Several security issues were fixed in the Linux kernel.
Software Description:
- linux-aws: Linux kernel for Amazon Web Services (AWS) systems
- linux-iot: Linux kernel for IoT platforms
- linux-aws-5.4: Linux kernel for Amazon Web Services (AWS) systems
Details:
It was discovered that the ATA over Ethernet (AoE) driver in the Linux
kernel contained a race condition, leading to a use-after-free
vulnerability. An attacker could use this to cause a denial of service or
possibly execute arbitrary code. (CVE-2023-6270)
It was discovered that the Atheros 802.11ac wireless driver did not
properly validate certain data structures, leading to a NULL pointer
dereference. An attacker could possibly use this to cause a denial of
service. (CVE-2023-7042)
Yuxuan Hu discovered that the Bluetooth RFCOMM protocol driver in the Linux
Kernel contained a race condition, leading to a NULL pointer dereference.
An attacker could possibly use this to cause a denial of service (system
crash). (CVE-202...
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 20.04 LTS
linux-image-5.4.0-1040-iot 5.4.0-1040.41
linux-image-5.4.0-1128-aws 5.4.0-1128.138
linux-image-aws-lts-20.04 5.4.0.1128.125
Ubuntu 18.04 LTS
linux-image-5.4.0-1128-aws 5.4.0-1128.138~18.04.1
Available with Ubuntu Pro
linux-image-aws 5.4.0.1128.138~18.04.1
Available with Ubuntu Pro
After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.https://ubuntu.com/security/notices/USN-6896-5
https://ubuntu.com/security/notices/USN-6896-1
CVE-2022-48627, CVE-2023-52620, CVE-2023-52644, CVE-2023-52650,
CVE-2023-52656, CVE-2023-52699, CVE-2023-52880, CVE-2023-6270,
CVE-2023-7042, CVE-2024-22099, CVE-2024-23307, CVE-2024-24857,
CVE-2024-24858, CVE-2024-24859, CVE-2024-24861, CVE-2024-25739,
CVE-2024-26586, CVE-2024-26642, CVE-2024-26651, CVE-2024-26654,
CVE-2024-26687, CVE-2024-26810, CVE-2024-26812, CVE-2024-26813,
CVE-2024-26816, CVE-2024-26817, CVE-2024-26820, CVE-2024-26828,
CVE-2024-26851, CVE-2024-26852, CVE-2024-26855, CVE-2024-26857,
CVE-2024-26859, CVE-2024-26862, CVE-2024-26863, CVE-2024-26874,
CVE-2024-26875, CVE-2024-26878, CVE-2024-26880, CVE-2024-26882,
CVE-2024-26883, CVE-2024-26884, CVE-2024-26889, CVE-2024-26894,
CVE-2024-26898, CVE-2024-26901, CVE-2024-26903, CVE-2024-26922,
CVE-2024-26923, CVE-2024-26926, CVE-2024-26931, CVE-2024-26934,
CVE-2024-26935, CVE-2024-26937, CVE-2024-26955, CVE-2024-26956,
CVE-2024-26957, CVE-2024-26965, CVE-2024-26966, CVE-2024-26969,
CVE-2024-26973, CVE-2024-26974, CVE-2024-26976, CVE-2024-26981,
CVE-2024-26984, CVE-2024-26993, CVE-2024-26994, CVE-2024-26999,
CVE-2024-27000, CVE-2024-27001, CVE-2024-27004, CVE-2024-27008,
CVE-2024-27013, CVE-2024-27020, CVE-2024-27024, CVE-2024-27028,
CVE-2024-27030, CVE-2024-27038, CVE-2024-27043, CVE-2024-27044,
CVE-2024-27046, CVE-2024-27053, CVE-2024-27059, CVE-2024-27065,
CVE-2024-27073, CVE-2024-27074, CVE-2024-27075, CVE-2024-27076,
CVE-2024-27077, CVE-2024-27078, CVE-2024-27388, CVE-2024-27395,
CVE-2024-27396, CVE-2024-27419, CVE-2024-27436, CVE-2024-27437,
CVE-2024-35789, CVE-2024-35805, CVE-2024-35806, CVE-2024-35807,
CVE-2024-35809, CVE-2024-35813, CVE-2024-35815, CVE-2024-35819,
CVE-2024-35821, CVE-2024-35822, CVE-2024-35823, CVE-2024-35825,
CVE-2024-35828, CVE-2024-35830, CVE-2024-35847, CVE-2024-35849,
CVE-2024-35852, CVE-2024-35853, CVE-2024-35854, CVE-2024-35855,
CVE-2024-35877, CVE-2024-35886, CVE-2024-35888, CVE-2024-35893,
CVE-2024-35895, CVE-2024-35897, CVE-2024-35898, CVE-2024-35899,
CVE-2024-35900, CVE-2024-35910, CVE-2024-35915, CVE-2024-35922,
CVE-2024-35925, CVE-2024-35930, CVE-2024-35933, CVE-2024-35935,
CVE-2024-35936, CVE-2024-35944, CVE-2024-35950, CVE-2024-35955,
CVE-2024-35960, CVE-2024-35969, CVE-2024-35973, CVE-2024-35978,
CVE-2024-35982, CVE-2024-35984, CVE-2024-35997, CVE-2024-36004,
CVE-2024-36006, CVE-2024-36007, CVE-2024-36020
Get the latest Linux and open source security news straight to your inbox.