It was discovered that the Traffic-Control Index (TCINDEX) implementation in the Linux kernel did not properly perform filter deactivation in some situations. A local attacker could possibly use this to gain elevated privileges. Please note that with the fix for this CVE, kernel support for the TCINDEX classifier has been removed.
{ "availability": "No subscription required", "binaries": [ { "linux-headers-5.4.0-1048-ibm": "5.4.0-1048.53~18.04.1", "linux-modules-extra-5.4.0-1048-ibm": "5.4.0-1048.53~18.04.1", "linux-ibm-5.4-tools-5.4.0-1048": "5.4.0-1048.53~18.04.1", "linux-ibm-5.4-cloud-tools-common": "5.4.0-1048.53~18.04.1", "linux-ibm-5.4-headers-5.4.0-1048": "5.4.0-1048.53~18.04.1", "linux-image-unsigned-5.4.0-1048-ibm": "5.4.0-1048.53~18.04.1", "linux-image-unsigned-5.4.0-1048-ibm-dbgsym": "5.4.0-1048.53~18.04.1", "linux-modules-5.4.0-1048-ibm": "5.4.0-1048.53~18.04.1", "linux-tools-5.4.0-1048-ibm": "5.4.0-1048.53~18.04.1", "linux-ibm-5.4-tools-common": "5.4.0-1048.53~18.04.1", "linux-buildinfo-5.4.0-1048-ibm": "5.4.0-1048.53~18.04.1", "linux-ibm-5.4-source-5.4.0": "5.4.0-1048.53~18.04.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "linux-snapdragon-headers-4.15.0-1149": "4.15.0-1149.159", "linux-image-4.15.0-1149-snapdragon": "4.15.0-1149.159", "linux-headers-4.15.0-1149-snapdragon": "4.15.0-1149.159", "linux-tools-4.15.0-1149-snapdragon": "4.15.0-1149.159", "linux-modules-4.15.0-1149-snapdragon": "4.15.0-1149.159", "linux-snapdragon-tools-4.15.0-1149": "4.15.0-1149.159", "linux-image-4.15.0-1149-snapdragon-dbgsym": "4.15.0-1149.159", "linux-buildinfo-4.15.0-1149-snapdragon": "4.15.0-1149.159" } ] }