Packages
- linux-gcp - Linux kernel for Google Cloud Platform (GCP) systems
- linux-gcp-5.4 - Linux kernel for Google Cloud Platform (GCP) systems
Details
Marek Marczykowski-Górecki discovered that the Xen event channel
infrastructure implementation in the Linux kernel contained a race
condition. An attacker in a guest VM could possibly use this to cause a
denial of service (paravirtualized device unavailability). (CVE-2023-34324)
Zheng Wang discovered a use-after-free in the Renesas Ethernet AVB driver
in the Linux kernel during device removal. A privileged attacker could use
this to cause a denial of service (system crash). (CVE-2023-35827)
It was discovered that a race condition existed in the Linux kernel when
performing operations with kernel objects, leading to an out-of-bounds
write. A local attacker could use this to cause a denial of service (system
crash) or execute arbitrary code. (CVE-2023-45863)
黄思聪 discovered that the NFC Controller Interface (NCI)...
Marek Marczykowski-Górecki discovered that the Xen event channel
infrastructure implementation in the Linux kernel contained a race
condition. An attacker in a guest VM could possibly use this to cause a
denial of service (paravirtualized device unavailability). (CVE-2023-34324)
Zheng Wang discovered a use-after-free in the Renesas Ethernet AVB driver
in the Linux kernel during device removal. A privileged attacker could use
this to cause a denial of service (system crash). (CVE-2023-35827)
It was discovered that a race condition existed in the Linux kernel when
performing operations with kernel objects, leading to an out-of-bounds
write. A local attacker could use this to cause a denial of service (system
crash) or execute arbitrary code. (CVE-2023-45863)
黄思聪 discovered that the NFC Controller Interface (NCI) implementation in
the Linux kernel did not properly handle certain memory allocation failure
conditions, leading to a null pointer dereference vulnerability. A local
attacker could use this to cause a denial of service (system crash).
(CVE-2023-46343)
Update instructions
After a standard system update you need to reboot your computer to make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
| Ubuntu Release | Package Version | ||
|---|---|---|---|
| 20.04 focal | linux-image-5.4.0-1122-gcp – 5.4.0-1122.131 | ||
| linux-image-gcp-lts-20.04 – 5.4.0.1122.124 | |||
| 18.04 bionic | linux-image-5.4.0-1122-gcp – 5.4.0-1122.131~18.04.1 | ||
| linux-image-gcp – 5.4.0.1122.98 | |||
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.
References
Related notices
- USN-7185-1
- USN-7185-2
- USN-7184-1
- USN-7183-1
- USN-6938-1
- USN-6926-1
- USN-6926-2
- USN-6926-3
- USN-6705-1
- USN-6686-1
- USN-7185-1
- USN-7185-2
- USN-7184-1
- USN-7183-1
- USN-6938-1
- USN-6926-1
- USN-6926-2
- USN-6926-3
- USN-6705-1
- USN-6686-1
- USN-6686-2
- USN-6686-3
- USN-6686-4
- USN-6686-5
- USN-6680-1
- USN-6680-2
- USN-6680-3
- USN-6652-1
- USN-6628-1
- USN-6628-2
- USN-6626-1
- USN-6626-2
- USN-6626-3
- USN-6625-1
- USN-6625-3
- USN-6624-1
- USN-6604-1
- USN-6604-2
- USN-6602-1
- USN-6577-1
- USN-6461-1
Have additional questions?