- Vulnerability/
- USN-6767-2
14/5/2024
USN-6767-2: Linux kernel (BlueField) vulnerabilities
First published: Tue May 14 2024(Updated: )
Chenyuan Yang discovered that the RDS Protocol implementation in the Linux kernel contained an out-of-bounds read vulnerability. An attacker could use this to possibly cause a denial of service (system crash). (CVE-2024-23849) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems:
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/linux-image-5.4.0-1084-bluefield | <5.4.0-1084.91 | 5.4.0-1084.91 |
| Ubuntu | =20.04 | |
| All of | ||
| ubuntu/linux-image-bluefield | <5.4.0.1084.80 | 5.4.0.1084.80 |
| Ubuntu | =20.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2024-26636
- https://ubuntu.com/security/CVE-2023-52583
- https://ubuntu.com/security/CVE-2024-26685
- https://ubuntu.com/security/CVE-2024-26920
- https://ubuntu.com/security/CVE-2024-26600
- https://ubuntu.com/security/CVE-2024-26645
- https://ubuntu.com/security/CVE-2024-26602
- https://ubuntu.com/security/CVE-2023-52604
- https://ubuntu.com/security/CVE-2023-52606
- https://ubuntu.com/security/CVE-2023-52619
- https://ubuntu.com/security/CVE-2024-26663
- https://ubuntu.com/security/CVE-2023-52637
- https://ubuntu.com/security/CVE-2023-52617
- https://ubuntu.com/security/CVE-2024-26697
- https://ubuntu.com/security/CVE-2024-26720
- https://ubuntu.com/security/CVE-2023-52486
- https://ubuntu.com/security/CVE-2024-26696
- https://ubuntu.com/security/CVE-2023-52615
- https://ubuntu.com/security/CVE-2024-26615
- https://ubuntu.com/security/CVE-2023-52594
- https://ubuntu.com/security/CVE-2023-52597
- https://ubuntu.com/security/CVE-2024-26722
- https://ubuntu.com/security/CVE-2024-26598
- https://ubuntu.com/security/CVE-2024-26673
- https://ubuntu.com/security/CVE-2024-26910
- https://ubuntu.com/security/CVE-2023-52595
- https://ubuntu.com/security/CVE-2024-26635
- https://ubuntu.com/security/CVE-2023-52435
- https://ubuntu.com/security/CVE-2023-52601
- https://ubuntu.com/security/CVE-2023-52623
- https://ubuntu.com/security/CVE-2023-52599
- https://ubuntu.com/security/CVE-2024-26671
- https://ubuntu.com/security/CVE-2024-26702
- https://ubuntu.com/security/CVE-2024-26675
- https://ubuntu.com/security/CVE-2023-52587
- https://ubuntu.com/security/CVE-2023-52602
- https://ubuntu.com/security/CVE-2023-52607
- https://ubuntu.com/security/CVE-2024-26684
- https://ubuntu.com/security/CVE-2024-26606
- https://ubuntu.com/security/CVE-2024-26625
- https://ubuntu.com/security/CVE-2023-52622
- https://ubuntu.com/security/CVE-2024-26679
- https://ubuntu.com/security/CVE-2024-26825
- https://ubuntu.com/security/CVE-2024-26704
- https://ubuntu.com/security/CVE-2024-23849
- https://ubuntu.com/security/CVE-2024-26593
- https://ubuntu.com/security/CVE-2024-26664
- https://ubuntu.com/security/CVE-2023-52598
- https://ubuntu.com/security/notices/USN-6766-1
- https://ubuntu.com/security/notices/USN-6767-1
- https://ubuntu.com/security/notices/USN-6766-2
- https://ubuntu.com/security/notices/USN-6766-3
- https://ubuntu.com/security/notices/USN-6795-1
- https://ubuntu.com/security/notices/USN-6818-1
- https://ubuntu.com/security/notices/USN-6819-1
- https://ubuntu.com/security/notices/USN-6818-2
- https://ubuntu.com/security/notices/USN-6828-1
- https://ubuntu.com/security/notices/USN-6819-2
- https://ubuntu.com/security/notices/USN-6819-3
- https://ubuntu.com/security/notices/USN-6818-3
- https://ubuntu.com/security/notices/USN-6818-4
- https://ubuntu.com/security/notices/USN-6819-4
- https://ubuntu.com/security/notices/USN-7121-1
- https://ubuntu.com/security/notices/USN-7121-2
- https://ubuntu.com/security/notices/USN-7121-3
- https://ubuntu.com/security/notices/USN-7148-1
- https://ubuntu.com/security/notices/USN-6688-1
- https://ubuntu.com/security/notices/USN-6777-1
- https://ubuntu.com/security/notices/USN-6777-2
- https://ubuntu.com/security/notices/USN-6777-3
- https://ubuntu.com/security/notices/USN-6777-4
- https://ubuntu.com/security/notices/USN-6895-1
- https://ubuntu.com/security/notices/USN-6895-2
- https://ubuntu.com/security/notices/USN-6900-1
- https://ubuntu.com/security/notices/USN-6895-3
- https://ubuntu.com/security/notices/USN-6895-4
- https://ubuntu.com/security/notices/USN-6972-1
- https://ubuntu.com/security/notices/USN-6972-2
- https://ubuntu.com/security/notices/USN-6972-3
- https://ubuntu.com/security/notices/USN-6972-4
- https://ubuntu.com/security/notices/USN-7069-1
- https://ubuntu.com/security/notices/USN-7069-2
- https://ubuntu.com/security/notices/USN-6774-1
- https://ubuntu.com/security/notices/USN-6778-1
- https://ubuntu.com/security/notices/USN-7233-1
- https://ubuntu.com/security/notices/USN-7233-2
- https://ubuntu.com/security/notices/USN-7233-3
- https://ubuntu.com/security/notices/USN-6865-1
- https://ubuntu.com/security/notices/USN-6866-1
- https://ubuntu.com/security/notices/USN-6866-2
- https://ubuntu.com/security/notices/USN-6866-3
- https://ubuntu.com/security/notices/USN-7185-1
- https://ubuntu.com/security/notices/USN-7185-2
- https://ubuntu.com/security/notices/USN-7183-1
- https://ubuntu.com/security/notices/USN-7184-1
- https://ubuntu.com/security/notices/USN-6725-1
- https://ubuntu.com/security/notices/USN-6725-2
- https://ubuntu.com/security/notices/USN-6724-1
- https://ubuntu.com/security/notices/USN-6724-2
- https://ubuntu.com/security/notices/USN-6926-1
- https://ubuntu.com/security/notices/USN-6926-2
- https://ubuntu.com/security/notices/USN-6926-3
- https://launchpad.net/ubuntu/+source/linux-signed-bluefield/5.4.0-1084.91
- https://launchpad.net/ubuntu/+source/linux-meta-bluefield/5.4.0.1084.80
- https://ubuntu.com/security/notices/USN-6767-2 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
- CVE-2024-26636
- CVE-2023-52583
- CVE-2024-26685
- CVE-2024-26920
- CVE-2024-26600
- CVE-2024-26645
- CVE-2024-26602
- CVE-2023-52604
- CVE-2023-52606
- CVE-2023-52619
- CVE-2024-26663
- CVE-2023-52637
- CVE-2023-52617
- CVE-2024-26697
- CVE-2024-26720
- CVE-2023-52486
- CVE-2024-26696
- CVE-2023-52615
- CVE-2024-26615
- CVE-2023-52594
- CVE-2023-52597
- CVE-2024-26722
- CVE-2024-26598
- CVE-2024-26673
- CVE-2024-26910
- CVE-2023-52595
- CVE-2024-26635
- CVE-2023-52435
- CVE-2023-52601
- CVE-2023-52623
- CVE-2023-52599
- CVE-2024-26671
- CVE-2024-26702
- CVE-2024-26675
- CVE-2023-52587
- CVE-2023-52602
- CVE-2023-52607
- CVE-2024-26684
- CVE-2024-26606
- CVE-2024-26625
- CVE-2023-52622
- CVE-2024-26679
- CVE-2024-26825
- CVE-2024-26704
- CVE-2024-23849
- CVE-2024-26593
- CVE-2024-26664
- CVE-2023-52598
Frequently Asked Questions
What is the severity of USN-6767-2?
USN-6767-2 is classified as a critical vulnerability due to its potential to cause denial of service.
How do I fix USN-6767-2?
You can fix USN-6767-2 by updating to the recommended package versions for Ubuntu 20.04, specifically linux-image-5.4.0-1084.91 or linux-image-bluefield-5.4.0.1084.80.
What causes the vulnerability noted in USN-6767-2?
The vulnerability in USN-6767-2 is caused by an out-of-bounds read in the RDS Protocol implementation of the Linux kernel.
Which Ubuntu versions are affected by USN-6767-2?
USN-6767-2 affects Ubuntu 20.04 with specific vulnerable kernel package versions.
Can USN-6767-2 be exploited remotely?
Yes, USN-6767-2 can potentially be exploited remotely, allowing an attacker to crash the system.
- agent/title
- agent/severity
- agent/last-modified-date
- agent/first-publish-date
- agent/type
- agent/description
- agent/trending
- agent/source
- agent/event
- agent/references
- agent/softwarecombine
- agent/tags
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu linux
- version/ubuntu linux/20.04