_t while sizeof() is type size_t. That means that because of type promotion, the comparison is done as an unsigned and if we have negative bytes left the loop continues instead of ending.(CVE-2024-26828) In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: do not free live element (CVE-2024-26924)

Affected Systems

  • ubuntulinux

    all | < 4.4.0-256.290 | < 4.15.0-226.238 | < 5.4.0-189.209 | < 5.15.0-116.126 | < 6.8.0-36.36

  • ubuntulinux-aws

    all | < 4.4.0-1171.186 | < 4.15.0-1169.182 | < 5.4.0-1128.138 | < 5.15.0-1065.71 | < 6.8.0-1010.10

  • ubuntulinux-aws-5.15

    all | < 5.15.0-1065.71~20.04.1

  • ubuntulinux-aws-hwe

    all | < 4.15.0-1169.182~16.04.1

  • ubuntulinux-azure

    all | < 4.15.0-1178.193~16.04.1 | < 5.4.0-1133.140 | < 6.8.0-1009.9

  • ubuntulinux-azure-4.15

    all | < 4.15.0-1178.193

  • ubuntulinux-gcp

    all | < 4.15.0-1163.180~16.04.1 | < 5.4.0-1132.141 | < 5.15.0-1064.72 | < 6.8.0-1009.10

  • ubuntulinux-gcp-4.15

    all | < 4.15.0-1163.180

  • ubuntulinux-gcp-5.15

    all | < 5.15.0-1065.73~20.04.1

  • ubuntulinux-gke

    all | < 5.15.0-1062.68

  • ubuntulinux-gke-5.15

    all

  • ubuntulinux-gkeop

    all | < 5.4.0-1095.99

  • ubuntulinux-hwe

    all | < 4.15.0-226.238~16.04.1

  • ubuntulinux-hwe-5.15

    all | < 5.15.0-116.126~20.04.1

  • ubuntulinux-hwe-5.4

    all | < 5.4.0-189.209~18.04.1

  • ubuntulinux-ibm

    all | < 5.4.0-1075.80 | < 5.15.0-1058.61 | < 6.8.0-1007.7

  • ubuntulinux-ibm-5.15

    all | < 5.15.0-1058.61~20.04.1

  • ubuntulinux-lowlatency-hwe-5.15

    all | < 5.15.0-116.126~20.04.1

  • ubuntulinux-lts-xenial

    all | < 4.4.0-256.290~14.04.1

  • ubuntulinux-oracle

    all | < 4.15.0-1132.143 | < 5.4.0-1127.136 | < 5.15.0-1063.69

  • ubuntulinux-oracle-5.15

    all | < 5.15.0-1063.69~20.04.1

References (6)