1. Home
  2. Security Advisories
  3. Ubuntu
  4. USN-4660-1

[USN-4660-1] Linux kernel vulnerabilities

Severity Medium
Affected Packages 58
CVEs 10
Info Packages Vulnerabilities

Several security issues were fixed in the Linux kernel.

It was discovered that a race condition existed in the perf subsystem of
the Linux kernel, leading to a use-after-free vulnerability. An attacker
with access to the perf subsystem could use this to cause a denial of
service (system crash) or possibly execute arbitrary code. (CVE-2020-14351)

It was discovered that the frame buffer implementation in the Linux kernel
did not properly handle some edge cases in software scrollback. A local
attacker could use this to cause a denial of service (system crash) or
possibly execute arbitrary code. (CVE-2020-14390)

It was discovered that the netfilter connection tracker for netlink in the
Linux kernel did not properly perform bounds checking in some situations. A
local attacker could use this to cause a denial of service (system crash).
(CVE-2020-25211)

It was discovered that the Rados block device (rbd) driver in the Linux
kernel did not properly perform privilege checks for access to rbd devices
in some situations. A local attacker could use this to map or unmap rbd
block devices. (CVE-2020-25284)

It was discovered that a race condition existed in the hugetlb sysctl
implementation in the Linux kernel. A privileged attacker could use this to
cause a denial of service (system crash). (CVE-2020-25285)

It was discovered that the block layer subsystem in the Linux kernel did
not properly handle zero-length requests. A local attacker could use this
to cause a denial of service. (CVE-2020-25641)

It was discovered that the HDLC PPP implementation in the Linux kernel did
not properly validate input in some situations. A local attacker could use
this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2020-25643)

It was discovered that the GENEVE tunnel implementation in the Linux kernel
when combined with IPSec did not properly select IP routes in some
situations. An attacker could use this to expose sensitive information
(unencrypted network traffic). (CVE-2020-25645)

It was discovered that the framebuffer implementation in the Linux kernel
did not properly perform range checks in certain situations. A local
attacker could use this to expose sensitive information (kernel memory).
(CVE-2020-28915)

It was discovered that Power 9 processors could be coerced to expose
information from the L1 cache in certain situations. A local attacker could
use this to expose sensitive information. (CVE-2020-4788)

Package Affected Version
pkg:deb/ubuntu/linux-image-virtual?distro=bionic < 4.15.0.126.113
pkg:deb/ubuntu/linux-image-virtual-hwe-16.04?distro=xenial < 4.15.0.126.125
pkg:deb/ubuntu/linux-image-virtual-hwe-16.04?distro=bionic < 4.15.0.126.113
pkg:deb/ubuntu/linux-image-virtual-hwe-16.04-edge?distro=xenial < 4.15.0.126.125
pkg:deb/ubuntu/linux-image-virtual-hwe-16.04-edge?distro=bionic < 4.15.0.126.113
pkg:deb/ubuntu/linux-image-snapdragon?distro=bionic < 4.15.0.1091.94
pkg:deb/ubuntu/linux-image-raspi2?distro=bionic < 4.15.0.1074.71
pkg:deb/ubuntu/linux-image-oracle?distro=xenial < 4.15.0.1059.48
pkg:deb/ubuntu/linux-image-oracle-lts-18.04?distro=bionic < 4.15.0.1059.69
pkg:deb/ubuntu/linux-image-oem?distro=xenial < 4.15.0.126.125
pkg:deb/ubuntu/linux-image-oem?distro=bionic < 4.15.0.1103.107
pkg:deb/ubuntu/linux-image-lowlatency?distro=bionic < 4.15.0.126.113
pkg:deb/ubuntu/linux-image-lowlatency-hwe-16.04?distro=xenial < 4.15.0.126.125
pkg:deb/ubuntu/linux-image-lowlatency-hwe-16.04?distro=bionic < 4.15.0.126.113
pkg:deb/ubuntu/linux-image-lowlatency-hwe-16.04-edge?distro=xenial < 4.15.0.126.125
pkg:deb/ubuntu/linux-image-lowlatency-hwe-16.04-edge?distro=bionic < 4.15.0.126.113
pkg:deb/ubuntu/linux-image-kvm?distro=bionic < 4.15.0.1079.75
pkg:deb/ubuntu/linux-image-gke?distro=xenial < 4.15.0.1088.89
pkg:deb/ubuntu/linux-image-gke?distro=bionic < 4.15.0.1074.78
pkg:deb/ubuntu/linux-image-gke-4.15?distro=bionic < 4.15.0.1074.78
pkg:deb/ubuntu/linux-image-generic?distro=bionic < 4.15.0.126.113
pkg:deb/ubuntu/linux-image-generic-lpae?distro=bionic < 4.15.0.126.113
pkg:deb/ubuntu/linux-image-generic-lpae-hwe-16.04?distro=xenial < 4.15.0.126.125
pkg:deb/ubuntu/linux-image-generic-lpae-hwe-16.04?distro=bionic < 4.15.0.126.113
pkg:deb/ubuntu/linux-image-generic-lpae-hwe-16.04-edge?distro=xenial < 4.15.0.126.125
pkg:deb/ubuntu/linux-image-generic-lpae-hwe-16.04-edge?distro=bionic < 4.15.0.126.113
pkg:deb/ubuntu/linux-image-generic-hwe-16.04?distro=xenial < 4.15.0.126.125
pkg:deb/ubuntu/linux-image-generic-hwe-16.04?distro=bionic < 4.15.0.126.113
pkg:deb/ubuntu/linux-image-generic-hwe-16.04-edge?distro=xenial < 4.15.0.126.125
pkg:deb/ubuntu/linux-image-generic-hwe-16.04-edge?distro=bionic < 4.15.0.126.113
pkg:deb/ubuntu/linux-image-gcp?distro=xenial < 4.15.0.1088.89
pkg:deb/ubuntu/linux-image-gcp-lts-18.04?distro=bionic < 4.15.0.1088.106
pkg:deb/ubuntu/linux-image-azure?distro=xenial < 4.15.0.1100.93
pkg:deb/ubuntu/linux-image-azure?distro=trusty < 4.15.0.1100.75
pkg:deb/ubuntu/linux-image-azure-lts-18.04?distro=bionic < 4.15.0.1100.73
pkg:deb/ubuntu/linux-image-azure-edge?distro=xenial < 4.15.0.1100.93
pkg:deb/ubuntu/linux-image-aws-lts-18.04?distro=bionic < 4.15.0.1088.90
pkg:deb/ubuntu/linux-image-aws-hwe?distro=xenial < 4.15.0.1088.82
pkg:deb/ubuntu/linux-image-4.15.0-126-lowlatency?distro=xenial < 4.15.0-126.129~16.04.1
pkg:deb/ubuntu/linux-image-4.15.0-126-lowlatency?distro=bionic < 4.15.0-126.129
pkg:deb/ubuntu/linux-image-4.15.0-126-generic?distro=xenial < 4.15.0-126.129~16.04.1
pkg:deb/ubuntu/linux-image-4.15.0-126-generic?distro=bionic < 4.15.0-126.129
pkg:deb/ubuntu/linux-image-4.15.0-126-generic-lpae?distro=xenial < 4.15.0-126.129~16.04.1
pkg:deb/ubuntu/linux-image-4.15.0-126-generic-lpae?distro=bionic < 4.15.0-126.129
pkg:deb/ubuntu/linux-image-4.15.0-1103-oem?distro=bionic < 4.15.0-1103.114
pkg:deb/ubuntu/linux-image-4.15.0-1100-azure?distro=xenial < 4.15.0-1100.111~16.04.1
pkg:deb/ubuntu/linux-image-4.15.0-1100-azure?distro=trusty < 4.15.0-1100.111~14.04.1
pkg:deb/ubuntu/linux-image-4.15.0-1100-azure?distro=bionic < 4.15.0-1100.111
pkg:deb/ubuntu/linux-image-4.15.0-1091-snapdragon?distro=bionic < 4.15.0-1091.100
pkg:deb/ubuntu/linux-image-4.15.0-1088-gcp?distro=xenial < 4.15.0-1088.101~16.04.1
pkg:deb/ubuntu/linux-image-4.15.0-1088-gcp?distro=bionic < 4.15.0-1088.101
pkg:deb/ubuntu/linux-image-4.15.0-1088-aws?distro=xenial < 4.15.0-1088.93~16.04.1
pkg:deb/ubuntu/linux-image-4.15.0-1088-aws?distro=bionic < 4.15.0-1088.93
pkg:deb/ubuntu/linux-image-4.15.0-1079-kvm?distro=bionic < 4.15.0-1079.81
pkg:deb/ubuntu/linux-image-4.15.0-1074-raspi2?distro=bionic < 4.15.0-1074.79
pkg:deb/ubuntu/linux-image-4.15.0-1074-gke?distro=bionic < 4.15.0-1074.79
pkg:deb/ubuntu/linux-image-4.15.0-1059-oracle?distro=xenial < 4.15.0-1059.65~16.04.1
pkg:deb/ubuntu/linux-image-4.15.0-1059-oracle?distro=bionic < 4.15.0-1059.65
ID
USN-4660-1
Severity
medium
URL
https://ubuntu.com/security/notices/USN-4660-1
Published
2020-12-03T02:19:02
(3 years ago)
Modified
2020-12-03T02:19:02
(3 years ago)
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:deb/ubuntu/linux-image-virtual?distro=bionic ubuntu linux-image-virtual < 4.15.0.126.113 bionic
Affected pkg:deb/ubuntu/linux-image-virtual-hwe-16.04?distro=xenial ubuntu linux-image-virtual-hwe-16.04 < 4.15.0.126.125 xenial
Affected pkg:deb/ubuntu/linux-image-virtual-hwe-16.04?distro=bionic ubuntu linux-image-virtual-hwe-16.04 < 4.15.0.126.113 bionic
Affected pkg:deb/ubuntu/linux-image-virtual-hwe-16.04-edge?distro=xenial ubuntu linux-image-virtual-hwe-16.04-edge < 4.15.0.126.125 xenial
Affected pkg:deb/ubuntu/linux-image-virtual-hwe-16.04-edge?distro=bionic ubuntu linux-image-virtual-hwe-16.04-edge < 4.15.0.126.113 bionic
Affected pkg:deb/ubuntu/linux-image-snapdragon?distro=bionic ubuntu linux-image-snapdragon < 4.15.0.1091.94 bionic
Affected pkg:deb/ubuntu/linux-image-raspi2?distro=bionic ubuntu linux-image-raspi2 < 4.15.0.1074.71 bionic
Affected pkg:deb/ubuntu/linux-image-oracle?distro=xenial ubuntu linux-image-oracle < 4.15.0.1059.48 xenial
Affected pkg:deb/ubuntu/linux-image-oracle-lts-18.04?distro=bionic ubuntu linux-image-oracle-lts-18.04 < 4.15.0.1059.69 bionic
Affected pkg:deb/ubuntu/linux-image-oem?distro=xenial ubuntu linux-image-oem < 4.15.0.126.125 xenial
Affected pkg:deb/ubuntu/linux-image-oem?distro=bionic ubuntu linux-image-oem < 4.15.0.1103.107 bionic
Affected pkg:deb/ubuntu/linux-image-lowlatency?distro=bionic ubuntu linux-image-lowlatency < 4.15.0.126.113 bionic
Affected pkg:deb/ubuntu/linux-image-lowlatency-hwe-16.04?distro=xenial ubuntu linux-image-lowlatency-hwe-16.04 < 4.15.0.126.125 xenial
Affected pkg:deb/ubuntu/linux-image-lowlatency-hwe-16.04?distro=bionic ubuntu linux-image-lowlatency-hwe-16.04 < 4.15.0.126.113 bionic
Affected pkg:deb/ubuntu/linux-image-lowlatency-hwe-16.04-edge?distro=xenial ubuntu linux-image-lowlatency-hwe-16.04-edge < 4.15.0.126.125 xenial
Affected pkg:deb/ubuntu/linux-image-lowlatency-hwe-16.04-edge?distro=bionic ubuntu linux-image-lowlatency-hwe-16.04-edge < 4.15.0.126.113 bionic
Affected pkg:deb/ubuntu/linux-image-kvm?distro=bionic ubuntu linux-image-kvm < 4.15.0.1079.75 bionic
Affected pkg:deb/ubuntu/linux-image-gke?distro=xenial ubuntu linux-image-gke < 4.15.0.1088.89 xenial
Affected pkg:deb/ubuntu/linux-image-gke?distro=bionic ubuntu linux-image-gke < 4.15.0.1074.78 bionic
Affected pkg:deb/ubuntu/linux-image-gke-4.15?distro=bionic ubuntu linux-image-gke-4.15 < 4.15.0.1074.78 bionic
Affected pkg:deb/ubuntu/linux-image-generic?distro=bionic ubuntu linux-image-generic < 4.15.0.126.113 bionic
Affected pkg:deb/ubuntu/linux-image-generic-lpae?distro=bionic ubuntu linux-image-generic-lpae < 4.15.0.126.113 bionic
Affected pkg:deb/ubuntu/linux-image-generic-lpae-hwe-16.04?distro=xenial ubuntu linux-image-generic-lpae-hwe-16.04 < 4.15.0.126.125 xenial
Affected pkg:deb/ubuntu/linux-image-generic-lpae-hwe-16.04?distro=bionic ubuntu linux-image-generic-lpae-hwe-16.04 < 4.15.0.126.113 bionic
Affected pkg:deb/ubuntu/linux-image-generic-lpae-hwe-16.04-edge?distro=xenial ubuntu linux-image-generic-lpae-hwe-16.04-edge < 4.15.0.126.125 xenial
Affected pkg:deb/ubuntu/linux-image-generic-lpae-hwe-16.04-edge?distro=bionic ubuntu linux-image-generic-lpae-hwe-16.04-edge < 4.15.0.126.113 bionic
Affected pkg:deb/ubuntu/linux-image-generic-hwe-16.04?distro=xenial ubuntu linux-image-generic-hwe-16.04 < 4.15.0.126.125 xenial
Affected pkg:deb/ubuntu/linux-image-generic-hwe-16.04?distro=bionic ubuntu linux-image-generic-hwe-16.04 < 4.15.0.126.113 bionic
Affected pkg:deb/ubuntu/linux-image-generic-hwe-16.04-edge?distro=xenial ubuntu linux-image-generic-hwe-16.04-edge < 4.15.0.126.125 xenial
Affected pkg:deb/ubuntu/linux-image-generic-hwe-16.04-edge?distro=bionic ubuntu linux-image-generic-hwe-16.04-edge < 4.15.0.126.113 bionic
Affected pkg:deb/ubuntu/linux-image-gcp?distro=xenial ubuntu linux-image-gcp < 4.15.0.1088.89 xenial
Affected pkg:deb/ubuntu/linux-image-gcp-lts-18.04?distro=bionic ubuntu linux-image-gcp-lts-18.04 < 4.15.0.1088.106 bionic
Affected pkg:deb/ubuntu/linux-image-azure?distro=xenial ubuntu linux-image-azure < 4.15.0.1100.93 xenial
Affected pkg:deb/ubuntu/linux-image-azure?distro=trusty ubuntu linux-image-azure < 4.15.0.1100.75 trusty
Affected pkg:deb/ubuntu/linux-image-azure-lts-18.04?distro=bionic ubuntu linux-image-azure-lts-18.04 < 4.15.0.1100.73 bionic
Affected pkg:deb/ubuntu/linux-image-azure-edge?distro=xenial ubuntu linux-image-azure-edge < 4.15.0.1100.93 xenial
Affected pkg:deb/ubuntu/linux-image-aws-lts-18.04?distro=bionic ubuntu linux-image-aws-lts-18.04 < 4.15.0.1088.90 bionic
Affected pkg:deb/ubuntu/linux-image-aws-hwe?distro=xenial ubuntu linux-image-aws-hwe < 4.15.0.1088.82 xenial
Affected pkg:deb/ubuntu/linux-image-4.15.0-126-lowlatency?distro=xenial ubuntu linux-image-4.15.0-126-lowlatency < 4.15.0-126.129~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-image-4.15.0-126-lowlatency?distro=bionic ubuntu linux-image-4.15.0-126-lowlatency < 4.15.0-126.129 bionic
Affected pkg:deb/ubuntu/linux-image-4.15.0-126-generic?distro=xenial ubuntu linux-image-4.15.0-126-generic < 4.15.0-126.129~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-image-4.15.0-126-generic?distro=bionic ubuntu linux-image-4.15.0-126-generic < 4.15.0-126.129 bionic
Affected pkg:deb/ubuntu/linux-image-4.15.0-126-generic-lpae?distro=xenial ubuntu linux-image-4.15.0-126-generic-lpae < 4.15.0-126.129~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-image-4.15.0-126-generic-lpae?distro=bionic ubuntu linux-image-4.15.0-126-generic-lpae < 4.15.0-126.129 bionic
Affected pkg:deb/ubuntu/linux-image-4.15.0-1103-oem?distro=bionic ubuntu linux-image-4.15.0-1103-oem < 4.15.0-1103.114 bionic
Affected pkg:deb/ubuntu/linux-image-4.15.0-1100-azure?distro=xenial ubuntu linux-image-4.15.0-1100-azure < 4.15.0-1100.111~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-image-4.15.0-1100-azure?distro=trusty ubuntu linux-image-4.15.0-1100-azure < 4.15.0-1100.111~14.04.1 trusty
Affected pkg:deb/ubuntu/linux-image-4.15.0-1100-azure?distro=bionic ubuntu linux-image-4.15.0-1100-azure < 4.15.0-1100.111 bionic
Affected pkg:deb/ubuntu/linux-image-4.15.0-1091-snapdragon?distro=bionic ubuntu linux-image-4.15.0-1091-snapdragon < 4.15.0-1091.100 bionic
Affected pkg:deb/ubuntu/linux-image-4.15.0-1088-gcp?distro=xenial ubuntu linux-image-4.15.0-1088-gcp < 4.15.0-1088.101~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-image-4.15.0-1088-gcp?distro=bionic ubuntu linux-image-4.15.0-1088-gcp < 4.15.0-1088.101 bionic
Affected pkg:deb/ubuntu/linux-image-4.15.0-1088-aws?distro=xenial ubuntu linux-image-4.15.0-1088-aws < 4.15.0-1088.93~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-image-4.15.0-1088-aws?distro=bionic ubuntu linux-image-4.15.0-1088-aws < 4.15.0-1088.93 bionic
Affected pkg:deb/ubuntu/linux-image-4.15.0-1079-kvm?distro=bionic ubuntu linux-image-4.15.0-1079-kvm < 4.15.0-1079.81 bionic
Affected pkg:deb/ubuntu/linux-image-4.15.0-1074-raspi2?distro=bionic ubuntu linux-image-4.15.0-1074-raspi2 < 4.15.0-1074.79 bionic
Affected pkg:deb/ubuntu/linux-image-4.15.0-1074-gke?distro=bionic ubuntu linux-image-4.15.0-1074-gke < 4.15.0-1074.79 bionic
Affected pkg:deb/ubuntu/linux-image-4.15.0-1059-oracle?distro=xenial ubuntu linux-image-4.15.0-1059-oracle < 4.15.0-1059.65~16.04.1 xenial
Affected pkg:deb/ubuntu/linux-image-4.15.0-1059-oracle?distro=bionic ubuntu linux-image-4.15.0-1059-oracle < 4.15.0-1059.65 bionic
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date