USN-5265-1

See a problem?
Source
https://ubuntu.com/security/notices/USN-5265-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/USN-5265-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-5265-1
Related
Published
2022-02-03T05:40:51Z
Modified
2022-02-03T05:40:51Z
Summary
linux, linux-aws, linux-aws-5.11, linux-aws-5.13, linux-azure-5.11, linux-gcp, linux-gcp-5.11, linux-hwe-5.13, linux-kvm, linux-oem-5.13, linux-oracle, linux-oracle-5.11, linux-raspi vulnerabilities
Details

Jeremy Cline discovered a use-after-free in the nouveau graphics driver of the Linux kernel during device removal. A privileged or physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2020-27820)

It was discovered that the Bluetooth subsystem in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-3640)

Likang Luo discovered that a race condition existed in the Bluetooth subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-3752)

It was discovered that the SCTP protocol implementation in the Linux kernel did not properly verify VTAGs in some situations. A remote attacker could possibly use this to cause a denial of service (connection disassociation). (CVE-2021-3772)

It was discovered that the eBPF implementation in the Linux kernel contained a race condition around read-only maps. A privileged attacker could use this to modify read-only maps. (CVE-2021-4001)

It was discovered that the NFS server implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-4090)

Felix Wilhelm discovered that the KVM implementation in the Linux kernel did not properly handle exit events from AMD Secure Encrypted Virtualization-Encrypted State (SEV-ES) guest VMs. An attacker in a guest VM could use this to cause a denial of service (host kernel crash) or possibly execute arbitrary code in the host kernel. (CVE-2021-4093)

Lin Ma discovered that the NFC Controller Interface (NCI) implementation in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-4202)

It was discovered that the AMD Radeon GPU driver in the Linux kernel did not properly validate writes in the debugfs file system. A privileged attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-42327)

Luo Likang discovered that the FireDTV Firewire driver in the Linux kernel did not properly perform bounds checking in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-42739)

References

Affected packages

Ubuntu:20.04:LTS / linux-oracle-5.11

Package

Name
linux-oracle-5.11

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.11.0-1028.31~20.04.1

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-oracle": "5.11.0.1028.31~20.04.20",
            "linux-image-5.11.0-1028-oracle": "5.11.0-1028.31~20.04.1",
            "linux-modules-5.11.0-1028-oracle": "5.11.0-1028.31~20.04.1",
            "linux-tools-5.11.0-1028-oracle": "5.11.0-1028.31~20.04.1",
            "linux-headers-oracle": "5.11.0.1028.31~20.04.20",
            "linux-headers-5.11.0-1028-oracle": "5.11.0-1028.31~20.04.1",
            "linux-buildinfo-5.11.0-1028-oracle": "5.11.0-1028.31~20.04.1",
            "linux-oracle-5.11-headers-5.11.0-1028": "5.11.0-1028.31~20.04.1",
            "linux-modules-extra-5.11.0-1028-oracle": "5.11.0-1028.31~20.04.1",
            "linux-oracle-5.11-tools-5.11.0-1028": "5.11.0-1028.31~20.04.1",
            "linux-tools-oracle": "5.11.0.1028.31~20.04.20",
            "linux-image-oracle": "5.11.0.1028.31~20.04.20",
            "linux-image-unsigned-5.11.0-1028-oracle": "5.11.0-1028.31~20.04.1"
        }
    ]
}

Ubuntu:20.04:LTS / linux-oem-5.13

Package

Name
linux-oem-5.13

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.13.0-1029.36

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-image-oem-20.04c": "5.13.0.1029.31",
            "linux-headers-5.13.0-1029-oem": "5.13.0-1029.36",
            "linux-tools-oem-20.04c": "5.13.0.1029.31",
            "linux-modules-5.13.0-1029-oem": "5.13.0-1029.36",
            "linux-oem-5.13-headers-5.13.0-1029": "5.13.0-1029.36",
            "linux-buildinfo-5.13.0-1029-oem": "5.13.0-1029.36",
            "linux-oem-20.04c": "5.13.0.1029.31",
            "linux-image-unsigned-5.13.0-1029-oem": "5.13.0-1029.36",
            "linux-oem-5.13-tools-5.13.0-1029": "5.13.0-1029.36",
            "linux-headers-oem-20.04c": "5.13.0.1029.31",
            "linux-image-5.13.0-1029-oem": "5.13.0-1029.36",
            "linux-oem-5.13-tools-host": "5.13.0-1029.36",
            "linux-tools-5.13.0-1029-oem": "5.13.0-1029.36"
        }
    ]
}

Ubuntu:20.04:LTS / linux-aws-5.13

Package

Name
linux-aws-5.13

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.13.0-1012.13~20.04.1

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-aws-5.13-cloud-tools-5.13.0-1012": "5.13.0-1012.13~20.04.1",
            "linux-image-aws-edge": "5.13.0.1012.13~20.04.4",
            "linux-tools-5.13.0-1012-aws": "5.13.0-1012.13~20.04.1",
            "linux-buildinfo-5.13.0-1012-aws": "5.13.0-1012.13~20.04.1",
            "linux-modules-extra-5.13.0-1012-aws": "5.13.0-1012.13~20.04.1",
            "linux-aws-5.13-tools-5.13.0-1012": "5.13.0-1012.13~20.04.1",
            "linux-tools-aws-edge": "5.13.0.1012.13~20.04.4",
            "linux-modules-extra-aws-edge": "5.13.0.1012.13~20.04.4",
            "linux-modules-5.13.0-1012-aws": "5.13.0-1012.13~20.04.1",
            "linux-headers-aws-edge": "5.13.0.1012.13~20.04.4",
            "linux-cloud-tools-5.13.0-1012-aws": "5.13.0-1012.13~20.04.1",
            "linux-headers-5.13.0-1012-aws": "5.13.0-1012.13~20.04.1",
            "linux-aws-5.13-headers-5.13.0-1012": "5.13.0-1012.13~20.04.1",
            "linux-image-unsigned-5.13.0-1012-aws": "5.13.0-1012.13~20.04.1",
            "linux-aws-edge": "5.13.0.1012.13~20.04.4"
        }
    ]
}

Ubuntu:20.04:LTS / linux-azure-5.11

Package

Name
linux-azure-5.11

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.11.0-1028.31~20.04.2

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-modules-5.11.0-1028-azure": "5.11.0-1028.31~20.04.2",
            "linux-modules-extra-azure": "5.11.0.1028.31~20.04.26",
            "linux-modules-extra-5.11.0-1028-azure": "5.11.0-1028.31~20.04.2",
            "linux-azure-5.11-cloud-tools-5.11.0-1028": "5.11.0-1028.31~20.04.2",
            "linux-azure": "5.11.0.1028.31~20.04.26",
            "linux-buildinfo-5.11.0-1028-azure": "5.11.0-1028.31~20.04.2",
            "linux-image-5.11.0-1028-azure": "5.11.0-1028.31~20.04.2",
            "linux-azure-5.11-headers-5.11.0-1028": "5.11.0-1028.31~20.04.2",
            "linux-headers-azure": "5.11.0.1028.31~20.04.26",
            "linux-tools-azure": "5.11.0.1028.31~20.04.26",
            "linux-cloud-tools-azure": "5.11.0.1028.31~20.04.26",
            "linux-image-unsigned-5.11.0-1028-azure": "5.11.0-1028.31~20.04.2",
            "linux-cloud-tools-5.11.0-1028-azure": "5.11.0-1028.31~20.04.2",
            "linux-image-azure": "5.11.0.1028.31~20.04.26",
            "linux-headers-5.11.0-1028-azure": "5.11.0-1028.31~20.04.2",
            "linux-azure-5.11-tools-5.11.0-1028": "5.11.0-1028.31~20.04.2",
            "linux-tools-5.11.0-1028-azure": "5.11.0-1028.31~20.04.2"
        }
    ]
}

Ubuntu:20.04:LTS / linux-aws-5.11

Package

Name
linux-aws-5.11

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.11.0-1028.31~20.04.1

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-image-unsigned-5.11.0-1028-aws": "5.11.0-1028.31~20.04.1",
            "linux-aws-5.11-cloud-tools-5.11.0-1028": "5.11.0-1028.31~20.04.1",
            "linux-aws-5.11-tools-5.11.0-1028": "5.11.0-1028.31~20.04.1",
            "linux-headers-aws": "5.11.0.1028.31~20.04.26",
            "linux-cloud-tools-5.11.0-1028-aws": "5.11.0-1028.31~20.04.1",
            "linux-modules-extra-5.11.0-1028-aws": "5.11.0-1028.31~20.04.1",
            "linux-aws": "5.11.0.1028.31~20.04.26",
            "linux-image-aws": "5.11.0.1028.31~20.04.26",
            "linux-aws-5.11-headers-5.11.0-1028": "5.11.0-1028.31~20.04.1",
            "linux-headers-5.11.0-1028-aws": "5.11.0-1028.31~20.04.1",
            "linux-modules-extra-aws": "5.11.0.1028.31~20.04.26",
            "linux-tools-5.11.0-1028-aws": "5.11.0-1028.31~20.04.1",
            "linux-buildinfo-5.11.0-1028-aws": "5.11.0-1028.31~20.04.1",
            "linux-modules-5.11.0-1028-aws": "5.11.0-1028.31~20.04.1",
            "linux-tools-aws": "5.11.0.1028.31~20.04.26"
        }
    ]
}

Ubuntu:20.04:LTS / linux-gcp-5.11

Package

Name
linux-gcp-5.11

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.11.0-1029.33~20.04.3

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-gcp-5.11-headers-5.11.0-1029": "5.11.0-1029.33~20.04.3",
            "linux-tools-gcp": "5.11.0.1029.33~20.04.27",
            "linux-image-5.11.0-1029-gcp": "5.11.0-1029.33~20.04.3",
            "linux-gcp-5.11-tools-5.11.0-1029": "5.11.0-1029.33~20.04.3",
            "linux-gcp": "5.11.0.1029.33~20.04.27",
            "linux-image-unsigned-5.11.0-1029-gcp": "5.11.0-1029.33~20.04.3",
            "linux-buildinfo-5.11.0-1029-gcp": "5.11.0-1029.33~20.04.3",
            "linux-headers-gcp": "5.11.0.1029.33~20.04.27",
            "linux-image-gcp": "5.11.0.1029.33~20.04.27",
            "linux-modules-extra-gcp": "5.11.0.1029.33~20.04.27",
            "linux-modules-5.11.0-1029-gcp": "5.11.0-1029.33~20.04.3",
            "linux-modules-extra-5.11.0-1029-gcp": "5.11.0-1029.33~20.04.3",
            "linux-headers-5.11.0-1029-gcp": "5.11.0-1029.33~20.04.3",
            "linux-tools-5.11.0-1029-gcp": "5.11.0-1029.33~20.04.3"
        }
    ]
}

Ubuntu:20.04:LTS / linux-hwe-5.13

Package

Name
linux-hwe-5.13

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.13.0-28.31~20.04.1

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-headers-5.13.0-28-generic": "5.13.0-28.31~20.04.1",
            "linux-tools-generic-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-image-5.13.0-28-generic-lpae": "5.13.0-28.31~20.04.1",
            "linux-image-generic-lpae-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-headers-generic-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-image-generic-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-image-5.13.0-28-generic-64k": "5.13.0-28.31~20.04.1",
            "linux-image-generic-64k-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-modules-5.13.0-28-generic": "5.13.0-28.31~20.04.1",
            "linux-headers-generic-lpae-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-tools-5.13.0-28-generic-64k": "5.13.0-28.31~20.04.1",
            "linux-modules-5.13.0-28-lowlatency": "5.13.0-28.31~20.04.1",
            "linux-buildinfo-5.13.0-28-generic-lpae": "5.13.0-28.31~20.04.1",
            "linux-tools-5.13.0-28-generic": "5.13.0-28.31~20.04.1",
            "linux-buildinfo-5.13.0-28-lowlatency": "5.13.0-28.31~20.04.1",
            "linux-hwe-5.13-source-5.13.0": "5.13.0-28.31~20.04.1",
            "linux-lowlatency-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-generic-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-modules-5.13.0-28-generic-64k": "5.13.0-28.31~20.04.1",
            "linux-generic-64k-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-image-extra-virtual-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-tools-virtual-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-hwe-5.13-cloud-tools-common": "5.13.0-28.31~20.04.1",
            "linux-headers-5.13.0-28-lowlatency": "5.13.0-28.31~20.04.1",
            "linux-hwe-5.13-cloud-tools-5.13.0-28": "5.13.0-28.31~20.04.1",
            "linux-hwe-5.13-tools-5.13.0-28": "5.13.0-28.31~20.04.1",
            "linux-hwe-5.13-headers-5.13.0-28": "5.13.0-28.31~20.04.1",
            "linux-buildinfo-5.13.0-28-generic": "5.13.0-28.31~20.04.1",
            "linux-tools-generic-lpae-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-headers-5.13.0-28-generic-lpae": "5.13.0-28.31~20.04.1",
            "linux-headers-lowlatency-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-tools-5.13.0-28-lowlatency": "5.13.0-28.31~20.04.1",
            "linux-cloud-tools-generic-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-virtual-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-image-5.13.0-28-generic": "5.13.0-28.31~20.04.1",
            "linux-generic-lpae-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-hwe-5.13-tools-host": "5.13.0-28.31~20.04.1",
            "linux-image-5.13.0-28-lowlatency": "5.13.0-28.31~20.04.1",
            "linux-image-lowlatency-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-headers-5.13.0-28-generic-64k": "5.13.0-28.31~20.04.1",
            "linux-buildinfo-5.13.0-28-generic-64k": "5.13.0-28.31~20.04.1",
            "linux-cloud-tools-virtual-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-hwe-5.13-tools-common": "5.13.0-28.31~20.04.1",
            "linux-headers-generic-64k-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-tools-lowlatency-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-modules-5.13.0-28-generic-lpae": "5.13.0-28.31~20.04.1",
            "linux-image-virtual-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-headers-virtual-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-cloud-tools-5.13.0-28-generic": "5.13.0-28.31~20.04.1",
            "linux-image-unsigned-5.13.0-28-generic-64k": "5.13.0-28.31~20.04.1",
            "linux-modules-extra-5.13.0-28-generic": "5.13.0-28.31~20.04.1",
            "linux-image-unsigned-5.13.0-28-generic": "5.13.0-28.31~20.04.1",
            "linux-cloud-tools-lowlatency-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-tools-generic-64k-hwe-20.04": "5.13.0.28.31~20.04.15",
            "linux-cloud-tools-5.13.0-28-lowlatency": "5.13.0-28.31~20.04.1",
            "linux-image-unsigned-5.13.0-28-lowlatency": "5.13.0-28.31~20.04.1",
            "linux-tools-5.13.0-28-generic-lpae": "5.13.0-28.31~20.04.1"
        }
    ]
}