Ubuntu Security Notices
USN-7028-1

USN-7028-1: Linux kernel vulnerabilities

Publication date

23 September 2024

Overview

Several security issues were fixed in the Linux kernel.

Releases

18.04 LTS 16.04 LTS

Packages

linux - Linux kernel
linux-aws - Linux kernel for Amazon Web Services (AWS) systems
linux-aws-hwe - Linux kernel for Amazon Web Services (AWS-HWE) systems
linux-azure - Linux kernel for Microsoft Azure Cloud systems
linux-azure-4.15 - Linux kernel for Microsoft Azure Cloud systems
linux-gcp - Linux kernel for Google Cloud Platform (GCP) systems
linux-gcp-4.15 - Linux kernel for Google Cloud Platform (GCP) systems
linux-hwe - Linux hardware enablement (HWE) kernel
linux-kvm - Linux kernel for cloud environments
linux-oracle - Linux kernel for Oracle Cloud systems

Details

It was discovered that the JFS file system contained an out-of-bounds read
vulnerability when printing xattr debug information. A local attacker could
use this to cause a denial of service (system crash).

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:

GPU drivers;
Greybus drivers;
Modular ISDN driver;
Multiple devices driver;
Network drivers;
SCSI drivers;
VFIO drivers;
F2FS file system;
GFS2 file system;
JFS file system;
NILFS2 file system;
Kernel debugger infrastructure;
Bluetooth subsystem;
IPv4 networking;
L2TP protocol;
Netfilter;
RxRPC session sockets

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:

GPU drivers;
Greybus drivers;
Modular ISDN driver;
Multiple devices driver;
Network drivers;
SCSI drivers;
VFIO drivers;
F2FS file system;
GFS2 file system;
JFS file system;
NILFS2 file system;
Kernel debugger infrastructure;
Bluetooth subsystem;
IPv4 networking;
L2TP protocol;
Netfilter;
RxRPC session sockets

Update instructions

After a standard system update you need to reboot your computer to make all the necessary changes.

Learn more about how to get the fixes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well.

The problem can be corrected by updating your system to the following package versions:

Ubuntu Release	Package Version
18.04 bionic	linux-image-4.15.0-1135-oracle – 4.15.0-1135.146
	linux-image-4.15.0-1156-kvm – 4.15.0-1156.161
	linux-image-4.15.0-1166-gcp – 4.15.0-1166.183
	linux-image-4.15.0-1173-aws – 4.15.0-1173.186
	linux-image-4.15.0-1181-azure – 4.15.0-1181.196
	linux-image-4.15.0-229-generic – 4.15.0-229.241
	linux-image-4.15.0-229-lowlatency – 4.15.0-229.241
	linux-image-aws-lts-18.04 – 4.15.0.1173.171
	linux-image-azure-lts-18.04 – 4.15.0.1181.149
	linux-image-gcp-lts-18.04 – 4.15.0.1166.179
	linux-image-generic – 4.15.0.229.213
	linux-image-kvm – 4.15.0.1156.147
	linux-image-lowlatency – 4.15.0.229.213
	linux-image-oracle-lts-18.04 – 4.15.0.1135.140
	linux-image-virtual – 4.15.0.229.213
16.04 xenial	linux-image-4.15.0-1135-oracle – 4.15.0-1135.146~16.04.1
	linux-image-4.15.0-1166-gcp – 4.15.0-1166.183~16.04.1
	linux-image-4.15.0-1173-aws – 4.15.0-1173.186~16.04.1
	linux-image-4.15.0-1181-azure – 4.15.0-1181.196~16.04.1
	linux-image-4.15.0-229-generic – 4.15.0-229.241~16.04.1
	linux-image-4.15.0-229-lowlatency – 4.15.0-229.241~16.04.1
	linux-image-aws-hwe – 4.15.0.1173.186~16.04.1
	linux-image-azure – 4.15.0.1181.196~16.04.1
	linux-image-gcp – 4.15.0.1166.183~16.04.1
	linux-image-generic-hwe-16.04 – 4.15.0.229.241~16.04.1
	linux-image-gke – 4.15.0.1166.183~16.04.1
	linux-image-lowlatency-hwe-16.04 – 4.15.0.229.241~16.04.1
	linux-image-oem – 4.15.0.229.241~16.04.1
	linux-image-oracle – 4.15.0.1135.146~16.04.1
	linux-image-virtual-hwe-16.04 – 4.15.0.229.241~16.04.1

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Get Ubuntu Pro

References

USN-7156-1
USN-7119-1
USN-7039-1
USN-7029-1
USN-7028-2
USN-7022-1
USN-7022-2
USN-7022-3
USN-7021-1
USN-7021-2
USN-7021-3
USN-7021-4
USN-7021-5
USN-7020-1
USN-7020-2
USN-7020-3
USN-7020-4
USN-7019-1
USN-7009-1
USN-7009-2
USN-7008-1
USN-7007-1
USN-7007-2
USN-7007-3
USN-7006-1
USN-7005-1
USN-7005-2
USN-7004-1
USN-7003-1
USN-7003-2
USN-7003-3
USN-7003-4
USN-7003-5
USN-6999-1
USN-6999-2
USN-6979-1
USN-6957-1
USN-6956-1
USN-6955-1
USN-6953-1
USN-6952-1
USN-6951-1
USN-6951-2
USN-6951-3
USN-6951-4
USN-6950-1
USN-6950-2
USN-6950-3
USN-6950-4
USN-6949-1
USN-6949-2
USN-6927-1
USN-6919-1
USN-6918-1
USN-6917-1
USN-6900-1
USN-6898-1
USN-6898-2
USN-6898-3
USN-6898-4
USN-6896-1
USN-6896-2
USN-6896-3
USN-6896-4
USN-6896-5
USN-6895-1
USN-6895-2
USN-6895-3
USN-6895-4
USN-6893-1
USN-6893-2
USN-6893-3
USN-6892-1
USN-6878-1
USN-6871-1
USN-6831-1
USN-6828-1
USN-6821-1
USN-6821-2
USN-6821-3
USN-6821-4
USN-6820-1
USN-6820-2
USN-6817-1
USN-6817-2
USN-6817-3
USN-6816-1
LSN-0108-1
LSN-0107-1

Have additional questions?

Talk to a member of the team ›