USN-5207-1

Details

Nadav Amit discovered that the hugetlb implementation in the Linux kernel did not perform TLB flushes under certain conditions. A local attacker could use this to leak or alter data from other processes that use huge pages. (CVE-2021-4002)

It was discovered that the eBPF implementation in the Linux kernel contained a race condition around read-only maps. A privileged attacker could use this to modify read-only maps. (CVE-2021-4001)

Luo Likang discovered that the FireDTV Firewire driver in the Linux kernel did not properly perform bounds checking in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-42739)

It was discovered that the TIPC Protocol implementation in the Linux kernel did not properly validate MSG_CRYPTO messages in some situations. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-43267)

Affected Packages

Ubuntu:20.04:LTSlinux-oem-5.10

Fixed in:

5.10.0-1053.55

References

REPORThttps://ubuntu.com/security/CVE-2021-4001 REPORThttps://ubuntu.com/security/CVE-2021-4002 REPORThttps://ubuntu.com/security/CVE-2021-42739 REPORThttps://ubuntu.com/security/CVE-2021-43267 ADVISORYhttps://ubuntu.com/security/notices/USN-5207-1

USN-5207-1

Details

Affected Packages

References

Upstream

Ecosystems

Timeline