[USN-4426-1] Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel.
Jason A. Donenfeld discovered that the ACPI implementation in the Linux
kernel did not properly restrict loading SSDT code from an EFI variable. A
privileged attacker could use this to bypass Secure Boot lockdown
restrictions and execute arbitrary code in the kernel. (CVE-2019-20908)
Fan Yang discovered that the mremap implementation in the Linux kernel did
not properly handle DAX Huge Pages. A local attacker with access to DAX
storage could use this to gain administrative privileges. (CVE-2020-10757)
Mauricio Faria de Oliveira discovered that the aufs implementation in the
Linux kernel improperly managed inode reference counts in the
vfsub_dentry_open() method. A local attacker could use this vulnerability
to cause a denial of service. (CVE-2020-11935)
Jason A. Donenfeld discovered that the ACPI implementation in the Linux
kernel did not properly restrict loading ACPI tables via configfs. A
privileged attacker could use this to bypass Secure Boot lockdown
restrictions and execute arbitrary code in the kernel. (CVE-2020-15780)
- ID
- USN-4426-1
- Severity
- medium
- URL
- https://ubuntu.com/security/notices/USN-4426-1
- Published
-
2020-07-27T22:46:40
(4 years ago) - Modified
-
2020-07-27T22:46:40
(4 years ago) - Other Advisories
-
- ALAS-2020-1401
- ALAS2-2020-1465
- DSA-4698-1
- DSA-4699-1
- ELSA-2020-3010
- ELSA-2020-3218
- ELSA-2020-3220
- ELSA-2020-5755
- ELSA-2020-5756
- ELSA-2020-5791
- ELSA-2020-5792
- ELSA-2020-5804
- FEDORA-2020-07f0be216f
- FEDORA-2020-203ffedeb5
- FEDORA-2020-e47d28bc2b
- MS:CVE-2020-10757
- MS:CVE-2020-15780
- openSUSE-SU-2020:0801-1
- openSUSE-SU-2020:1153-1
- openSUSE-SU-2020:1236-1
- openSUSE-SU-2021:0242-1
- RHSA-2020:3010
- RHSA-2020:3016
- RHSA-2020:3218
- RHSA-2020:3219
- RHSA-2020:3220
- RHSA-2020:3221
- SUSE-SU-2020:1587-1
- SUSE-SU-2020:1596-1
- SUSE-SU-2020:1597-1
- SUSE-SU-2020:1599-1
- SUSE-SU-2020:1602-1
- SUSE-SU-2020:1603-1
- SUSE-SU-2020:1604-1
- SUSE-SU-2020:1605-1
- SUSE-SU-2020:1646-1
- SUSE-SU-2020:1656-1
- SUSE-SU-2020:1663-1
- SUSE-SU-2020:1671-1
- SUSE-SU-2020:1754-1
- SUSE-SU-2020:1758-1
- SUSE-SU-2020:1764-1
- SUSE-SU-2020:1767-1
- SUSE-SU-2020:1775-1
- SUSE-SU-2020:1779-1
- SUSE-SU-2020:1781-1
- SUSE-SU-2020:1784-1
- SUSE-SU-2020:2027-1
- SUSE-SU-2020:2103-1
- SUSE-SU-2020:2105-1
- SUSE-SU-2020:2106-1
- SUSE-SU-2020:2107-1
- SUSE-SU-2020:2119-1
- SUSE-SU-2020:2121-1
- SUSE-SU-2020:2122-1
- SUSE-SU-2020:2156-1
- SUSE-SU-2020:2478-1
- SUSE-SU-2020:2487-1
- SUSE-SU-2020:2505-1
- SUSE-SU-2020:2506-1
- SUSE-SU-2020:2507-1
- SUSE-SU-2020:2508-1
- SUSE-SU-2020:2509-1
- SUSE-SU-2020:2513-1
- SUSE-SU-2020:2515-1
- SUSE-SU-2020:2517-1
- SUSE-SU-2020:2524-1
- SUSE-SU-2020:2526-1
- SUSE-SU-2020:2531-1
- USN-4425-1
- USN-4427-1
- USN-4439-1
- USN-4440-1
- USN-4483-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/linux-image-virtual?distro=bionic | ubuntu | linux-image-virtual | < 4.15.0.112.100 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-virtual-hwe-16.04?distro=xenial | ubuntu | linux-image-virtual-hwe-16.04 | < 4.15.0.112.114 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-virtual-hwe-16.04?distro=bionic | ubuntu | linux-image-virtual-hwe-16.04 | < 4.15.0.112.100 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-virtual-hwe-16.04-edge?distro=xenial | ubuntu | linux-image-virtual-hwe-16.04-edge | < 4.15.0.112.114 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-virtual-hwe-16.04-edge?distro=bionic | ubuntu | linux-image-virtual-hwe-16.04-edge | < 4.15.0.112.100 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-raspi2?distro=bionic | ubuntu | linux-image-raspi2 | < 4.15.0.1067.65 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-oracle?distro=xenial | ubuntu | linux-image-oracle | < 4.15.0.1050.41 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-oracle-lts-18.04?distro=bionic | ubuntu | linux-image-oracle-lts-18.04 | < 4.15.0.1050.59 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-oem?distro=xenial | ubuntu | linux-image-oem | < 4.15.0.112.114 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-oem?distro=bionic | ubuntu | linux-image-oem | < 4.15.0.1093.96 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-lowlatency?distro=bionic | ubuntu | linux-image-lowlatency | < 4.15.0.112.100 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-lowlatency-hwe-16.04?distro=xenial | ubuntu | linux-image-lowlatency-hwe-16.04 | < 4.15.0.112.114 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-lowlatency-hwe-16.04?distro=bionic | ubuntu | linux-image-lowlatency-hwe-16.04 | < 4.15.0.112.100 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-lowlatency-hwe-16.04-edge?distro=xenial | ubuntu | linux-image-lowlatency-hwe-16.04-edge | < 4.15.0.112.114 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-lowlatency-hwe-16.04-edge?distro=bionic | ubuntu | linux-image-lowlatency-hwe-16.04-edge | < 4.15.0.112.100 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-kvm?distro=bionic | ubuntu | linux-image-kvm | < 4.15.0.1071.67 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-gke?distro=xenial | ubuntu | linux-image-gke | < 4.15.0.1080.82 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-gke?distro=bionic | ubuntu | linux-image-gke | < 4.15.0.1066.68 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-gke-4.15?distro=bionic | ubuntu | linux-image-gke-4.15 | < 4.15.0.1066.68 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-generic?distro=bionic | ubuntu | linux-image-generic | < 4.15.0.112.100 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-generic-lpae?distro=bionic | ubuntu | linux-image-generic-lpae | < 4.15.0.112.100 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-generic-lpae-hwe-16.04?distro=xenial | ubuntu | linux-image-generic-lpae-hwe-16.04 | < 4.15.0.112.114 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-generic-lpae-hwe-16.04?distro=bionic | ubuntu | linux-image-generic-lpae-hwe-16.04 | < 4.15.0.112.100 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-generic-lpae-hwe-16.04-edge?distro=xenial | ubuntu | linux-image-generic-lpae-hwe-16.04-edge | < 4.15.0.112.114 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-generic-lpae-hwe-16.04-edge?distro=bionic | ubuntu | linux-image-generic-lpae-hwe-16.04-edge | < 4.15.0.112.100 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-generic-hwe-16.04?distro=xenial | ubuntu | linux-image-generic-hwe-16.04 | < 4.15.0.112.114 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-generic-hwe-16.04?distro=bionic | ubuntu | linux-image-generic-hwe-16.04 | < 4.15.0.112.100 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-generic-hwe-16.04-edge?distro=xenial | ubuntu | linux-image-generic-hwe-16.04-edge | < 4.15.0.112.114 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-generic-hwe-16.04-edge?distro=bionic | ubuntu | linux-image-generic-hwe-16.04-edge | < 4.15.0.112.100 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-gcp?distro=xenial | ubuntu | linux-image-gcp | < 4.15.0.1080.82 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-gcp-lts-18.04?distro=bionic | ubuntu | linux-image-gcp-lts-18.04 | < 4.15.0.1080.96 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-azure?distro=xenial | ubuntu | linux-image-azure | < 4.15.0.1092.87 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-azure-lts-18.04?distro=bionic | ubuntu | linux-image-azure-lts-18.04 | < 4.15.0.1092.63 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-azure-edge?distro=xenial | ubuntu | linux-image-azure-edge | < 4.15.0.1092.87 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-aws-lts-18.04?distro=bionic | ubuntu | linux-image-aws-lts-18.04 | < 4.15.0.1079.81 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-aws-hwe?distro=xenial | ubuntu | linux-image-aws-hwe | < 4.15.0.1079.76 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-112-lowlatency?distro=xenial | ubuntu | linux-image-4.15.0-112-lowlatency | < 4.15.0-112.113~16.04.1 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-112-lowlatency?distro=bionic | ubuntu | linux-image-4.15.0-112-lowlatency | < 4.15.0-112.113 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-112-generic?distro=xenial | ubuntu | linux-image-4.15.0-112-generic | < 4.15.0-112.113~16.04.1 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-112-generic?distro=bionic | ubuntu | linux-image-4.15.0-112-generic | < 4.15.0-112.113 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-112-generic-lpae?distro=xenial | ubuntu | linux-image-4.15.0-112-generic-lpae | < 4.15.0-112.113~16.04.1 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-112-generic-lpae?distro=bionic | ubuntu | linux-image-4.15.0-112-generic-lpae | < 4.15.0-112.113 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-1093-oem?distro=bionic | ubuntu | linux-image-4.15.0-1093-oem | < 4.15.0-1093.103 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-1092-azure?distro=xenial | ubuntu | linux-image-4.15.0-1092-azure | < 4.15.0-1092.102~16.04.1 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-1092-azure?distro=bionic | ubuntu | linux-image-4.15.0-1092-azure | < 4.15.0-1092.102 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-1080-gcp?distro=xenial | ubuntu | linux-image-4.15.0-1080-gcp | < 4.15.0-1080.90~16.04.1 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-1080-gcp?distro=bionic | ubuntu | linux-image-4.15.0-1080-gcp | < 4.15.0-1080.90 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-1079-aws?distro=xenial | ubuntu | linux-image-4.15.0-1079-aws | < 4.15.0-1079.83~16.04.1 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-1079-aws?distro=bionic | ubuntu | linux-image-4.15.0-1079-aws | < 4.15.0-1079.83 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-1071-kvm?distro=bionic | ubuntu | linux-image-4.15.0-1071-kvm | < 4.15.0-1071.72 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-1067-raspi2?distro=bionic | ubuntu | linux-image-4.15.0-1067-raspi2 | < 4.15.0-1067.71 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-1066-gke?distro=bionic | ubuntu | linux-image-4.15.0-1066-gke | < 4.15.0-1066.69 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-1050-oracle?distro=xenial | ubuntu | linux-image-4.15.0-1050-oracle | < 4.15.0-1050.54~16.04.1 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.15.0-1050-oracle?distro=bionic | ubuntu | linux-image-4.15.0-1050-oracle | < 4.15.0-1050.54 | bionic |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |