USN-6866-3: Linux kernel (Azure) vulnerabilities
First published: Wed Jul 10 2024(Updated: )
It was discovered that the ext4 file system implementation in the Linux kernel did not properly validate data state on write operations. An attacker could use this to construct a malicious ext4 file system image that, when mounted, could cause a denial of service (system crash). (CVE-2021-33631) It was discovered that the ATA over Ethernet (AoE) driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2023-6270) Sander Wiebing, Alvise de Faveri Tron, Herbert Bos, and Cristiano Giuffrida discovered that the Linux kernel mitigations for the initial Branch History Injection vulnerability (CVE-2022-0001) were insufficient for Intel processors. A local attacker could potentially use this to expose sensitive information. (CVE-2024-2201) Gui-Dong Han discovered that the software RAID driver in the Linux kernel contained a race condition, leading to an integer overflow vulnerability. A privileged attacker could possibly use this to cause a denial of service (system crash). (CVE-2024-23307) Bai Jiaju discovered that the Xceive XC4000 silicon tuner device driver in the Linux kernel contained a race condition, leading to an integer overflow vulnerability. An attacker could possibly use this to cause a denial of service (system crash). (CVE-2024-24861) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems:
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/linux-image-4.15.0-1178-azure | <4.15.0-1178.193~14.04.1 | 4.15.0-1178.193~14.04.1 |
| =14.04 | ||
| All of | ||
| ubuntu/linux-image-azure | <4.15.0.1178.193~14.04.1 | 4.15.0.1178.193~14.04.1 |
| =14.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2024-26898
- https://ubuntu.com/security/CVE-2024-2201
- https://ubuntu.com/security/CVE-2024-24861
- https://ubuntu.com/security/CVE-2024-23307
- https://ubuntu.com/security/CVE-2024-26642
- https://ubuntu.com/security/CVE-2024-26736
- https://ubuntu.com/security/CVE-2024-26922
- https://ubuntu.com/security/CVE-2024-26720
- https://ubuntu.com/security/CVE-2021-47063
- https://ubuntu.com/security/CVE-2023-52615
- https://ubuntu.com/security/CVE-2021-33631
- https://ubuntu.com/security/CVE-2023-6270
- https://ubuntu.com/security/notices/USN-6816-1
- https://ubuntu.com/security/notices/USN-6817-1
- https://ubuntu.com/security/notices/USN-6820-1
- https://ubuntu.com/security/notices/USN-6821-1
- https://ubuntu.com/security/notices/USN-6821-2
- https://ubuntu.com/security/notices/USN-6817-2
- https://ubuntu.com/security/notices/USN-6820-2
- https://ubuntu.com/security/notices/USN-6828-1
- https://ubuntu.com/security/notices/USN-6821-3
- https://ubuntu.com/security/notices/USN-6821-4
- https://ubuntu.com/security/notices/USN-6817-3
- https://ubuntu.com/security/notices/USN-6865-1
- https://ubuntu.com/security/notices/USN-6866-1
- https://ubuntu.com/security/notices/USN-6871-1
- https://ubuntu.com/security/notices/USN-6878-1
- https://ubuntu.com/security/notices/USN-6866-2
- https://ubuntu.com/security/notices/USN-6892-1
- https://ubuntu.com/security/notices/USN-6895-1
- https://ubuntu.com/security/notices/USN-6896-1
- https://ubuntu.com/security/notices/USN-6895-2
- https://ubuntu.com/security/notices/USN-6896-2
- https://ubuntu.com/security/notices/USN-6900-1
- https://ubuntu.com/security/notices/USN-6896-3
- https://ubuntu.com/security/notices/USN-6895-3
- https://ubuntu.com/security/notices/USN-6896-4
- https://ubuntu.com/security/notices/USN-6896-5
- https://ubuntu.com/security/notices/USN-6919-1
- https://ubuntu.com/security/notices/USN-6895-4
- https://ubuntu.com/security/notices/USN-6766-1
- https://ubuntu.com/security/notices/USN-6766-2
- https://ubuntu.com/security/notices/USN-6774-1
- https://ubuntu.com/security/notices/USN-6766-3
- https://ubuntu.com/security/notices/USN-6795-1
- https://ubuntu.com/security/notices/USN-6868-1
- https://ubuntu.com/security/notices/USN-6868-2
- https://ubuntu.com/security/notices/USN-6898-1
- https://ubuntu.com/security/notices/USN-6898-2
- https://ubuntu.com/security/notices/USN-6898-3
- https://ubuntu.com/security/notices/USN-6898-4
- https://ubuntu.com/security/notices/USN-6917-1
- https://ubuntu.com/security/notices/USN-6927-1
- https://ubuntu.com/security/notices/USN-7019-1
- https://ubuntu.com/security/notices/LSN-0105-1
- https://ubuntu.com/security/notices/USN-6831-1
- https://ubuntu.com/security/notices/USN-6893-1
- https://ubuntu.com/security/notices/USN-6893-2
- https://ubuntu.com/security/notices/USN-6893-3
- https://ubuntu.com/security/notices/USN-6918-1
- https://ubuntu.com/security/notices/USN-6767-1
- https://ubuntu.com/security/notices/USN-6767-2
- https://ubuntu.com/security/notices/LSN-0104-1
- https://ubuntu.com/security/notices/USN-6866-3 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
- agent/last-modified-date
- agent/title
- agent/severity
- agent/weakness
- agent/type
- agent/description
- agent/first-publish-date
- agent/softwarecombine
- agent/event
- collector/usn
- source/Ubuntu
- anchor-related/USN-6816-1
- anchor-related/USN-6817-1
- anchor-related/USN-6820-1
- anchor-related/USN-6821-1
- anchor-related/USN-6821-2
- anchor-related/USN-6817-2
- anchor-related/USN-6820-2
- anchor-related/USN-6828-1
- anchor-related/USN-6821-3
- anchor-related/USN-6821-4
- anchor-related/USN-6817-3
- anchor-related/USN-6865-1
- anchor-related/USN-6866-1
- anchor-related/USN-6871-1
- anchor-related/USN-6878-1
- anchor-related/USN-6866-2
- anchor-related/USN-6892-1
- anchor-related/USN-6895-1
- anchor-related/USN-6896-1
- anchor-related/USN-6895-2
- anchor-related/USN-6896-2
- anchor-related/USN-6900-1
- anchor-related/USN-6896-3
- anchor-related/USN-6895-3
- anchor-related/USN-6896-4
- anchor-related/USN-6896-5
- anchor-related/USN-6919-1
- anchor-related/USN-6895-4
- anchor-related/USN-6766-1
- anchor-related/USN-6766-2
- anchor-related/USN-6774-1
- anchor-related/USN-6766-3
- anchor-related/USN-6795-1
- anchor-related/USN-6868-1
- anchor-related/USN-6868-2
- anchor-related/USN-6898-1
- anchor-related/USN-6898-2
- anchor-related/USN-6898-3
- anchor-related/USN-6898-4
- anchor-related/USN-6917-1
- anchor-related/USN-6927-1
- anchor-related/USN-7019-1
- anchor-related/USN-6831-1
- anchor-related/USN-6893-1
- anchor-related/USN-6893-2
- anchor-related/USN-6893-3
- anchor-related/USN-6918-1
- anchor-related/USN-6767-1
- anchor-related/USN-6767-2
- agent/software-canonical-lookup
- agent/references
- agent/tags
- agent/trending
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/14.04