USN-5094-1

Advisory lineage Upstream: 12 Downstream: 0
Published: 29 Sept 2021, 08:14
Last modified:03 Jun 2026, 13:34

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

29 Sept 2021, 08:14
Published
Vulnerability first disclosed
03 Jun 2026, 13:34
Last Modified
Vulnerability information updated

Description

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-dell300x, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle, linux-snapdragon vulnerabilities It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. An attacker who could start and control a VM could possibly use this to expose sensitive information or execute arbitrary code. (CVE-2021-22543) It was discovered that the tracing subsystem in the Linux kernel did not properly keep track of per-cpu ring buffer state. A privileged attacker could use this to cause a denial of service. (CVE-2021-3679) Alois Wohlschlager discovered that the overlay file system in the Linux kernel did not restrict private clones in some situations. An attacker could use this to expose sensitive information. (CVE-2021-3732) Alexey Kardashevskiy discovered that the KVM implementation for PowerPC systems in the Linux kernel did not properly validate RTAS arguments in some situations. An attacker in a guest vm could use this to cause a denial of service (host OS crash) or possibly execute arbitrary code. (CVE-2021-37576) It was discovered that the MAX-3421 host USB device driver in the Linux kernel did not properly handle device removal events. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2021-38204) It was discovered that the Xilinx 10/100 Ethernet Lite device driver in the Linux kernel could report pointer addresses in some situations. An attacker could use this information to ease the exploitation of another vulnerability. (CVE-2021-38205)

Affected Systems

  • ubuntulinux

    < 4.15.0-159.167

  • ubuntulinux-aws

    < 4.15.0-1112.119

  • ubuntulinux-aws-hwe

    < 4.15.0-1112.119~16.04.1

  • ubuntulinux-azure

    < 4.15.0-1124.137~14.04.1 | < 4.15.0-1124.137~16.04.1

  • ubuntulinux-azure-4.15

    < 4.15.0-1124.137

  • ubuntulinux-dell300x

    < 4.15.0-1028.33

  • ubuntulinux-gcp

    < 4.15.0-1109.123~16.04.1

  • ubuntulinux-gcp-4.15

    < 4.15.0-1109.123

  • ubuntulinux-hwe

    < 4.15.0-159.167~16.04.1

  • ubuntulinux-kvm

    < 4.15.0-1100.102

  • ubuntulinux-oracle

    < 4.15.0-1081.89~16.04.1 | < 4.15.0-1081.89

  • ubuntulinux-snapdragon

    < 4.15.0-1113.122

References (7)