Ubuntu alert USN-7236-1 (linux, linux-azure, linux-gcp, linux-gcp-6.8, linux-gke, linux-gkeop, linux-hwe-6.8, linux-ibm, linux-lowlatency, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oracle, linux-oracle-6.8, linux-raspi)
| From: | Rodrigo Figueiredo Zaiden <rodrigo.zaiden@canonical.com> | |
| To: | ubuntu-security-announce@lists.ubuntu.com | |
| Subject: | [USN-7236-1] Linux kernel vulnerabilities | |
| Date: | Tue, 28 Jan 2025 18:59:22 -0300 | |
| Message-ID: | <83a51099-f4a2-4625-84f4-588d2414cafa@canonical.com> |
========================================================================== Ubuntu Security Notice USN-7236-1 January 28, 2025 linux, linux-azure, linux-gcp, linux-gcp-6.8, linux-gke, linux-gkeop, linux-hwe-6.8, linux-ibm, linux-lowlatency, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oracle, linux-oracle-6.8, linux-raspi vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux: Linux kernel - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems - linux-gke: Linux kernel for Google Container Engine (GKE) systems - linux-gkeop: Linux kernel for Google Container Engine (GKE) systems - linux-ibm: Linux kernel for IBM cloud systems - linux-lowlatency: Linux low latency kernel - linux-nvidia: Linux kernel for NVIDIA systems - linux-nvidia-lowlatency: Linux low latency kernel for NVIDIA systems - linux-oracle: Linux kernel for Oracle Cloud systems - linux-raspi: Linux kernel for Raspberry Pi systems - linux-gcp-6.8: Linux kernel for Google Cloud Platform (GCP) systems - linux-hwe-6.8: Linux hardware enablement (HWE) kernel - linux-nvidia-6.8: Linux kernel for NVIDIA systems - linux-oracle-6.8: Linux kernel for Oracle Cloud systems Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; - VMware vSockets driver; (CVE-2024-53164, CVE-2024-53103, CVE-2024-53141) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.04 LTS linux-image-6.8.0-1004-gkeop 6.8.0-1004.6 linux-image-6.8.0-1017-gke 6.8.0-1017.21 linux-image-6.8.0-1018-raspi 6.8.0-1018.20 linux-image-6.8.0-1019-ibm 6.8.0-1019.19 linux-image-6.8.0-1019-oracle 6.8.0-1019.20 linux-image-6.8.0-1019-oracle-64k 6.8.0-1019.20 linux-image-6.8.0-1021-azure 6.8.0-1021.25 linux-image-6.8.0-1021-azure-fde 6.8.0-1021.25 linux-image-6.8.0-1021-gcp 6.8.0-1021.23 linux-image-6.8.0-1021-nvidia 6.8.0-1021.23 linux-image-6.8.0-1021-nvidia-64k 6.8.0-1021.23 linux-image-6.8.0-1021-nvidia-lowlatency 6.8.0-1021.23.1 linux-image-6.8.0-1021-nvidia-lowlatency-64k 6.8.0-1021.23.1 linux-image-6.8.0-52-generic 6.8.0-52.53 linux-image-6.8.0-52-generic-64k 6.8.0-52.53 linux-image-6.8.0-52-lowlatency 6.8.0-52.53.1 linux-image-6.8.0-52-lowlatency-64k 6.8.0-52.53.1 linux-image-azure 6.8.0-1021.25 linux-image-azure-fde 6.8.0-1021.25 linux-image-gcp 6.8.0-1021.23 linux-image-generic 6.8.0-52.53 linux-image-generic-64k 6.8.0-52.53 linux-image-generic-64k-hwe-24.04 6.8.0-52.53 linux-image-generic-hwe-24.04 6.8.0-52.53 linux-image-generic-lpae 6.8.0-52.53 linux-image-gke 6.8.0-1017.21 linux-image-gkeop 6.8.0-1004.6 linux-image-gkeop-6.8 6.8.0-1004.6 linux-image-ibm 6.8.0-1019.19 linux-image-ibm-classic 6.8.0-1019.19 linux-image-ibm-lts-24.04 6.8.0-1019.19 linux-image-kvm 6.8.0-52.53 linux-image-lowlatency 6.8.0-52.53.1 linux-image-lowlatency-64k 6.8.0-52.53.1 linux-image-lowlatency-64k-hwe-24.04 6.8.0-52.53.1 linux-image-lowlatency-hwe-24.04 6.8.0-52.53.1 linux-image-nvidia 6.8.0-1021.23 linux-image-nvidia-64k 6.8.0-1021.23 linux-image-nvidia-lowlatency 6.8.0-1021.23.1 linux-image-nvidia-lowlatency-64k 6.8.0-1021.23.1 linux-image-oracle 6.8.0-1019.20 linux-image-oracle-64k 6.8.0-1019.20 linux-image-raspi 6.8.0-1018.20 linux-image-virtual 6.8.0-52.53 linux-image-virtual-hwe-24.04 6.8.0-52.53 Ubuntu 22.04 LTS linux-image-6.8.0-1019-oracle 6.8.0-1019.20~22.04.1 linux-image-6.8.0-1019-oracle-64k 6.8.0-1019.20~22.04.1 linux-image-6.8.0-1021-gcp 6.8.0-1021.23~22.04.1 linux-image-6.8.0-1021-nvidia 6.8.0-1021.23~22.04.1 linux-image-6.8.0-1021-nvidia-64k 6.8.0-1021.23~22.04.1 linux-image-6.8.0-52-generic 6.8.0-52.53~22.04.1 linux-image-6.8.0-52-generic-64k 6.8.0-52.53~22.04.1 linux-image-gcp 6.8.0-1021.23~22.04.1 linux-image-generic-64k-hwe-22.04 6.8.0-52.53~22.04.1 linux-image-generic-hwe-22.04 6.8.0-52.53~22.04.1 linux-image-nvidia-6.8 6.8.0-1021.23~22.04.1 linux-image-nvidia-64k-6.8 6.8.0-1021.23~22.04.1 linux-image-nvidia-64k-hwe-22.04 6.8.0-1021.23~22.04.1 linux-image-nvidia-hwe-22.04 6.8.0-1021.23~22.04.1 linux-image-oem-22.04 6.8.0-52.53~22.04.1 linux-image-oem-22.04a 6.8.0-52.53~22.04.1 linux-image-oem-22.04b 6.8.0-52.53~22.04.1 linux-image-oem-22.04c 6.8.0-52.53~22.04.1 linux-image-oem-22.04d 6.8.0-52.53~22.04.1 linux-image-oracle 6.8.0-1019.20~22.04.1 linux-image-oracle-64k 6.8.0-1019.20~22.04.1 linux-image-oracle-edge 6.8.0-1019.20~22.04.1 linux-image-virtual-hwe-22.04 6.8.0-52.53~22.04.1 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7236-1 CVE-2024-53103, CVE-2024-53141, CVE-2024-53164 Package Information: https://launchpad.net/ubuntu/+source/linux/6.8.0-52.53 https://launchpad.net/ubuntu/+source/linux-azure/6.8.0-10... https://launchpad.net/ubuntu/+source/linux-gcp/6.8.0-1021.23 https://launchpad.net/ubuntu/+source/linux-gke/6.8.0-1017.21 https://launchpad.net/ubuntu/+source/linux-gkeop/6.8.0-10... https://launchpad.net/ubuntu/+source/linux-ibm/6.8.0-1019.19 https://launchpad.net/ubuntu/+source/linux-lowlatency/6.8... https://launchpad.net/ubuntu/+source/linux-nvidia/6.8.0-1... https://launchpad.net/ubuntu/+source/linux-nvidia-lowlate... https://launchpad.net/ubuntu/+source/linux-oracle/6.8.0-1... https://launchpad.net/ubuntu/+source/linux-raspi/6.8.0-10... https://launchpad.net/ubuntu/+source/linux-gcp-6.8/6.8.0-... https://launchpad.net/ubuntu/+source/linux-hwe-6.8/6.8.0-... https://launchpad.net/ubuntu/+source/linux-nvidia-6.8/6.8... https://launchpad.net/ubuntu/+source/linux-oracle-6.8/6.8...
Attachment: OpenPGP_signature.asc (type=application/pgp-signature)
-----BEGIN PGP SIGNATURE----- wsB5BAABCAAjFiEEYrygdx1GDec9TV8EZ0GeRcM5nt0FAmeZUzoFAwAAAAAACgkQZ0GeRcM5nt1m Hwf+Pm1/9RNBwyrfOe/L9MD8TPbQ4qnDRE3wK8lZiLoox036CtxkE3Q42abFAOF7B8X06XCWwkpV h7vflN+Pdn9ZGxlXoCJWHqsCWISh9z+8AUGJn2r7uAyvjTmA+RZwo6b+pud79XDaEg9yL5H3e+jT rkhq8iFf88PHrZfmE3RPH33hnchTpWJHFBws50ih1+tedrX2KF82SNTiuhU+coQNxBlJxMkGAc7G TnUc0dy2N/pge/N/+m4vV90aqsmUGOw14qGfqT8rPD5PKv7/+WchyI3fitHbWacs/QlNu+0/rs9p zYINesaozMTaoqfKjMFE1BKuOULKKUGg+AAgEAj6uA== =/HqR -----END PGP SIGNATURE-----
Attachment: None (type=text/plain)