Ubuntu alert USN-6869-1 (linux, linux-gcp, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-xilinx-zynqmp)
| From: | Rodrigo Figueiredo Zaiden <rodrigo.zaiden@canonical.com> | |
| To: | ubuntu-security-announce@lists.ubuntu.com | |
| Subject: | [USN-6869-1] Linux kernel vulnerabilities | |
| Date: | Wed, 03 Jul 2024 23:37:13 -0300 | |
| Message-ID: | <e5b69f00-4de7-412a-900d-7b53407e9a70@canonical.com> |
========================================================================== Ubuntu Security Notice USN-6869-1 July 04, 2024 linux, linux-gcp, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-xilinx-zynqmp vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux: Linux kernel - linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems - linux-lowlatency: Linux low latency kernel - linux-nvidia: Linux kernel for NVIDIA systems - linux-xilinx-zynqmp: Linux kernel for Xilinx ZynqMP processors - linux-lowlatency-hwe-5.15: Linux low latency kernel Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystem: - Netfilter; (CVE-2024-26924, CVE-2024-26643) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS linux-image-5.15.0-1031-xilinx-zynqmp 5.15.0-1031.35 linux-image-5.15.0-1059-nvidia 5.15.0-1059.60 linux-image-5.15.0-1059-nvidia-lowlatency 5.15.0-1059.60 linux-image-5.15.0-1063-gcp 5.15.0-1063.71 linux-image-5.15.0-113-generic 5.15.0-113.123 linux-image-5.15.0-113-generic-64k 5.15.0-113.123 linux-image-5.15.0-113-generic-lpae 5.15.0-113.123 linux-image-5.15.0-113-lowlatency 5.15.0-113.123 linux-image-5.15.0-113-lowlatency-64k 5.15.0-113.123 linux-image-gcp-lts-22.04 5.15.0.1063.59 linux-image-generic 5.15.0.113.113 linux-image-generic-64k 5.15.0.113.113 linux-image-generic-lpae 5.15.0.113.113 linux-image-lowlatency 5.15.0.113.104 linux-image-lowlatency-64k 5.15.0.113.104 linux-image-nvidia 5.15.0.1059.59 linux-image-nvidia-lowlatency 5.15.0.1059.59 linux-image-virtual 5.15.0.113.113 linux-image-xilinx-zynqmp 5.15.0.1031.35 Ubuntu 20.04 LTS linux-image-5.15.0-113-lowlatency 5.15.0-113.123~20.04.1 linux-image-5.15.0-113-lowlatency-64k 5.15.0-113.123~20.04.1 linux-image-lowlatency-64k-hwe-20.04 5.15.0.113.123~20.04.1 linux-image-lowlatency-hwe-20.04 5.15.0.113.123~20.04.1 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-6869-1 CVE-2024-26643, CVE-2024-26924 Package Information: https://launchpad.net/ubuntu/+source/linux/5.15.0-113.123 https://launchpad.net/ubuntu/+source/linux-gcp/5.15.0-106... https://launchpad.net/ubuntu/+source/linux-lowlatency/5.1... https://launchpad.net/ubuntu/+source/linux-nvidia/5.15.0-... https://launchpad.net/ubuntu/+source/linux-xilinx-zynqmp/... https://launchpad.net/ubuntu/+source/linux-lowlatency-hwe...
Attachment: OpenPGP_signature.asc (type=application/pgp-signature)
-----BEGIN PGP SIGNATURE----- wsB5BAABCAAjFiEEYrygdx1GDec9TV8EZ0GeRcM5nt0FAmaGCtoFAwAAAAAACgkQZ0GeRcM5nt0C BAf+L15FhVvyavsuMACiwE6D1BAn7L/LBCZmfPLWrYoVJ736Q0Qs17BOQJFni4d3RaepbSPaw95M FFF7/f4Vhq0dPXtNfdrYo+vNLUNgdw+lQAFGJJLECerIAKc5dxn7U0H2rA5sAwdD1/bhXTp3peLs b4GgwVMO/g2bmHn3wKNuy1djgWlrVjlps6LLkS2ZB3lf2m7ZusYbXXqFyGJWCw11lliLYdmoV29p 2wHsLimNx5zAN5bdlk+46AY7NK/TFXZ9auKdIoQC6/LzdWWeCgBw0GPSpAz2SNs75h6SHfS/UhNi meU9q9x0qFZtCTUhJhBMZJkXtO9rR7kqM4yV5cKztA== =Pl5Q -----END PGP SIGNATURE-----
Attachment: None (type=text/plain)