[USN-5002-1] Linux kernel (HWE) vulnerability
Severity
High
Affected Packages
7
CVEs
1
The system could be made to run programs as an administrator.
Norbert Slusarek discovered a race condition in the CAN BCM networking
protocol of the Linux kernel leading to multiple use-after-free
vulnerabilities. A local attacker could use this issue to execute arbitrary
code.
Package | Affected Version |
---|---|
pkg:deb/ubuntu/linux-image-raspi2-hwe-18.04?distro=bionic | < 5.3.0.1041.30 |
pkg:deb/ubuntu/linux-image-gkeop-5.3?distro=bionic | < 5.3.0.75.132 |
pkg:deb/ubuntu/linux-image-gke-5.3?distro=bionic | < 5.3.0.1044.27 |
pkg:deb/ubuntu/linux-image-5.3.0-75-lowlatency?distro=bionic | < 5.3.0-75.71 |
pkg:deb/ubuntu/linux-image-5.3.0-75-generic?distro=bionic | < 5.3.0-75.71 |
pkg:deb/ubuntu/linux-image-5.3.0-1044-gke?distro=bionic | < 5.3.0-1044.47 |
pkg:deb/ubuntu/linux-image-5.3.0-1041-raspi2?distro=bionic | < 5.3.0-1041.43 |
- ID
- USN-5002-1
- Severity
- high
- URL
- https://ubuntu.com/security/notices/USN-5002-1
- Published
-
2021-06-23T04:12:41
(3 years ago) - Modified
-
2021-06-23T04:12:41
(3 years ago) - Other Advisories
-
- ALAS-2021-1539
- ALSA-2021:3057
- ASA-202107-48
- ASA-202107-49
- ASA-202107-50
- ASA-202107-51
- DSA-4941-1
- ELSA-2021-3057
- ELSA-2021-9442
- ELSA-2021-9450
- ELSA-2021-9451
- ELSA-2021-9452
- ELSA-2021-9453
- FEDORA-2021-95f2f1cfc7
- FEDORA-2021-fe826f202e
- MS:CVE-2021-3609
- openSUSE-SU-2021:1076-1
- openSUSE-SU-2021:2427-1
- openSUSE-SU-2021:2645-1
- openSUSE-SU-2021:2687-1
- RHSA-2021:3044
- RHSA-2021:3057
- RHSA-2021:3088
- RLSA-2021:3057
- SUSE-SU-2021:2406-1
- SUSE-SU-2021:2407-1
- SUSE-SU-2021:2408-1
- SUSE-SU-2021:2416-1
- SUSE-SU-2021:2421-1
- SUSE-SU-2021:2422-1
- SUSE-SU-2021:2427-1
- SUSE-SU-2021:2438-1
- SUSE-SU-2021:2451-1
- SUSE-SU-2021:2599-1
- SUSE-SU-2021:2599-2
- SUSE-SU-2021:2643-1
- SUSE-SU-2021:2645-1
- SUSE-SU-2021:2687-1
- SUSE-SU-2021:2746-1
- SUSE-SU-2021:2842-1
- USN-4997-1
- USN-4997-2
- USN-4999-1
- USN-5000-1
- USN-5000-2
- USN-5001-1
- USN-5003-1
- USN-5082-1
- USN-5505-1
- USN-5513-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/linux-image-raspi2-hwe-18.04?distro=bionic | ubuntu | linux-image-raspi2-hwe-18.04 | < 5.3.0.1041.30 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-gkeop-5.3?distro=bionic | ubuntu | linux-image-gkeop-5.3 | < 5.3.0.75.132 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-gke-5.3?distro=bionic | ubuntu | linux-image-gke-5.3 | < 5.3.0.1044.27 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-5.3.0-75-lowlatency?distro=bionic | ubuntu | linux-image-5.3.0-75-lowlatency | < 5.3.0-75.71 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-5.3.0-75-generic?distro=bionic | ubuntu | linux-image-5.3.0-75-generic | < 5.3.0-75.71 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-5.3.0-1044-gke?distro=bionic | ubuntu | linux-image-5.3.0-1044-gke | < 5.3.0-1044.47 | bionic | ||
Affected | pkg:deb/ubuntu/linux-image-5.3.0-1041-raspi2?distro=bionic | ubuntu | linux-image-5.3.0-1041-raspi2 | < 5.3.0-1041.43 | bionic |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |