USN-7167-2

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Ext4 file system; - Network traffic control; - VMware vSockets driver; (CVE-2024-50264, CVE-2024-49967, CVE-2024-53057)

References

Affected packages

Ubuntu:22.04:LTS / linux-hwe-6.8

Package

Name: linux-hwe-6.8
Purl: pkg:deb/ubuntu/linux-hwe-6.8@6.8.0-51.52~22.04.1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.8.0-51.52~22.04.1

Affected versions

6.*

6.8.0-38.38~22.04.1

6.8.0-39.39~22.04.1

6.8.0-40.40~22.04.3

6.8.0-45.45~22.04.1

6.8.0-47.47~22.04.1

6.8.0-48.48~22.04.1

6.8.0-49.49~22.04.1

6.8.0-50.51~22.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-buildinfo-6.8.0-51-generic"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-buildinfo-6.8.0-51-generic-64k"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-cloud-tools-6.8.0-51-generic"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-headers-6.8.0-51-generic"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-headers-6.8.0-51-generic-64k"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-hwe-6.8-cloud-tools-6.8.0-51"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-hwe-6.8-headers-6.8.0-51"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-hwe-6.8-tools-6.8.0-51"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-image-6.8.0-51-generic"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-image-unsigned-6.8.0-51-generic"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-image-unsigned-6.8.0-51-generic-64k"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-modules-6.8.0-51-generic"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-modules-6.8.0-51-generic-64k"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-modules-extra-6.8.0-51-generic"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-modules-ipu6-6.8.0-51-generic"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-modules-iwlwifi-6.8.0-51-generic"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-modules-usbio-6.8.0-51-generic"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-tools-6.8.0-51-generic"
        },
        {
            "binary_version": "6.8.0-51.52~22.04.1",
            "binary_name": "linux-tools-6.8.0-51-generic-64k"
        }
    ]
}

Database specific

{
    "cves_map": {
        "ecosystem": "Ubuntu:22.04:LTS",
        "cves": [
            {
                "severity": [
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "medium",
                        "type": "Ubuntu"
                    }
                ],
                "id": "CVE-2024-49967"
            },
            {
                "severity": [
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "high",
                        "type": "Ubuntu"
                    }
                ],
                "id": "CVE-2024-50264"
            },
            {
                "severity": [
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "medium",
                        "type": "Ubuntu"
                    }
                ],
                "id": "CVE-2024-53057"
            }
        ]
    }
}

Ubuntu:22.04:LTS / linux-lowlatency-hwe-6.8

Package

Name: linux-lowlatency-hwe-6.8
Purl: pkg:deb/ubuntu/linux-lowlatency-hwe-6.8@6.8.0-51.52.1~22.04.1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.8.0-51.52.1~22.04.1

Affected versions

6.*

6.8.0-38.38.1~22.04.2

6.8.0-40.40.1~22.04.1

6.8.0-44.44.1~22.04.1

6.8.0-45.45.1~22.04.1

6.8.0-47.47.1~22.04.1

6.8.0-48.48.3~22.04.1

6.8.0-49.49.1~22.04.1

6.8.0-50.51.1~22.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-buildinfo-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-buildinfo-6.8.0-51-lowlatency-64k"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-cloud-tools-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-headers-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-headers-6.8.0-51-lowlatency-64k"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-image-unsigned-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-image-unsigned-6.8.0-51-lowlatency-64k"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-lowlatency-hwe-6.8-cloud-tools-6.8.0-51"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-lowlatency-hwe-6.8-headers-6.8.0-51"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-lowlatency-hwe-6.8-lib-rust-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-lowlatency-hwe-6.8-tools-6.8.0-51"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-modules-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-modules-6.8.0-51-lowlatency-64k"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-modules-iwlwifi-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-tools-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1~22.04.1",
            "binary_name": "linux-tools-6.8.0-51-lowlatency-64k"
        }
    ]
}

Database specific

{
    "cves_map": {
        "ecosystem": "Ubuntu:22.04:LTS",
        "cves": [
            {
                "severity": [
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "medium",
                        "type": "Ubuntu"
                    }
                ],
                "id": "CVE-2024-49967"
            },
            {
                "severity": [
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "high",
                        "type": "Ubuntu"
                    }
                ],
                "id": "CVE-2024-50264"
            },
            {
                "severity": [
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "medium",
                        "type": "Ubuntu"
                    }
                ],
                "id": "CVE-2024-53057"
            }
        ]
    }
}

Ubuntu:24.04:LTS / linux-lowlatency

Package

Name: linux-lowlatency
Purl: pkg:deb/ubuntu/linux-lowlatency@6.8.0-51.52.1?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.8.0-51.52.1

Affected versions

6.*

6.5.0-9.9.1

6.6.0-14.14.1

6.8.0-7.7.1

6.8.0-25.25.3

6.8.0-28.28.1

6.8.0-31.31.1

6.8.0-35.35.1

6.8.0-36.36.1

6.8.0-38.38.1

6.8.0-39.39.1

6.8.0-40.40.1

6.8.0-41.41.1

6.8.0-44.44.1

6.8.0-45.45.1

6.8.0-47.47.1

6.8.0-48.48.3

6.8.0-49.49.1

6.8.0-50.51.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-buildinfo-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-buildinfo-6.8.0-51-lowlatency-64k"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-cloud-tools-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-headers-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-headers-6.8.0-51-lowlatency-64k"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-image-unsigned-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-image-unsigned-6.8.0-51-lowlatency-64k"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-lowlatency-cloud-tools-6.8.0-51"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-lowlatency-headers-6.8.0-51"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-lowlatency-lib-rust-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-lowlatency-tools-6.8.0-51"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-modules-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-modules-6.8.0-51-lowlatency-64k"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-modules-iwlwifi-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-tools-6.8.0-51-lowlatency"
        },
        {
            "binary_version": "6.8.0-51.52.1",
            "binary_name": "linux-tools-6.8.0-51-lowlatency-64k"
        }
    ]
}

Database specific

{
    "cves_map": {
        "ecosystem": "Ubuntu:24.04:LTS",
        "cves": [
            {
                "severity": [
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "medium",
                        "type": "Ubuntu"
                    }
                ],
                "id": "CVE-2024-49967"
            },
            {
                "severity": [
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "high",
                        "type": "Ubuntu"
                    }
                ],
                "id": "CVE-2024-50264"
            },
            {
                "severity": [
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "type": "CVSS_V3"
                    },
                    {
                        "score": "medium",
                        "type": "Ubuntu"
                    }
                ],
                "id": "CVE-2024-53057"
            }
        ]
    }
}