USN-4878-1
Vulnerability Summary
Timeline
Description
linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities It was discovered that the Marvell WiFi-Ex device driver in the Linux kernel did not properly validate ad-hoc SSIDs. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2020-36158) Ryota Shiga discovered that the sockopt BPF hooks in the Linux kernel could allow a user space program to probe for valid kernel addresses. A local attacker could use this to ease exploitation of another kernel vulnerability. (CVE-2021-20239) It was discovered that the priority inheritance futex implementation in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-3347) 吴异 discovered that the NFS implementation in the Linux kernel did not properly prevent access outside of an NFS export that is a subdirectory of a file system. An attacker could possibly use this to bypass NFS access restrictions. (CVE-2021-3178)
Affected Systems
- ubuntu•linux
< 5.4.0-67.75
- ubuntu•linux-aws
< 5.4.0-1039.41
- ubuntu•linux-aws-5.4
< 5.4.0-1039.41~18.04.1
- ubuntu•linux-azure
< 5.4.0-1041.43
- ubuntu•linux-azure-5.4
< 5.4.0-1041.43~18.04.1
- ubuntu•linux-gcp
< 5.4.0-1038.41
- ubuntu•linux-gcp-5.4
< 5.4.0-1038.41~18.04.1
- ubuntu•linux-gke-5.4
< 5.4.0-1037.39~18.04.1
- ubuntu•linux-gkeop
< 5.4.0-1011.12
- ubuntu•linux-gkeop-5.4
< 5.4.0-1011.12~18.04.2
- ubuntu•linux-hwe-5.4
< 5.4.0-67.75~18.04.1
- ubuntu•linux-kvm
< 5.4.0-1034.35
- ubuntu•linux-oracle
< 5.4.0-1039.42
- ubuntu•linux-oracle-5.4
< 5.4.0-1039.42~18.04.1
- ubuntu•linux-raspi
< 5.4.0-1030.33
- ubuntu•linux-raspi-5.4
< 5.4.0-1030.33~18.04.1