LSN-0113-1

Description

Kernel Live Patch Security Notice In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in async decryption Doing an async decryption (large read) crashes with a slab-use-after-free way down in the crypto API. In the Linux kernel, the following vulnerability has been resolved: ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit After an insertion in TNC, the tree might split and cause a node to change its `znode->parent`. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix usage slab after free In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in jfs_readdir The stbl might contain some invalid values. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create' An issue was identified in the dcn21_link_encoder_create function where an out-of-bounds access could occur when the hpd_source index was used to reference the link_enc_hpd_regs array. In the Linux kernel, the following vulnerability has been resolved: jffs2: Prevent rtime decompress memory corruption The rtime decompression routine does not fully check bounds during the entirety of the decompression pass and can corrupt memory outside the decompression buffer if the compressed data is corrupted.

Affected Systems

• ubuntu•linux

  all | < 4.4.0-269.303 | < 4.15.0-238.250 | < 5.4.0-219.239 | < 5.15.0-143.153 | < 6.8.0-58.60

• ubuntu•linux-aws

  all | < 4.4.0-1182.197 | < 4.15.0-1181.194 | < 5.4.0-1148.158 | < 5.15.0-1087.94 | < 6.8.0-1027.29

• ubuntu•linux-aws-5.15

  all | < 5.15.0-1087.94~20.04.1

• ubuntu•linux-aws-hwe

  all | < 4.15.0-1181.194~16.04.1

• ubuntu•linux-azure

  all | < 4.15.0-1189.204~16.04.1 | < 5.4.0-1153.160 | < 5.15.0-1092.101 | < 6.8.0-1027.32

• ubuntu•linux-azure-4.15

  all | < 4.15.0-1189.204

• ubuntu•linux-azure-5.15

  all | < 5.15.0-1094.103~20.04.1

• ubuntu•linux-gcp

  all | < 4.15.0-1174.191~16.04.1 | < 5.4.0-1151.160 | < 5.15.0-1086.95 | < 6.8.0-1028.30

• ubuntu•linux-gcp-4.15

  all | < 4.15.0-1174.191

• ubuntu•linux-gcp-5.15

  all | < 5.15.0-1086.95~20.04.1

• ubuntu•linux-gke

  all | < 5.15.0-1084.90

• ubuntu•linux-gkeop

  all

• ubuntu•linux-hwe

  all | < 4.15.0-238.250~16.04.1

• ubuntu•linux-hwe-5.15

  all | < 5.15.0-143.153~20.04.1

• ubuntu•linux-hwe-5.4

  all | < 5.4.0-219.239~18.04.1

• ubuntu•linux-ibm

  all | < 5.4.0-1094.99 | < 5.15.0-1079.82 | < 6.8.0-1024.24

• ubuntu•linux-ibm-5.15

  all | < 5.15.0-1079.82~20.04.1

• ubuntu•linux-lowlatency-hwe-5.15

  all | < 5.15.0-143.153~20.04.1

• ubuntu•linux-lts-xenial

  all | < 4.4.0-269.303~14.04.1

• ubuntu•linux-oracle

  all | < 4.15.0-1143.154 | < 5.4.0-1146.156 | < 5.15.0-1084.90 | < 6.8.0-1024.25

• ubuntu•linux-oracle-5.15

  all | < 5.15.0-1084.90~20.04.1

References (7)

• https://ubuntu.com/security/notices/LSN-0113-1
• https://ubuntu.com/security/CVE-2024-50047
• https://ubuntu.com/security/CVE-2024-53171
• https://ubuntu.com/security/CVE-2024-56551
• https://ubuntu.com/security/CVE-2024-56596
• https://ubuntu.com/security/CVE-2024-56608
• https://ubuntu.com/security/CVE-2024-57850