Login
Newsletter
Werbung

Sicherheit: Mehrere Probleme in Linux (Aktualisierung)
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in Linux (Aktualisierung)
ID: USN-6766-2
Distribution: Ubuntu
Plattformen: Ubuntu 20.04 LTS, Ubuntu 22.04 LTS
Datum: Mi, 15. Mai 2024, 23:16
Referenzen: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52597
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2201
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26916
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52601
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52498
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26684
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26826
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26675
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52622
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52643
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26722
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26668
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52633
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26640
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52637
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52435
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52615
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26679
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52489
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26910
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52627
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52492
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52618
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52604
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52631
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52486
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52587
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26594
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26606
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26696
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26702
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26660
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26644
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26712
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52606
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26707
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26636
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52638
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26627
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26615
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52493
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26625
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26610
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26808
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26671
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52583
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26665
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26720
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52619
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26698
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26715
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26663
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1151
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52594
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52588
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26717
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26664
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26602
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52595
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52598
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52602
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52608
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52491
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52607
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52642
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52635
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26614
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26676
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26829
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52614
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52494
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52616
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26673
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26685
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26825
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26592
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26645
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26697
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26695
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26920
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-23849
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26689
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26600
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26593
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52599
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26608
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26641
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0001
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26704
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52617
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52623
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26635
Applikationen: Linux
Update von: Mehrere Probleme in Linux

Originalnachricht

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============3707244556144461282==
Content-Language: en-US
Content-Type: multipart/signed; micalg=pgp-sha256;
protocol="application/pgp-signature";
boundary="------------khRzt1wHfFSrmNCKCr13DwNA"

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--------------khRzt1wHfFSrmNCKCr13DwNA
Content-Type: multipart/mixed;
boundary="------------xzt0fRjQ870Sj1ZLItgqnnaU";
protected-headers="v1"
From: Rodrigo Figueiredo Zaiden <rodrigo.zaiden@canonical.com>
Reply-To: security@ubuntu.com
To: ubuntu-security-announce@lists.ubuntu.com
Message-ID: <1a85869c-c415-4c45-a2c2-6dbc87e19c49@canonical.com>
Subject: [USN-6766-2] Linux kernel vulnerabilities

--------------xzt0fRjQ870Sj1ZLItgqnnaU
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: base64

==========================================================================
Ubuntu Security Notice USN-6766-2
May 15, 2024

linux-hwe-5.15, linux-raspi vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:
- linux-raspi: Linux kernel for Raspberry Pi systems
- linux-hwe-5.15: Linux hardware enablement (HWE) kernel

Details:

It was discovered that the Open vSwitch implementation in the Linux kernel
could overflow its stack during recursive action operations under certain
conditions. A local attacker could use this to cause a denial of service
(system crash). (CVE-2024-1151)

Sander Wiebing, Alvise de Faveri Tron, Herbert Bos, and Cristiano Giuffrida
discovered that the Linux kernel mitigations for the initial Branch History
Injection vulnerability (CVE-2022-0001) were insufficient for Intel
processors. A local attacker could potentially use this to expose sensitive
information. (CVE-2024-2201)

Chenyuan Yang discovered that the RDS Protocol implementation in the Linux
kernel contained an out-of-bounds read vulnerability. An attacker could use
this to possibly cause a denial of service (system crash). (CVE-2024-23849)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- PowerPC architecture;
- S390 architecture;
- Core kernel;
- Block layer subsystem;
- Android drivers;
- Power management core;
- Bus devices;
- Hardware random number generator core;
- Cryptographic API;
- Device frequency;
- DMA engine subsystem;
- ARM SCMI message protocol;
- GPU drivers;
- HID subsystem;
- Hardware monitoring drivers;
- I2C subsystem;
- IIO ADC drivers;
- IIO subsystem;
- IIO Magnetometer sensors drivers;
- InfiniBand drivers;
- Media drivers;
- Network drivers;
- PCI driver for MicroSemi Switchtec;
- PHY drivers;
- SCSI drivers;
- DesignWare USB3 driver;
- BTRFS file system;
- Ceph distributed file system;
- Ext4 file system;
- F2FS file system;
- JFS file system;
- NILFS2 file system;
- NTFS3 file system;
- Pstore file system;
- SMB network file system;
- Memory management;
- CAN network layer;
- Networking core;
- HSR network protocol;
- IPv4 networking;
- IPv6 networking;
- Logical Link layer;
- Multipath TCP;
- Netfilter;
- NFC subsystem;
- SMC sockets;
- Sun RPC protocol;
- TIPC protocol;
- Unix domain sockets;
- Realtek audio codecs;
(CVE-2023-52594, CVE-2023-52601, CVE-2024-26826, CVE-2023-52622,
CVE-2024-26665, CVE-2023-52493, CVE-2023-52633, CVE-2024-26684,
CVE-2024-26663, CVE-2023-52618, CVE-2023-52588, CVE-2023-52637,
CVE-2024-26825, CVE-2023-52606, CVE-2024-26594, CVE-2024-26625,
CVE-2024-26720, CVE-2024-26614, CVE-2023-52627, CVE-2023-52602,
CVE-2024-26673, CVE-2024-26685, CVE-2023-52638, CVE-2023-52498,
CVE-2023-52619, CVE-2024-26910, CVE-2024-26689, CVE-2023-52583,
CVE-2024-26676, CVE-2024-26671, CVE-2024-26704, CVE-2024-26608,
CVE-2024-26610, CVE-2024-26592, CVE-2023-52599, CVE-2023-52595,
CVE-2024-26660, CVE-2023-52617, CVE-2024-26645, CVE-2023-52486,
CVE-2023-52631, CVE-2023-52607, CVE-2023-52608, CVE-2024-26722,
CVE-2024-26615, CVE-2023-52615, CVE-2024-26636, CVE-2023-52642,
CVE-2023-52587, CVE-2024-26712, CVE-2024-26675, CVE-2023-52614,
CVE-2024-26606, CVE-2024-26916, CVE-2024-26600, CVE-2024-26679,
CVE-2024-26829, CVE-2024-26641, CVE-2023-52623, CVE-2024-26627,
CVE-2024-26696, CVE-2024-26640, CVE-2024-26635, CVE-2023-52491,
CVE-2024-26664, CVE-2024-26602, CVE-2023-52604, CVE-2024-26717,
CVE-2023-52643, CVE-2024-26593, CVE-2023-52598, CVE-2024-26668,
CVE-2023-52435, CVE-2023-52597, CVE-2024-26715, CVE-2024-26707,
CVE-2023-52635, CVE-2024-26695, CVE-2024-26698, CVE-2023-52494,
CVE-2024-26920, CVE-2024-26808, CVE-2023-52616, CVE-2023-52492,
CVE-2024-26702, CVE-2024-26644, CVE-2023-52489, CVE-2024-26697)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS
linux-image-5.15.0-1054-raspi 5.15.0-1054.57
linux-image-raspi 5.15.0.1054.52
linux-image-raspi-nolpae 5.15.0.1054.52

Ubuntu 20.04 LTS
linux-image-5.15.0-106-generic 5.15.0-106.116~20.04.1
linux-image-5.15.0-106-generic-64k 5.15.0-106.116~20.04.1
linux-image-5.15.0-106-generic-lpae 5.15.0-106.116~20.04.1
linux-image-generic-64k-hwe-20.04 5.15.0.106.116~20.04.1
linux-image-generic-hwe-20.04 5.15.0.106.116~20.04.1
linux-image-generic-lpae-hwe-20.04 5.15.0.106.116~20.04.1
linux-image-oem-20.04 5.15.0.106.116~20.04.1
linux-image-oem-20.04b 5.15.0.106.116~20.04.1
linux-image-oem-20.04c 5.15.0.106.116~20.04.1
linux-image-oem-20.04d 5.15.0.106.116~20.04.1
linux-image-virtual-hwe-20.04 5.15.0.106.116~20.04.1

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
https://ubuntu.com/security/notices/USN-6766-2
https://ubuntu.com/security/notices/USN-6766-1
CVE-2023-52435, CVE-2023-52486, CVE-2023-52489, CVE-2023-52491,
CVE-2023-52492, CVE-2023-52493, CVE-2023-52494, CVE-2023-52498,
CVE-2023-52583, CVE-2023-52587, CVE-2023-52588, CVE-2023-52594,
CVE-2023-52595, CVE-2023-52597, CVE-2023-52598, CVE-2023-52599,
CVE-2023-52601, CVE-2023-52602, CVE-2023-52604, CVE-2023-52606,
CVE-2023-52607, CVE-2023-52608, CVE-2023-52614, CVE-2023-52615,
CVE-2023-52616, CVE-2023-52617, CVE-2023-52618, CVE-2023-52619,
CVE-2023-52622, CVE-2023-52623, CVE-2023-52627, CVE-2023-52631,
CVE-2023-52633, CVE-2023-52635, CVE-2023-52637, CVE-2023-52638,
CVE-2023-52642, CVE-2023-52643, CVE-2024-1151, CVE-2024-2201,
CVE-2024-23849, CVE-2024-26592, CVE-2024-26593, CVE-2024-26594,
CVE-2024-26600, CVE-2024-26602, CVE-2024-26606, CVE-2024-26608,
CVE-2024-26610, CVE-2024-26614, CVE-2024-26615, CVE-2024-26625,
CVE-2024-26627, CVE-2024-26635, CVE-2024-26636, CVE-2024-26640,
CVE-2024-26641, CVE-2024-26644, CVE-2024-26645, CVE-2024-26660,
CVE-2024-26663, CVE-2024-26664, CVE-2024-26665, CVE-2024-26668,
CVE-2024-26671, CVE-2024-26673, CVE-2024-26675, CVE-2024-26676,
CVE-2024-26679, CVE-2024-26684, CVE-2024-26685, CVE-2024-26689,
CVE-2024-26695, CVE-2024-26696, CVE-2024-26697, CVE-2024-26698,
CVE-2024-26702, CVE-2024-26704, CVE-2024-26707, CVE-2024-26712,
CVE-2024-26715, CVE-2024-26717, CVE-2024-26720, CVE-2024-26722,
CVE-2024-26808, CVE-2024-26825, CVE-2024-26826, CVE-2024-26829,
CVE-2024-26910, CVE-2024-26916, CVE-2024-26920

Package Information:
https://launchpad.net/ubuntu/+source/linux-raspi/5.15.0-1054.57
https://launchpad.net/ubuntu/+source/linux-hwe-5.15/5.15.0-106.116~20.04.1

--------------xzt0fRjQ870Sj1ZLItgqnnaU--

--------------khRzt1wHfFSrmNCKCr13DwNA
Content-Type: application/pgp-signature; name="OpenPGP_signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="OpenPGP_signature.asc"

-----BEGIN PGP SIGNATURE-----

wsB5BAABCAAjFiEEYrygdx1GDec9TV8EZ0GeRcM5nt0FAmZE1aUFAwAAAAAACgkQZ0GeRcM5nt2o
/ggAhvw81S+rBGPHow85/p5/TcAt/r+qPZTm44GJCexEWhu1+NVhkn4ZESGAtXg9vs3I4rt6Zl1j
ufudyBFojG9vaRnvuxX0HaT82I8UcLDBudC51uZiz6CR+PeF80y+VgvSFvQlzhPgva6UKqNh/Nl1
7dkujYHImU8UjxLW7KUgiuz31IxBeNsALvSUD5fW0n5xEbQOHGGd2rzsxLCLJN7IheSSc9XhxwSl
mYCPzoNewURkCuZBpzXIS2Q/NQ7z9tC8ztvo+i1qBUMdNyhWbynehVeU9XuXmDaYjTylkpwGQRhF
C9oohiaHPRMSRt54XnlB/fpaIOwmt/hyhQwB0+67ag==
=O+7R
-----END PGP SIGNATURE-----

--------------khRzt1wHfFSrmNCKCr13DwNA--


--===============3707244556144461282==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline

Cg==

--===============3707244556144461282==--
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung