USN-4876-1

Details

Olivier Benjamin and Pawel Wieczorkiewicz discovered a race condition the Xen paravirt block backend in the Linux kernel, leading to a use-after-free vulnerability. An attacker in a guest VM could use this to cause a denial of service in the host OS. (CVE-2020-29569)

It was discovered that the Marvell WiFi-Ex device driver in the Linux kernel did not properly validate ad-hoc SSIDs. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2020-36158)

吴异 discovered that the NFS implementation in the Linux kernel did not properly prevent access outside of an NFS export that is a subdirectory of a file system. An attacker could possibly use this to bypass NFS access restrictions. (CVE-2021-3178)

Affected Packages

Ubuntu:16.04:LTSlinux

Fixed in:

4.4.0-204.236

Ubuntu:16.04:LTSlinux-aws

Fixed in:

4.4.0-1123.137

Ubuntu:16.04:LTSlinux-kvm

Fixed in:

4.4.0-1089.98

Ubuntu:16.04:LTSlinux-raspi2

Fixed in:

4.4.0-1147.157

Ubuntu:16.04:LTSlinux-snapdragon

Fixed in:

4.4.0-1151.161

Ubuntu:Pro:14.04:LTSlinux-aws

Fixed in:

4.4.0-1087.91

Ubuntu:Pro:14.04:LTSlinux-lts-xenial

Fixed in:

4.4.0-204.236~14.04.1

References

REPORThttps://ubuntu.com/security/CVE-2020-29569 REPORThttps://ubuntu.com/security/CVE-2020-36158 REPORThttps://ubuntu.com/security/CVE-2021-3178 ADVISORYhttps://ubuntu.com/security/notices/USN-4876-1

USN-4876-1

Details

Affected Packages

References

Upstream

Ecosystems

Timeline