First published: Thu Feb 17 2022(Updated: )
USN-5267-1 fixed vulnerabilities in the Linux kernel. This update provides the corresponding updates for the Linux kernel for Raspberry Pi devices. Original advisory details: It was discovered that the Bluetooth subsystem in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-3640) Likang Luo discovered that a race condition existed in the Bluetooth subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-3752) Luo Likang discovered that the FireDTV Firewire driver in the Linux kernel did not properly perform bounds checking in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-42739)
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/linux-image-5.4.0-1052-raspi | <5.4.0-1052.58 | 5.4.0-1052.58 |
=20.04 | ||
All of | ||
ubuntu/linux-image-raspi | <5.4.0.1052.86 | 5.4.0.1052.86 |
=20.04 | ||
All of | ||
ubuntu/linux-image-raspi2 | <5.4.0.1052.86 | 5.4.0.1052.86 |
=20.04 | ||
All of | ||
ubuntu/linux-image-raspi-hwe-18.04 | <5.4.0.1052.54 | 5.4.0.1052.54 |
=18.04 | ||
All of | ||
ubuntu/linux-image-5.4.0-1052-raspi | <5.4.0-1052.58~18.04.1 | 5.4.0-1052.58~18.04.1 |
=18.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Contains the following vulnerabilities)
USN-5267-3
Raspberry Pi devices.
High severity.
Update to Linux kernel version 5.4.0-1052.58 or higher.
You can find more information about USN-5267-3 on the Ubuntu Security website.