USN-7506-2

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/notices/USN-7506-2

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7506-2.json

JSON Data

https://api.osv.dev/v1/vulns/USN-7506-2

Related

Published

2025-05-12T12:58:51.641917Z

Modified

2025-05-12T12:58:51.641917Z

Summary

linux-aws vulnerabilities

Details

Demi Marie Obenour and Simon Gaiser discovered that several Xen para- virtualization device frontends did not properly restrict the access rights of device backends. An attacker could possibly use a malicious Xen backend to gain access to memory pages of a guest VM or cause a denial of service in the guest. (CVE-2022-23041)

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Hardware crypto device drivers; - GPU drivers; - IIO subsystem; - Media drivers; - Network drivers; - SCSI subsystem; - SPI subsystem; - USB Gadget drivers; - Ceph distributed file system; - File systems infrastructure; - JFS file system; - Network file system (NFS) client; - Network file system (NFS) server daemon; - NILFS2 file system; - SMB network file system; - CAN network layer; - IPv6 networking; - MAC80211 subsystem; - Netfilter; - Netlink; - Network traffic control; - SCTP protocol; - TIPC protocol; (CVE-2024-56650, CVE-2024-26915, CVE-2024-50237, CVE-2024-53140, CVE-2024-26996, CVE-2021-47506, CVE-2024-26974, CVE-2025-21971, CVE-2024-56770, CVE-2024-53063, CVE-2021-47245, CVE-2024-36934, CVE-2021-47500, CVE-2024-53173, CVE-2021-47219, CVE-2024-46771, CVE-2024-56631, CVE-2024-46780, CVE-2024-35864, CVE-2021-46959, CVE-2021-47191, CVE-2021-47587, CVE-2024-53066, CVE-2024-56642, CVE-2021-47163, CVE-2024-50256, CVE-2021-47150, CVE-2024-56598, CVE-2024-26689, CVE-2023-52741, CVE-2024-49944)

References

Affected packages

Ubuntu:Pro:14.04:LTS / linux-aws

Package

Name: linux-aws
Purl: pkg:deb/ubuntu/linux-aws@4.4.0-1143.149?arch=source&distro=esm-infra-legacy/trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.4.0-1143.149

Affected versions

4.*

4.4.0-1002.2

4.4.0-1003.3

4.4.0-1005.5

4.4.0-1006.6

4.4.0-1009.9

4.4.0-1010.10

4.4.0-1011.11

4.4.0-1012.12

4.4.0-1014.14

4.4.0-1016.16

4.4.0-1017.17

4.4.0-1019.19

4.4.0-1022.22

4.4.0-1023.23

4.4.0-1024.25

4.4.0-1025.26

4.4.0-1027.30

4.4.0-1028.31

4.4.0-1029.32

4.4.0-1031.34

4.4.0-1032.35

4.4.0-1034.37

4.4.0-1036.39

4.4.0-1037.40

4.4.0-1038.41

4.4.0-1039.42

4.4.0-1040.43

4.4.0-1042.45

4.4.0-1044.47

4.4.0-1054.58

4.4.0-1055.59

4.4.0-1056.60

4.4.0-1058.62

4.4.0-1059.63

4.4.0-1060.64

4.4.0-1061.65

4.4.0-1062.66

4.4.0-1064.68

4.4.0-1065.69

4.4.0-1066.70

4.4.0-1067.71

4.4.0-1073.77

4.4.0-1074.78

4.4.0-1075.79

4.4.0-1076.80

4.4.0-1077.81

4.4.0-1078.82

4.4.0-1081.85

4.4.0-1082.86

4.4.0-1083.87

4.4.0-1085.89

4.4.0-1086.90

4.4.0-1087.91

4.4.0-1088.92

4.4.0-1090.94

4.4.0-1091.95

4.4.0-1092.96

4.4.0-1093.97

4.4.0-1094.99

4.4.0-1095.100

4.4.0-1096.101

4.4.0-1097.102

4.4.0-1098.103

4.4.0-1099.104

4.4.0-1101.106

4.4.0-1102.107

4.4.0-1103.108

4.4.0-1104.109

4.4.0-1107.113

4.4.0-1109.115

4.4.0-1110.116

4.4.0-1111.117

4.4.0-1112.118

4.4.0-1113.119

4.4.0-1114.120

4.4.0-1115.121

4.4.0-1116.122

4.4.0-1117.123

4.4.0-1118.124

4.4.0-1119.125

4.4.0-1120.126

4.4.0-1121.127

4.4.0-1122.128

4.4.0-1123.129

4.4.0-1124.130

4.4.0-1125.131

4.4.0-1127.133

4.4.0-1128.134

4.4.0-1129.135

4.4.0-1130.136

4.4.0-1131.137

4.4.0-1133.139

4.4.0-1134.140

4.4.0-1135.141

4.4.0-1136.142

4.4.0-1137.143

4.4.0-1138.144

4.4.0-1139.145

4.4.0-1140.146

4.4.0-1141.147

4.4.0-1142.148

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro with Legacy support add-on: https://ubuntu.com/pro",
    "binaries": [
        {
            "binary_version": "4.4.0-1143.149",
            "binary_name": "linux-aws-cloud-tools-4.4.0-1143"
        },
        {
            "binary_version": "4.4.0-1143.149",
            "binary_name": "linux-aws-headers-4.4.0-1143"
        },
        {
            "binary_version": "4.4.0-1143.149",
            "binary_name": "linux-aws-tools-4.4.0-1143"
        },
        {
            "binary_version": "4.4.0-1143.149",
            "binary_name": "linux-buildinfo-4.4.0-1143-aws"
        },
        {
            "binary_version": "4.4.0-1143.149",
            "binary_name": "linux-cloud-tools-4.4.0-1143-aws"
        },
        {
            "binary_version": "4.4.0-1143.149",
            "binary_name": "linux-headers-4.4.0-1143-aws"
        },
        {
            "binary_version": "4.4.0-1143.149",
            "binary_name": "linux-image-4.4.0-1143-aws"
        },
        {
            "binary_version": "4.4.0-1143.149",
            "binary_name": "linux-image-4.4.0-1143-aws-dbgsym"
        },
        {
            "binary_version": "4.4.0-1143.149",
            "binary_name": "linux-modules-4.4.0-1143-aws"
        },
        {
            "binary_version": "4.4.0-1143.149",
            "binary_name": "linux-tools-4.4.0-1143-aws"
        }
    ]
}