USN-5003-1

Description

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-dell300x, linux-gcp, linux-gcp-4.15, linux-hwe, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could use this issue to execute arbitrary code. (CVE-2021-3609) It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod operations. A local attacker could use this to possibly execute arbitrary code. (CVE-2021-3600) Or Cohen discovered that the SCTP implementation in the Linux kernel contained a race condition in some situations, leading to a use-after-free condition. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-23133)

Affected Systems

• ubuntu•linux

  < 4.15.0-147.151

• ubuntu•linux-aws

  < 4.15.0-1106.113

• ubuntu•linux-aws-hwe

  < 4.15.0-1106.113~16.04.1

• ubuntu•linux-azure

  < 4.15.0-1118.131~14.04.1 | < 4.15.0-1118.131~16.04.1

• ubuntu•linux-azure-4.15

  < 4.15.0-1118.131

• ubuntu•linux-dell300x

  < 4.15.0-1022.26

• ubuntu•linux-gcp

  < 4.15.0-1103.116~16.04.1

• ubuntu•linux-gcp-4.15

  < 4.15.0-1103.116

• ubuntu•linux-hwe

  < 4.15.0-147.151~16.04.1

• ubuntu•linux-oracle

  < 4.15.0-1075.83~16.04.1 | < 4.15.0-1075.83

• ubuntu•linux-raspi2

  < 4.15.0-1089.94

• ubuntu•linux-snapdragon

  < 4.15.0-1106.115

References (4)

• https://ubuntu.com/security/notices/USN-5003-1
• https://ubuntu.com/security/CVE-2021-3600
• https://ubuntu.com/security/CVE-2021-3609
• https://ubuntu.com/security/CVE-2021-23133