Early Access — Mondoo Vulnerability Intelligence is currently in preview.
linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities
It was discovered that the Marvell WiFi-Ex device driver in the Linux kernel did not properly validate ad-hoc SSIDs. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2020-36158)
Ryota Shiga discovered that the sockopt BPF hooks in the Linux kernel could allow a user space program to probe for valid kernel addresses. A local attacker could use this to ease exploitation of another kernel vulnerability. (CVE-2021-20239)
It was discovered that the priority inheritance futex implementation in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-3347)
吴异 discovered that the NFS implementation in the Linux kernel did not properly prevent access outside of an NFS export that is a subdirectory of a file system. An attacker could possibly use this to bypass NFS access restrictions. (CVE-2021-3178)
5.4.0-1039.41~18.04.15.4.0-1041.43~18.04.15.4.0-1038.41~18.04.15.4.0-1037.39~18.04.15.4.0-1011.12~18.04.25.4.0-67.75~18.04.15.4.0-1039.42~18.04.15.4.0-1030.33~18.04.15.4.0-67.755.4.0-1039.415.4.0-1041.435.4.0-1038.415.4.0-1011.125.4.0-1034.355.4.0-1039.425.4.0-1030.33