What is the severity of USN-6704-3?

The severity of USN-6704-3 is classified as a denial of service vulnerability.

How do I fix USN-6704-3?

To fix USN-6704-3, update your system to the latest kernel version as advised in the security notice.

What are the affected systems for USN-6704-3?

USN-6704-3 affects Ubuntu 22.04 and Ubuntu 20.04 running specific kernel versions.

What type of vulnerability is USN-6704-3?

USN-6704-3 is a local denial of service vulnerability caused by improper return value handling by the NVIDIA Tegra XUSB pad controller driver.

Can USN-6704-3 be exploited remotely?

No, USN-6704-3 requires local access to exploit the vulnerability.

Vulnerability/
USN-6704-3

CWE

416 476 362

25/3/2024

12/5/2025

USN-6704-3: Linux kernel (Oracle) vulnerabilities

First published: Mon Mar 25 2024(Updated: )

It was discovered that the NVIDIA Tegra XUSB pad controller driver in the Linux kernel did not properly handle return values in certain error conditions. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-23000) Quentin Minster discovered that the KSMBD implementation in the Linux kernel did not properly handle session setup requests. A remote attacker could possibly use this to cause a denial of service (memory exhaustion). (CVE-2023-32247) Lonial Con discovered that the netfilter subsystem in the Linux kernel did not properly handle element deactivation in certain cases, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2024-1085) Notselwyn discovered that the netfilter subsystem in the Linux kernel did not properly handle verdict parameters in certain cases, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2024-1086) It was discovered that a race condition existed in the SCSI Emulex LightPulse Fibre Channel driver in the Linux kernel when unregistering FCF and re-scanning an HBA FCF table, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service (system crash). (CVE-2024-24855)

Affected Software	Affected Version	How to fix

Never miss a vulnerability like this again

Reference Links

Child vulnerabilities

(Contains the following vulnerabilities)

Frequently Asked Questions

What is the severity of USN-6704-3?
The severity of USN-6704-3 is classified as a denial of service vulnerability.
How do I fix USN-6704-3?
To fix USN-6704-3, update your system to the latest kernel version as advised in the security notice.
What are the affected systems for USN-6704-3?
USN-6704-3 affects Ubuntu 22.04 and Ubuntu 20.04 running specific kernel versions.
What type of vulnerability is USN-6704-3?
USN-6704-3 is a local denial of service vulnerability caused by improper return value handling by the NVIDIA Tegra XUSB pad controller driver.
Can USN-6704-3 be exploited remotely?
No, USN-6704-3 requires local access to exploit the vulnerability.

agent/title
agent/severity
agent/last-modified-date
agent/weakness
agent/type
agent/first-publish-date
agent/event
agent/description
agent/references
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/usn
source/Ubuntu