Login
Newsletter
Werbung
Sicherheit: Mehrere Probleme in Linux
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in Linux
ID: USN-7428-2
Distribution: Ubuntu
Plattformen: Ubuntu 18.04 LTS
Datum: Do, 10. April 2025, 00:16
Referenzen: https://www.cve.org/CVERecord?id=CVE-2024-49948
https://www.cve.org/CVERecord?id=CVE-2024-50167
https://www.cve.org/CVERecord?id=CVE-2024-56658
https://www.cve.org/CVERecord?id=CVE-2025-21702
https://www.cve.org/CVERecord?id=CVE-2024-50302
https://www.cve.org/CVERecord?id=CVE-2021-47101
https://www.cve.org/CVERecord?id=CVE-2024-50265
https://www.cve.org/CVERecord?id=CVE-2021-47119
https://www.cve.org/CVERecord?id=CVE-2024-56615
https://www.cve.org/CVERecord?id=CVE-2024-49952
https://www.cve.org/CVERecord?id=CVE-2024-35973
https://www.cve.org/CVERecord?id=CVE-2024-46826
https://www.cve.org/CVERecord?id=CVE-2024-56600
https://www.cve.org/CVERecord?id=CVE-2025-21700
https://www.cve.org/CVERecord?id=CVE-2024-56595
https://www.cve.org/CVERecord?id=CVE-2024-53227
https://www.cve.org/CVERecord?id=CVE-2024-53165
https://www.cve.org/CVERecord?id=CVE-2022-23041
https://www.cve.org/CVERecord?id=CVE-2024-26863
https://www.cve.org/CVERecord?id=CVE-2024-35960
Applikationen: Linux

Originalnachricht

 
This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============2197231831524184300==
Content-Language: en-US
Content-Type: multipart/signed; micalg=pgp-sha256;
 protocol="application/pgp-signature";
 boundary="------------m0tvMVXVnqVwkoyUz5J372Sl"

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--------------m0tvMVXVnqVwkoyUz5J372Sl
Content-Type: multipart/mixed;
 boundary="------------q03ltiCkDubru0gL0JOreFCZ";
 protected-headers="v1"
From: Rodrigo Figueiredo Zaiden <rodrigo.zaiden@canonical.com>
Reply-To: "Security@Ubuntu.com" <Security@ubuntu.com>
To: ubuntu-security-announce@lists.ubuntu.com
Message-ID: <84016d2c-a129-4687-bde2-e2db145cc5a1@canonical.com>
Subject: [USN-7428-2] Linux kernel (FIPS) vulnerabilities

--------------q03ltiCkDubru0gL0JOreFCZ
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: base64

==========================================================================
Ubuntu Security Notice USN-7428-2
April 09, 2025

linux-fips, linux-aws-fips, linux-azure-fips, linux-gcp-fips
vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:
- linux-aws-fips: Linux kernel for Amazon Web Services (AWS) systems with FIPS
- linux-azure-fips: Linux kernel for Microsoft Azure Cloud systems with FIPS
- linux-fips: Linux kernel with FIPS
- linux-gcp-fips: Linux kernel for Google Cloud Platform (GCP) systems with 
FIPS

Details:

Demi Marie Obenour and Simon Gaiser discovered that several Xen para-
virtualization device frontends did not properly restrict the access rights
of device backends. An attacker could possibly use a malicious Xen backend
to gain access to memory pages of a guest VM or cause a denial of service
in the guest. (CVE-2022-23041)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
   - HID subsystem;
   - Network drivers;
   - Mellanox network drivers;
   - SCSI subsystem;
   - SuperH / SH-Mobile drivers;
   - File systems infrastructure;
   - Ext4 file system;
   - JFS file system;
   - IP tunnels definitions;
   - Network namespace;
   - BPF subsystem;
   - Networking core;
   - HSR network protocol;
   - IPv4 networking;
   - IPv6 networking;
   - Network traffic control;
(CVE-2024-56615, CVE-2024-56600, CVE-2025-21700, CVE-2024-56658,
CVE-2024-35960, CVE-2024-50265, CVE-2025-21702, CVE-2024-53227,
CVE-2024-53165, CVE-2024-50167, CVE-2024-26863, CVE-2024-35973,
CVE-2024-46826, CVE-2021-47119, CVE-2024-50302, CVE-2024-49952,
CVE-2021-47101, CVE-2024-49948, CVE-2024-56595)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS
   linux-image-4.15.0-1134-fips    4.15.0-1134.145
                                   Available with Ubuntu Pro
   linux-image-4.15.0-2080-gcp-fips  4.15.0-2080.86
                                   Available with Ubuntu Pro
   linux-image-4.15.0-2096-azure-fips  4.15.0-2096.102
                                   Available with Ubuntu Pro
   linux-image-4.15.0-2117-aws-fips  4.15.0-2117.123
                                   Available with Ubuntu Pro
   linux-image-aws-fips            4.15.0.2117.111
                                   Available with Ubuntu Pro
   linux-image-azure-fips          4.15.0.2096.92
                                   Available with Ubuntu Pro
   linux-image-fips                4.15.0.1134.131
                                   Available with Ubuntu Pro
   linux-image-gcp-fips            4.15.0.2080.78
                                   Available with Ubuntu Pro

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
   https://ubuntu.com/security/notices/USN-7428-2
   https://ubuntu.com/security/notices/USN-7428-1
   CVE-2021-47101, CVE-2021-47119, CVE-2022-23041, CVE-2024-26863,
   CVE-2024-35960, CVE-2024-35973, CVE-2024-46826, CVE-2024-49948,
   CVE-2024-49952, CVE-2024-50167, CVE-2024-50265, CVE-2024-50302,
   CVE-2024-53165, CVE-2024-53227, CVE-2024-56595, CVE-2024-56600,
   CVE-2024-56615, CVE-2024-56658, CVE-2025-21700, CVE-2025-21702

--------------q03ltiCkDubru0gL0JOreFCZ--

--------------m0tvMVXVnqVwkoyUz5J372Sl
Content-Type: application/pgp-signature; name="OpenPGP_signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="OpenPGP_signature.asc"

-----BEGIN PGP SIGNATURE-----

wsB5BAABCAAjFiEEYrygdx1GDec9TV8EZ0GeRcM5nt0FAmf2xcQFAwAAAAAACgkQZ0GeRcM5nt0D
2wf/VIzUe9RVlOz1GL3kx6q9FM+juMmc+W4QQxTuwUNWI4TDzjB7mRLRz8a68ohcocq8NmFl4wRL
NaFhjt8boYl5jOH75dFIGFutdxCIC5fj/uXNoD+mSmCOO70cgnY4sRHB2TqxIVRf5+fDflKyicAp
DJnlTJpDHbs/adOdJJ3iL34U+U+ChYITdn/bG7VsZqxcrc/cI/wP6yeOZ2xxpd0t/vgv4/wk5rqO
jOwTsTTMq91RQ5Pde6JCJFY+MhLfy8m4Cl98CxfNKMoqqEXb0S3fzNrhAAsi3fX8oh19ctES/f26
Lo1ivBF60HSJWl7KF0oF0GKeGSVW/7vVGkheVFzxog==
=Daam
-----END PGP SIGNATURE-----

--------------m0tvMVXVnqVwkoyUz5J372Sl--


--===============2197231831524184300==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline

Cg==

--===============2197231831524184300==--
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten

141
Mach­t's gut!

51
Neue Raspber­ry Pi-Va­ri­an­te mit 8 GB RAM

0
Genode 20.05 frei­ge­ge­ben

9
Sub­ver­si­on 1.14.0-LTS vor­ge­stellt

0
»Hum­ble Ci­ties: Sky­lines Bund­le« vor­ge­stellt

0
End of Life für Co­reOS Con­tai­ner Linux ver­kün­det

32
Elek­tra 0.9.2 er­schie­nen

8
Nex­tDNS ver­lässt die Be­ta-Pha­se

23
Tu­xe­do stellt Ga­mer-Note­book vor

0
Libre Gra­phics Mee­ting be­ginnt als On­li­ne-Va­ri­an­te
 
Werbung