{ "document": { "aggregate_severity": { "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "TuxCare License Agreement", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Cloud Linux Inc. and provide a link to the original.", "title": "Terms of Use" }, { "category": "details", "text": "* CVE-url: https://ubuntu.com/security/CVE-2022-43945\n - NFSD: Protect against send buffer overflow in NFSv3 READ\n * Focal update: v5.4.285 upstream stable release (LP: #2089233) //\n CVE-2024-49924 // CVE-url: https://ubuntu.com/security/CVE-2024-49924\n - fbdev: pxafb: Fix possible use after free in pxafb_task()\n * CVE-url: https://ubuntu.com/security/CVE-2025-38477\n - net/sched: sch_qfq: Fix race condition on qfq_aggregate\n - net/sched: sch_qfq: Avoid triggering might_sleep in atomic context in\n qfq_delete_class\n * CVE-url: https://ubuntu.com/security/CVE-2025-38618\n - vsock: Do not allow binding to VMADDR_PORT_ANY\n * CVE-url: https://ubuntu.com/security/CVE-2025-38617\n - net/packet: fix a race in packet_set_ring() and packet_notifier()\n * CVE-url: https://ubuntu.com/security/CVE-2025-21796\n - nfsd: clear acl_access/acl_default after releasing them\n * CVE-url: https://ubuntu.com/security/CVE-2022-48827\n - NFSD: Fix the behavior of READ near OFFSET_MAX\n * CVE-url: https://ubuntu.com/security/CVE-2021-47391\n - RDMA/cma: Ensure rdma_addr_cancel() happens before issuing more requests\n * CVE-url: https://ubuntu.com/security/CVE-2024-41069\n - ASoC: topology: Fix references to freed memory\n - ASoC: topology: Do not assign fields that are already set\n - ASoC: topology: Clean up route loading\n * CVE-url: https://ubuntu.com/security/CVE-2024-56616\n - drm/dp_mst: Fix MST sideband message body length check\n * Focal update: v5.4.261 upstream stable release (LP: #2049049) // CVE-url:\n https://ubuntu.com/security/CVE-2023-52868\n - thermal: core: prevent potential string overflow\n * Focal update: v5.4.262 upstream stable release (LP: #2049069) // CVE-url:\n https://ubuntu.com/security/CVE-2023-52836\n - locking/ww_mutex/test: Fix potential workqueue corruption\n * CVE-2024-35965 // CVE-url: https://ubuntu.com/security/CVE-2024-35965\n - Bluetooth: L2CAP: uninitialized variables in l2cap_sock_setsockopt()\n - Bluetooth: L2CAP: Fix not validating setsockopt user input\n * Focal update: v5.4.188 upstream stable release (LP: #1971496) // CVE-url:\n https://ubuntu.com/security/CVE-2022-49292\n - ALSA: oss: Fix PCM OSS buffer allocation overflow\n * Focal update: v5.4.262 upstream stable release (LP: #2049069) // CVE-url:\n https://ubuntu.com/security/CVE-2023-52835\n - perf/core: Bail out early if the request AUX area is out of bound\n * Focal update: v5.4.262 upstream stable release (LP: #2049069) // CVE-url:\n https://ubuntu.com/security/CVE-2023-52764\n - media: gspca: cpia1: shift-out-of-bounds in set_flicker\n * Focal update: v5.4.261 upstream stable release (LP: #2049049) // CVE-url:\n https://ubuntu.com/security/CVE-2023-52864\n - platform/x86: wmi: Fix probe failure when failing to register WMI devices\n - platform/x86: wmi: remove unnecessary initializations\n - platform/x86: wmi: Fix opening of char device\n * CVE-2024-35966 // CVE-url: https://ubuntu.com/security/CVE-2024-35966\n - Bluetooth: RFCOMM: Fix not validating setsockopt user input\n * CVE-2024-35967 // CVE-url: https://ubuntu.com/security/CVE-2024-35966\n - Bluetooth: SCO: Fix not validating setsockopt user input\n * Focal update: v5.4.291 upstream stable release (LP: #2106002) //\n CVE-2025-21704 // CVE-url: https://ubuntu.com/security/CVE-2025-21704\n - usb: cdc-acm: Check control transfer buffer size before access\n * CVE-url: https://ubuntu.com/security/CVE-2025-38350\n - net/sched: Always pass notifications when child class becomes empty\n * CVE-url: https://ubuntu.com/security/CVE-2025-37798\n - sch_htb: make htb_qlen_notify() idempotent", "title": "Details" } ], "publisher": { "category": "vendor", "contact_details": "https://tuxcare.com/contact/", "name": "TuxCare", "namespace": "https://tuxcare.com/" }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://security.tuxcare.com/csaf/v2/els_os/ubuntu18.04els/advisories/2025/clsa-2025_1760647898.json" }, { "category": "self", "summary": "https://cve.tuxcare.com/els/releases/CLSA-2025:1760647898", "url": "https://cve.tuxcare.com/els/releases/CLSA-2025:1760647898" } ], "tracking": { "current_release_date": "2025-10-16T20:55:24Z", "generator": { "date": "2025-10-16T20:55:24Z", "engine": { "name": "pyCSAF" } }, "id": "CLSA-2025:1760647898", "initial_release_date": "2025-10-16T20:55:24Z", "revision_history": [ { "date": "2025-10-16T20:55:24Z", "number": "1", "summary": "Initial version" } ], "status": "final", "version": "1" }, "title": "Fix of 22 CVEs" }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Ubuntu 18.04", "product": { "name": "Ubuntu 18.04", "product_id": "Ubuntu-18", "product_identification_helper": { "cpe": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" } } } ], "category": "product_family", "name": "Ubuntu" } ], "category": "vendor", "name": "Canonical Ltd." }, { "branches": [ { "branches": [ { "category": "product_version", "name": "linux-image-generic-0:4.15.0.252.263.amd64", "product": { "name": "linux-image-generic-0:4.15.0.252.263.amd64", "product_id": "linux-image-generic-0:4.15.0.252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-image-generic@4.15.0.252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-generic-0:4.15.0.252.263.amd64", "product": { "name": "linux-generic-0:4.15.0.252.263.amd64", "product_id": "linux-generic-0:4.15.0.252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-generic@4.15.0.252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "product": { "name": "linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "product_id": "linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-tools-4.15.0-252-tuxcare.els40@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product": { "name": "linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_id": "linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-headers-4.15.0-252-tuxcare.els40-generic@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product": { "name": "linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product_id": "linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-tools-4.15.0-252-tuxcare.els40-lowlatency@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product": { "name": "linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_id": "linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-buildinfo-4.15.0-252-tuxcare.els40-generic@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product": { "name": "linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_id": "linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-modules-4.15.0-252-tuxcare.els40-generic@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "product": { "name": "linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "product_id": "linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-cloud-tools-lowlatency@4.15.0.252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product": { "name": "linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product_id": "linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product": { "name": "linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product_id": "linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-headers-4.15.0-252-tuxcare.els40-lowlatency@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-libc-dev-0:4.15.0-252.263.amd64", "product": { "name": "linux-libc-dev-0:4.15.0-252.263.amd64", "product_id": "linux-libc-dev-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-libc-dev@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product": { "name": "linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product_id": "linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-image-lowlatency-0:4.15.0.252.263.amd64", "product": { "name": "linux-image-lowlatency-0:4.15.0.252.263.amd64", "product_id": "linux-image-lowlatency-0:4.15.0.252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-image-lowlatency@4.15.0.252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-lowlatency-0:4.15.0.252.263.amd64", "product": { "name": "linux-lowlatency-0:4.15.0.252.263.amd64", "product_id": "linux-lowlatency-0:4.15.0.252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-lowlatency@4.15.0.252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product": { "name": "linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_id": "linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-tools-4.15.0-252-tuxcare.els40-generic@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "product": { "name": "linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "product_id": "linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-cloud-tools-4.15.0-252-tuxcare.els40@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product": { "name": "linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_id": "linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-image-unsigned-4.15.0-252-tuxcare.els40-generic@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-headers-lowlatency-0:4.15.0.252.263.amd64", "product": { "name": "linux-headers-lowlatency-0:4.15.0.252.263.amd64", "product_id": "linux-headers-lowlatency-0:4.15.0.252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-headers-lowlatency@4.15.0.252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product": { "name": "linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_id": "linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-cloud-tools-4.15.0-252-tuxcare.els40-generic@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-crashdump-0:4.15.0.252.263.amd64", "product": { "name": "linux-crashdump-0:4.15.0.252.263.amd64", "product_id": "linux-crashdump-0:4.15.0.252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-crashdump@4.15.0.252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "product": { "name": "linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "product_id": "linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-cloud-tools-generic@4.15.0.252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product": { "name": "linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product_id": "linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-tools-generic-0:4.15.0.252.263.amd64", "product": { "name": "linux-tools-generic-0:4.15.0.252.263.amd64", "product_id": "linux-tools-generic-0:4.15.0.252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-tools-generic@4.15.0.252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product": { "name": "linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_id": "linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-modules-extra-4.15.0-252-tuxcare.els40-generic@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-tools-lowlatency-0:4.15.0.252.263.amd64", "product": { "name": "linux-tools-lowlatency-0:4.15.0.252.263.amd64", "product_id": "linux-tools-lowlatency-0:4.15.0.252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-tools-lowlatency@4.15.0.252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product": { "name": "linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product_id": "linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-modules-4.15.0-252-tuxcare.els40-lowlatency@4.15.0-252.263?arch=amd64" } } }, { "category": "product_version", "name": "linux-headers-generic-0:4.15.0.252.263.amd64", "product": { "name": "linux-headers-generic-0:4.15.0.252.263.amd64", "product_id": "linux-headers-generic-0:4.15.0.252.263.amd64", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-headers-generic@4.15.0.252.263?arch=amd64" } } } ], "category": "architecture", "name": "amd64" }, { "branches": [ { "category": "product_version", "name": "linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "product": { "name": "linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "product_id": "linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-headers-4.15.0-252-tuxcare.els40@4.15.0-252.263?arch=all" } } }, { "category": "product_version", "name": "linux-tools-host-0:4.15.0-252.263.all", "product": { "name": "linux-tools-host-0:4.15.0-252.263.all", "product_id": "linux-tools-host-0:4.15.0-252.263.all", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-tools-host@4.15.0-252.263?arch=all" } } }, { "category": "product_version", "name": "linux-doc-0:4.15.0-252.263.all", "product": { "name": "linux-doc-0:4.15.0-252.263.all", "product_id": "linux-doc-0:4.15.0-252.263.all", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-doc@4.15.0-252.263?arch=all" } } }, { "category": "product_version", "name": "linux-cloud-tools-common-0:4.15.0-252.263.all", "product": { "name": "linux-cloud-tools-common-0:4.15.0-252.263.all", "product_id": "linux-cloud-tools-common-0:4.15.0-252.263.all", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-cloud-tools-common@4.15.0-252.263?arch=all" } } }, { "category": "product_version", "name": "linux-source-4.15.0-0:4.15.0-252.263.all", "product": { "name": "linux-source-4.15.0-0:4.15.0-252.263.all", "product_id": "linux-source-4.15.0-0:4.15.0-252.263.all", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-source-4.15.0@4.15.0-252.263?arch=all" } } }, { "category": "product_version", "name": "linux-source-0:4.15.0.252.263.all", "product": { "name": "linux-source-0:4.15.0.252.263.all", "product_id": "linux-source-0:4.15.0.252.263.all", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-source@4.15.0.252.263?arch=all" } } }, { "category": "product_version", "name": "linux-tools-common-0:4.15.0-252.263.all", "product": { "name": "linux-tools-common-0:4.15.0-252.263.all", "product_id": "linux-tools-common-0:4.15.0-252.263.all", "product_identification_helper": { "purl": "pkg:deb/cloudlinux/linux-tools-common@4.15.0-252.263?arch=all" } } } ], "category": "architecture", "name": "all" } ], "category": "vendor", "name": "CloudLinux" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "linux-image-generic-0:4.15.0.252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64" }, "product_reference": "linux-image-generic-0:4.15.0.252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-generic-0:4.15.0.252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64" }, "product_reference": "linux-generic-0:4.15.0.252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64" }, "product_reference": "linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64" }, "product_reference": "linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64" }, "product_reference": "linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all" }, "product_reference": "linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64" }, "product_reference": "linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-tools-host-0:4.15.0-252.263.all as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all" }, "product_reference": "linux-tools-host-0:4.15.0-252.263.all", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-doc-0:4.15.0-252.263.all as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-doc-0:4.15.0-252.263.all" }, "product_reference": "linux-doc-0:4.15.0-252.263.all", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64" }, "product_reference": "linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64" }, "product_reference": "linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64" }, "product_reference": "linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64" }, "product_reference": "linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-libc-dev-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64" }, "product_reference": "linux-libc-dev-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64" }, "product_reference": "linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-image-lowlatency-0:4.15.0.252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64" }, "product_reference": "linux-image-lowlatency-0:4.15.0.252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-lowlatency-0:4.15.0.252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64" }, "product_reference": "linux-lowlatency-0:4.15.0.252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64" }, "product_reference": "linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-cloud-tools-common-0:4.15.0-252.263.all as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all" }, "product_reference": "linux-cloud-tools-common-0:4.15.0-252.263.all", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64" }, "product_reference": "linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64" }, "product_reference": "linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-headers-lowlatency-0:4.15.0.252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64" }, "product_reference": "linux-headers-lowlatency-0:4.15.0.252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-source-4.15.0-0:4.15.0-252.263.all as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all" }, "product_reference": "linux-source-4.15.0-0:4.15.0-252.263.all", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64" }, "product_reference": "linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-crashdump-0:4.15.0.252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64" }, "product_reference": "linux-crashdump-0:4.15.0.252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-cloud-tools-generic-0:4.15.0.252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64" }, "product_reference": "linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64" }, "product_reference": "linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-tools-generic-0:4.15.0.252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64" }, "product_reference": "linux-tools-generic-0:4.15.0.252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64" }, "product_reference": "linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-tools-lowlatency-0:4.15.0.252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" }, "product_reference": "linux-tools-lowlatency-0:4.15.0.252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-source-0:4.15.0.252.263.all as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-source-0:4.15.0.252.263.all" }, "product_reference": "linux-source-0:4.15.0.252.263.all", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64" }, "product_reference": "linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-tools-common-0:4.15.0-252.263.all as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all" }, "product_reference": "linux-tools-common-0:4.15.0-252.263.all", "relates_to_product_reference": "Ubuntu-18" }, { "category": "default_component_of", "full_product_name": { "name": "linux-headers-generic-0:4.15.0.252.263.amd64 as a component of Ubuntu 18.04", "product_id": "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64" }, "product_reference": "linux-headers-generic-0:4.15.0.252.263.amd64", "relates_to_product_reference": "Ubuntu-18" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-52835", "cwe": { "id": "CWE-129", "name": "Improper Validation of Array Index" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/core: Bail out early if the request AUX area is out of bound\n\nWhen perf-record with a large AUX area, e.g 4GB, it fails with:\n\n #perf record -C 0 -m ,4G -e arm_spe_0// -- sleep 1\n failed to mmap with 12 (Cannot allocate memory)\n\nand it reveals a WARNING with __alloc_pages():\n\n\t------------[ cut here ]------------\n\tWARNING: CPU: 44 PID: 17573 at mm/page_alloc.c:5568 __alloc_pages+0x1ec/0x248\n\tCall trace:\n\t __alloc_pages+0x1ec/0x248\n\t __kmalloc_large_node+0xc0/0x1f8\n\t __kmalloc_node+0x134/0x1e8\n\t rb_alloc_aux+0xe0/0x298\n\t perf_mmap+0x440/0x660\n\t mmap_region+0x308/0x8a8\n\t do_mmap+0x3c0/0x528\n\t vm_mmap_pgoff+0xf4/0x1b8\n\t ksys_mmap_pgoff+0x18c/0x218\n\t __arm64_sys_mmap+0x38/0x58\n\t invoke_syscall+0x50/0x128\n\t el0_svc_common.constprop.0+0x58/0x188\n\t do_el0_svc+0x34/0x50\n\t el0_svc+0x34/0x108\n\t el0t_64_sync_handler+0xb8/0xc0\n\t el0t_64_sync+0x1a4/0x1a8\n\n'rb->aux_pages' allocated by kcalloc() is a pointer array which is used to\nmaintains AUX trace pages. The allocated page for this array is physically\ncontiguous (and virtually contiguous) with an order of 0..MAX_ORDER. If the\nsize of pointer array crosses the limitation set by MAX_ORDER, it reveals a\nWARNING.\n\nSo bail out early with -ENOMEM if the request AUX area is out of bound,\ne.g.:\n\n #perf record -C 0 -m ,4G -e arm_spe_0// -- sleep 1\n failed to mmap with 12 (Cannot allocate memory)", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2023-52835" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/1a2a4202c60fcdffbf04f259002ce9bff39edece", "url": "https://git.kernel.org/stable/c/1a2a4202c60fcdffbf04f259002ce9bff39edece" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/2424410f94a94d91230ced094062d859714c984a", "url": "https://git.kernel.org/stable/c/2424410f94a94d91230ced094062d859714c984a" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/2e905e608e38cf7f8dcddcf8a6036e91a78444cb", "url": "https://git.kernel.org/stable/c/2e905e608e38cf7f8dcddcf8a6036e91a78444cb" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/54aee5f15b83437f23b2b2469bcf21bdd9823916", "url": "https://git.kernel.org/stable/c/54aee5f15b83437f23b2b2469bcf21bdd9823916" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/788c0b3442ead737008934947730a6d1ff703734", "url": "https://git.kernel.org/stable/c/788c0b3442ead737008934947730a6d1ff703734" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/8c504f615d7ed60ae035c51d0c789137ced6797f", "url": "https://git.kernel.org/stable/c/8c504f615d7ed60ae035c51d0c789137ced6797f" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/9ce4e87a8efd37c85766ec08b15e885cab08553a", "url": "https://git.kernel.org/stable/c/9ce4e87a8efd37c85766ec08b15e885cab08553a" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/fd0df3f8719201dbe61a4d39083d5aecd705399a", "url": "https://git.kernel.org/stable/c/fd0df3f8719201dbe61a4d39083d5aecd705399a" } ], "release_date": "2024-05-21T16:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2023-52836", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlocking/ww_mutex/test: Fix potential workqueue corruption\n\nIn some cases running with the test-ww_mutex code, I was seeing\nodd behavior where sometimes it seemed flush_workqueue was\nreturning before all the work threads were finished.\n\nOften this would cause strange crashes as the mutexes would be\nfreed while they were being used.\n\nLooking at the code, there is a lifetime problem as the\ncontrolling thread that spawns the work allocates the\n\"struct stress\" structures that are passed to the workqueue\nthreads. Then when the workqueue threads are finished,\nthey free the stress struct that was passed to them.\n\nUnfortunately the workqueue work_struct node is in the stress\nstruct. Which means the work_struct is freed before the work\nthread returns and while flush_workqueue is waiting.\n\nIt seems like a better idea to have the controlling thread\nboth allocate and free the stress structures, so that we can\nbe sure we don't corrupt the workqueue by freeing the structure\nprematurely.\n\nSo this patch reworks the test to do so, and with this change\nI no longer see the early flush_workqueue returns.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2023-52836" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/304a2c4aad0fff887ce493e4197bf9cbaf394479", "url": "https://git.kernel.org/stable/c/304a2c4aad0fff887ce493e4197bf9cbaf394479" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/9ed2d68b3925145f5f51c46559484881d6082f75", "url": "https://git.kernel.org/stable/c/9ed2d68b3925145f5f51c46559484881d6082f75" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/bccdd808902f8c677317cec47c306e42b93b849e", "url": "https://git.kernel.org/stable/c/bccdd808902f8c677317cec47c306e42b93b849e" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/c56df79d68677cf062da1b6e3b33e74299a92dfc", "url": "https://git.kernel.org/stable/c/c56df79d68677cf062da1b6e3b33e74299a92dfc" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/d4d37c9e6a4dbcca958dabd99216550525c7e389", "url": "https://git.kernel.org/stable/c/d4d37c9e6a4dbcca958dabd99216550525c7e389" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/d8267cabbe1bed15ccf8b0e684c528bf8eeef715", "url": "https://git.kernel.org/stable/c/d8267cabbe1bed15ccf8b0e684c528bf8eeef715" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/dcd85e3c929368076a7592b27f541e0da8b427f5", "url": "https://git.kernel.org/stable/c/dcd85e3c929368076a7592b27f541e0da8b427f5" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/e36407713163363e65566e7af0abe207d5f59a0c", "url": "https://git.kernel.org/stable/c/e36407713163363e65566e7af0abe207d5f59a0c" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/e89d0ed45a419c485bae999426ecf92697cbdda3", "url": "https://git.kernel.org/stable/c/e89d0ed45a419c485bae999426ecf92697cbdda3" } ], "release_date": "2024-05-21T16:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-21796", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\nnfsd: clear acl_access/acl_default after releasing them\nIf getting acl_default fails, acl_access and acl_default will be released\nsimultaneously. However, acl_access will still retain a pointer pointing\nto the released posix_acl, which will trigger a WARNING in\nnfs3svc_release_getacl like this:\n------------[ cut here ]------------\nrefcount_t: underflow; use-after-free.\nWARNING: CPU: 26 PID: 3199 at lib/refcount.c:28\nrefcount_warn_saturate+0xb5/0x170\nModules linked in:\nCPU: 26 UID: 0 PID: 3199 Comm: nfsd Not tainted\n6.12.0-rc6-00079-g04ae226af01f-dirty #8\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb5/0x170\nCode: cc cc 0f b6 1d b3 20 a5 03 80 fb 01 0f 87 65 48 d8 00 83 e3 01 75\ne4 48 c7 c7 c0 3b 9b 85 c6 05 97 20 a5 03 01 e8 fb 3e 30 ff <0f> 0b eb\ncd 0f b6 1d 8a3\nRSP: 0018:ffffc90008637cd8 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff83904fde\nRDX: dffffc0000000000 RSI: 0000000000000008 RDI: ffff88871ed36380\nRBP: ffff888158beeb40 R08: 0000000000000001 R09: fffff520010c6f56\nR10: ffffc90008637ab7 R11: 0000000000000001 R12: 0000000000000001\nR13: ffff888140e77400 R14: ffff888140e77408 R15: ffffffff858b42c0\nFS: 0000000000000000(0000) GS:ffff88871ed00000(0000)\nknlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000562384d32158 CR3: 000000055cc6a000 CR4: 00000000000006f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n\n? refcount_warn_saturate+0xb5/0x170\n? __warn+0xa5/0x140\n? refcount_warn_saturate+0xb5/0x170\n? report_bug+0x1b1/0x1e0\n? handle_bug+0x53/0xa0\n? exc_invalid_op+0x17/0x40\n? asm_exc_invalid_op+0x1a/0x20\n? tick_nohz_tick_stopped+0x1e/0x40\n? refcount_warn_saturate+0xb5/0x170\n? refcount_warn_saturate+0xb5/0x170\nnfs3svc_release_getacl+0xc9/0xe0\nsvc_process_common+0x5db/0xb60\n? __pfx_svc_process_common+0x10/0x10\n? __rcu_read_unlock+0x69/0xa0\n? __pfx_nfsd_dispatch+0x10/0x10\n? svc_xprt_received+0xa1/0x120\n? xdr_init_decode+0x11d/0x190\nsvc_process+0x2a7/0x330\nsvc_handle_xprt+0x69d/0x940\nsvc_recv+0x180/0x2d0\nnfsd+0x168/0x200\n? __pfx_nfsd+0x10/0x10\nkthread+0x1a2/0x1e0\n? kthread+0xf4/0x1e0\n? __pfx_kthread+0x10/0x10\nret_from_fork+0x34/0x60\n? __pfx_kthread+0x10/0x10\nret_from_fork_asm+0x1a/0x30\n\nKernel panic - not syncing: kernel: panic_on_warn set ...\nClear acl_access/acl_default after posix_acl_release is called to prevent\nUAF from being triggered.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-21796" } ], "release_date": "2025-02-27T00:00:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] }, { "cve": "CVE-2025-38477", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\nnet/sched: sch_qfq: Fix race condition on qfq_aggregate\nA race condition can occur when 'agg' is modified in qfq_change_agg\n(called during qfq_enqueue) while other threads access it\nconcurrently. For example, qfq_dump_class may trigger a NULL\ndereference, and qfq_delete_class may cause a use-after-free.\nThis patch addresses the issue by:\n1. Moved qfq_destroy_class into the critical section.\n2. Added sch_tree_lock protection to qfq_dump_class and\nqfq_dump_class_stats.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-38477" } ], "release_date": "2025-07-28T00:00:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2022-49292", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: oss: Fix PCM OSS buffer allocation overflow\n\nWe've got syzbot reports hitting INT_MAX overflow at vmalloc()\nallocation that is called from snd_pcm_plug_alloc(). Although we\napply the restrictions to input parameters, it's based only on the\nhw_params of the underlying PCM device. Since the PCM OSS layer\nallocates a temporary buffer for the data conversion, the size may\nbecome unexpectedly large when more channels or higher rates is given;\nin the reported case, it went over INT_MAX, hence it hits WARN_ON().\n\nThis patch is an attempt to avoid such an overflow and an allocation\nfor too large buffers. First off, it adds the limit of 1MB as the\nupper bound for period bytes. This must be large enough for all use\ncases, and we really don't want to handle a larger temporary buffer\nthan this size. The size check is performed at two places, where the\noriginal period bytes is calculated and where the plugin buffer size\nis calculated.\n\nIn addition, the driver uses array_size() and array3_size() for\nmultiplications to catch overflows for the converted period size and\nbuffer bytes.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2022-49292" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/0c4190b41a69990666b4000999e27f8f1b2a426b", "url": "https://git.kernel.org/stable/c/0c4190b41a69990666b4000999e27f8f1b2a426b" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/5ce74ff7059341d8b2f4d01c3383491df63d1898", "url": "https://git.kernel.org/stable/c/5ce74ff7059341d8b2f4d01c3383491df63d1898" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/7a40cbf3579a8e14849ba7ce46309c1992658d2b", "url": "https://git.kernel.org/stable/c/7a40cbf3579a8e14849ba7ce46309c1992658d2b" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/a63af1baf0a5e11827db60e3127f87e437cab6e5", "url": "https://git.kernel.org/stable/c/a63af1baf0a5e11827db60e3127f87e437cab6e5" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/e74a069c6a7bb505f3ade141dddf85f4b0b5145a", "url": "https://git.kernel.org/stable/c/e74a069c6a7bb505f3ade141dddf85f4b0b5145a" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/efb6402c3c4a7c26d97c92d70186424097b6e366", "url": "https://git.kernel.org/stable/c/efb6402c3c4a7c26d97c92d70186424097b6e366" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/fb08bf99195a87c798bc8ae1357337a981faeade", "url": "https://git.kernel.org/stable/c/fb08bf99195a87c798bc8ae1357337a981faeade" } ], "release_date": "2025-02-26T07:01:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2022-48827", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Fix the behavior of READ near OFFSET_MAX\n\nDan Aloni reports:\n> Due to commit 8cfb9015280d (\"NFS: Always provide aligned buffers to\n> the RPC read layers\") on the client, a read of 0xfff is aligned up\n> to server rsize of 0x1000.\n>\n> As a result, in a test where the server has a file of size\n> 0x7fffffffffffffff, and the client tries to read from the offset\n> 0x7ffffffffffff000, the read causes loff_t overflow in the server\n> and it returns an NFS code of EINVAL to the client. The client as\n> a result indefinitely retries the request.\n\nThe Linux NFS client does not handle NFS?ERR_INVAL, even though all\nNFS specifications permit servers to return that status code for a\nREAD.\n\nInstead of NFS?ERR_INVAL, have out-of-range READ requests succeed\nand return a short result. Set the EOF flag in the result to prevent\nthe client from retrying the READ request. This behavior appears to\nbe consistent with Solaris NFS servers.\n\nNote that NFSv3 and NFSv4 use u64 offset values on the wire. These\nmust be converted to loff_t internally before use -- an implicit\ntype cast is not adequate for this purpose. Otherwise VFS checks\nagainst sb->s_maxbytes do not work properly.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2022-48827" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/0cb4d23ae08c48f6bf3c29a8e5c4a74b8388b960", "url": "https://git.kernel.org/stable/c/0cb4d23ae08c48f6bf3c29a8e5c4a74b8388b960" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/1726a39b0879acfb490b22dca643f26f4f907da9", "url": "https://git.kernel.org/stable/c/1726a39b0879acfb490b22dca643f26f4f907da9" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/44502aca8e02ab32d6b0eb52e006a5ec9402719b", "url": "https://git.kernel.org/stable/c/44502aca8e02ab32d6b0eb52e006a5ec9402719b" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/c6eff5c4277146a78b4fb8c9b668dd64542c41b0", "url": "https://git.kernel.org/stable/c/c6eff5c4277146a78b4fb8c9b668dd64542c41b0" } ], "release_date": "2024-07-16T12:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2021-47391", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cma: Ensure rdma_addr_cancel() happens before issuing more requests\n\nThe FSM can run in a circle allowing rdma_resolve_ip() to be called twice\non the same id_priv. While this cannot happen without going through the\nwork, it violates the invariant that the same address resolution\nbackground request cannot be active twice.\n\n CPU 1 CPU 2\n\nrdma_resolve_addr():\n RDMA_CM_IDLE -> RDMA_CM_ADDR_QUERY\n rdma_resolve_ip(addr_handler) #1\n\n\t\t\t process_one_req(): for #1\n addr_handler():\n RDMA_CM_ADDR_QUERY -> RDMA_CM_ADDR_BOUND\n mutex_unlock(&id_priv->handler_mutex);\n [.. handler still running ..]\n\nrdma_resolve_addr():\n RDMA_CM_ADDR_BOUND -> RDMA_CM_ADDR_QUERY\n rdma_resolve_ip(addr_handler)\n !! two requests are now on the req_list\n\nrdma_destroy_id():\n destroy_id_handler_unlock():\n _destroy_id():\n cma_cancel_operation():\n rdma_addr_cancel()\n\n // process_one_req() self removes it\n\t\t spin_lock_bh(&lock);\n cancel_delayed_work(&req->work);\n\t if (!list_empty(&req->list)) == true\n\n ! rdma_addr_cancel() returns after process_on_req #1 is done\n\n kfree(id_priv)\n\n\t\t\t process_one_req(): for #2\n addr_handler():\n\t mutex_lock(&id_priv->handler_mutex);\n !! Use after free on id_priv\n\nrdma_addr_cancel() expects there to be one req on the list and only\ncancels the first one. The self-removal behavior of the work only happens\nafter the handler has returned. This yields a situations where the\nreq_list can have two reqs for the same \"handle\" but rdma_addr_cancel()\nonly cancels the first one.\n\nThe second req remains active beyond rdma_destroy_id() and will\nuse-after-free id_priv once it inevitably triggers.\n\nFix this by remembering if the id_priv has called rdma_resolve_ip() and\nalways cancel before calling it again. This ensures the req_list never\ngets more than one item in it and doesn't cost anything in the normal flow\nthat never uses this strange error path.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2021-47391" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/03d884671572af8bcfbc9e63944c1021efce7589", "url": "https://git.kernel.org/stable/c/03d884671572af8bcfbc9e63944c1021efce7589" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/305d568b72f17f674155a2a8275f865f207b3808", "url": "https://git.kernel.org/stable/c/305d568b72f17f674155a2a8275f865f207b3808" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/9a085fa9b7d644a234465091e038c1911e1a4f2a", "url": "https://git.kernel.org/stable/c/9a085fa9b7d644a234465091e038c1911e1a4f2a" } ], "release_date": "2024-05-21T15:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-38618", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\nvsock: Do not allow binding to VMADDR_PORT_ANY\nIt is possible for a vsock to autobind to VMADDR_PORT_ANY. This can\ncause a use-after-free when a connection is made to the bound socket.\nThe socket returned by accept() also has port VMADDR_PORT_ANY but is not\non the list of unbound sockets. Binding it will result in an extra\nrefcount decrement similar to the one fixed in fcdd2242c023 (vsock: Keep\nthe binding until socket destruction).\nModify the check in __vsock_bind_connectible() to also prevent binding\nto VMADDR_PORT_ANY.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-38618" } ], "release_date": "2025-08-22T00:00:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] }, { "cve": "CVE-2025-38617", "cwe": { "id": "CWE-366", "name": "Race Condition within a Thread" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\nnet/packet: fix a race in packet_set_ring() and packet_notifier()\nWhen packet_set_ring() releases po->bind_lock, another thread can\nrun packet_notifier() and process an NETDEV_UP event.\nThis race and the fix are both similar to that of commit 15fe076edea7\n(\"net/packet: fix a race in packet_bind() and packet_notifier()\").\nThere too the packet_notifier NETDEV_UP event managed to run while a\npo->bind_lock critical section had to be temporarily released. And\nthe fix was similarly to temporarily set po->num to zero to keep\nthe socket unhooked until the lock is retaken.\nThe po->bind_lock in packet_set_ring and packet_notifier precede the\nintroduction of git history.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-38617" } ], "release_date": "2025-08-22T00:00:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 4.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] }, { "cve": "CVE-2024-41069", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: topology: Fix references to freed memory\n\nMost users after parsing a topology file, release memory used by it, so\nhaving pointer references directly into topology file contents is wrong.\nUse devm_kmemdup(), to allocate memory as needed.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2024-41069" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/97ab304ecd95c0b1703ff8c8c3956dc6e2afe8e1", "url": "https://git.kernel.org/stable/c/97ab304ecd95c0b1703ff8c8c3956dc6e2afe8e1" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/ab5a6208b4d6872b1c6ecea1867940fc668cc76d", "url": "https://git.kernel.org/stable/c/ab5a6208b4d6872b1c6ecea1867940fc668cc76d" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/b188d7f3dfab10e332e3c1066e18857964a520d2", "url": "https://git.kernel.org/stable/c/b188d7f3dfab10e332e3c1066e18857964a520d2" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/ccae5c6a1fab9494c86b7856faf05e296c617702", "url": "https://git.kernel.org/stable/c/ccae5c6a1fab9494c86b7856faf05e296c617702" } ], "release_date": "2024-07-29T15:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2023-52868", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: core: prevent potential string overflow\n\nThe dev->id value comes from ida_alloc() so it's a number between zero\nand INT_MAX. If it's too high then these sprintf()s will overflow.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2023-52868" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/0f6b3be28c4d62ef6498133959c72266629bea97", "url": "https://git.kernel.org/stable/c/0f6b3be28c4d62ef6498133959c72266629bea97" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/3091ab943dfc7b2578599b0fe203350286fab5bb", "url": "https://git.kernel.org/stable/c/3091ab943dfc7b2578599b0fe203350286fab5bb" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/3a8f4e58e1ee707b4f46a1000b40b86ea3dd509c", "url": "https://git.kernel.org/stable/c/3a8f4e58e1ee707b4f46a1000b40b86ea3dd509c" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/3f795fb35c2d8a637efe76b4518216c9319b998c", "url": "https://git.kernel.org/stable/c/3f795fb35c2d8a637efe76b4518216c9319b998c" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/6ad1bf47fbe5750c4d5d8e41337665e193e2c521", "url": "https://git.kernel.org/stable/c/6ad1bf47fbe5750c4d5d8e41337665e193e2c521" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/77ff34a56b695e228e6daf30ee30be747973d6e8", "url": "https://git.kernel.org/stable/c/77ff34a56b695e228e6daf30ee30be747973d6e8" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/b55f0a9f865be75ca1019aad331f3225f7b50ce8", "url": "https://git.kernel.org/stable/c/b55f0a9f865be75ca1019aad331f3225f7b50ce8" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/c99626092efca3061b387043d4a7399bf75fbdd5", "url": "https://git.kernel.org/stable/c/c99626092efca3061b387043d4a7399bf75fbdd5" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/edbd6bbe40ac524a8f2273ffacc53edf14f3c686", "url": "https://git.kernel.org/stable/c/edbd6bbe40ac524a8f2273ffacc53edf14f3c686" } ], "release_date": "2024-05-21T16:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2024-56616", "cwe": { "id": "CWE-129", "name": "Improper Validation of Array Index" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Fix MST sideband message body length check\n\nFix the MST sideband message body length check, which must be at least 1\nbyte accounting for the message body CRC (aka message data CRC) at the\nend of the message.\n\nThis fixes a case where an MST branch device returns a header with a\ncorrect header CRC (indicating a correctly received body length), with\nthe body length being incorrectly set to 0. This will later lead to a\nmemory corruption in drm_dp_sideband_append_payload() and the following\nerrors in dmesg:\n\n UBSAN: array-index-out-of-bounds in drivers/gpu/drm/display/drm_dp_mst_topology.c:786:25\n index -1 is out of range for type 'u8 [48]'\n Call Trace:\n drm_dp_sideband_append_payload+0x33d/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]\n\n memcpy: detected field-spanning write (size 18446744073709551615) of single field \"&msg->msg[msg->curlen]\" at drivers/gpu/drm/display/drm_dp_mst_topology.c:791 (size 256)\n Call Trace:\n drm_dp_sideband_append_payload+0x324/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2024-56616" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/109f91d8b9335b0f3714ef9920eae5a8b21d56af", "url": "https://git.kernel.org/stable/c/109f91d8b9335b0f3714ef9920eae5a8b21d56af" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/1fc1f32c4a3421b9d803f18ec3ef49db2fb5d5ef", "url": "https://git.kernel.org/stable/c/1fc1f32c4a3421b9d803f18ec3ef49db2fb5d5ef" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/70e7166612f4e6da8d7d0305c47c465d88d037e5", "url": "https://git.kernel.org/stable/c/70e7166612f4e6da8d7d0305c47c465d88d037e5" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/780fa184d4dc38ad6c4fded345ab8f9be7a63e96", "url": "https://git.kernel.org/stable/c/780fa184d4dc38ad6c4fded345ab8f9be7a63e96" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/bd2fccac61b40eaf08d9546acc9fef958bfe4763", "url": "https://git.kernel.org/stable/c/bd2fccac61b40eaf08d9546acc9fef958bfe4763" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/c58947a8d4a500902597ee1dbadf0518d7ff8801", "url": "https://git.kernel.org/stable/c/c58947a8d4a500902597ee1dbadf0518d7ff8801" } ], "release_date": "2024-12-27T15:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2023-52864", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: wmi: Fix opening of char device\n\nSince commit fa1f68db6ca7 (\"drivers: misc: pass miscdevice pointer via\nfile private data\"), the miscdevice stores a pointer to itself inside\nfilp->private_data, which means that private_data will not be NULL when\nwmi_char_open() is called. This might cause memory corruption should\nwmi_char_open() be unable to find its driver, something which can\nhappen when the associated WMI device is deleted in wmi_free_devices().\n\nFix the problem by using the miscdevice pointer to retrieve the WMI\ndevice data associated with a char device using container_of(). This\nalso avoids wmi_char_open() picking a wrong WMI device bound to a\ndriver with the same name as the original driver.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2023-52864" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/36d85fa7ae0d6be651c1a745191fa7ef055db43e", "url": "https://git.kernel.org/stable/c/36d85fa7ae0d6be651c1a745191fa7ef055db43e" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/44a96796d25809502c75771d40ee693c2e44724e", "url": "https://git.kernel.org/stable/c/44a96796d25809502c75771d40ee693c2e44724e" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/9fb0eed09e1470cd4021ff52b2b9dfcbcee4c203", "url": "https://git.kernel.org/stable/c/9fb0eed09e1470cd4021ff52b2b9dfcbcee4c203" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/cf098e937dd125c0317a0d6f261ac2a950a233d6", "url": "https://git.kernel.org/stable/c/cf098e937dd125c0317a0d6f261ac2a950a233d6" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/d426a2955e45a95b2282764105fcfb110a540453", "url": "https://git.kernel.org/stable/c/d426a2955e45a95b2282764105fcfb110a540453" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/e0bf076b734a2fab92d8fddc2b8b03462eee7097", "url": "https://git.kernel.org/stable/c/e0bf076b734a2fab92d8fddc2b8b03462eee7097" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/eba9ac7abab91c8f6d351460239108bef5e7a0b6", "url": "https://git.kernel.org/stable/c/eba9ac7abab91c8f6d351460239108bef5e7a0b6" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/fb7b06b59c6887659c6ed0ecd3110835eecbb6a3", "url": "https://git.kernel.org/stable/c/fb7b06b59c6887659c6ed0ecd3110835eecbb6a3" } ], "release_date": "2024-05-21T16:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2023-52764", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: gspca: cpia1: shift-out-of-bounds in set_flicker\n\nSyzkaller reported the following issue:\nUBSAN: shift-out-of-bounds in drivers/media/usb/gspca/cpia1.c:1031:27\nshift exponent 245 is too large for 32-bit type 'int'\n\nWhen the value of the variable \"sd->params.exposure.gain\" exceeds the\nnumber of bits in an integer, a shift-out-of-bounds error is reported. It\nis triggered because the variable \"currentexp\" cannot be left-shifted by\nmore than the number of bits in an integer. In order to avoid invalid\nrange during left-shift, the conditional expression is added.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2023-52764" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/099be1822d1f095433f4b08af9cc9d6308ec1953", "url": "https://git.kernel.org/stable/c/099be1822d1f095433f4b08af9cc9d6308ec1953" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/09cd8b561aa9796903710a1046957f2b112c8f26", "url": "https://git.kernel.org/stable/c/09cd8b561aa9796903710a1046957f2b112c8f26" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/2eee8edfff90e22980a6b22079d238c3c9d323bb", "url": "https://git.kernel.org/stable/c/2eee8edfff90e22980a6b22079d238c3c9d323bb" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/69bba62600bd91d6b7c1e8ca181faf8ac64f7060", "url": "https://git.kernel.org/stable/c/69bba62600bd91d6b7c1e8ca181faf8ac64f7060" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/8f83c85ee88225319c52680792320c02158c2a9b", "url": "https://git.kernel.org/stable/c/8f83c85ee88225319c52680792320c02158c2a9b" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/93bddd6529f187f510eec759f37d0569243c9809", "url": "https://git.kernel.org/stable/c/93bddd6529f187f510eec759f37d0569243c9809" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/a647f27a7426d2fe1b40da7c8fa2b81354a51177", "url": "https://git.kernel.org/stable/c/a647f27a7426d2fe1b40da7c8fa2b81354a51177" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/c6b6b8692218da73b33b310d7c1df90f115bdd9a", "url": "https://git.kernel.org/stable/c/c6b6b8692218da73b33b310d7c1df90f115bdd9a" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/e2d7149b913d14352c82624e723ce1c211ca06d3", "url": "https://git.kernel.org/stable/c/e2d7149b913d14352c82624e723ce1c211ca06d3" } ], "release_date": "2024-05-21T16:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-38350", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\nnet/sched: Always pass notifications when child class becomes empty\nCertain classful qdiscs may invoke their classes' dequeue handler on an\nenqueue operation. This may unexpectedly empty the child qdisc and thus\nmake an in-flight class passive via qlen_notify(). Most qdiscs do not\nexpect such behaviour at this point in time and may re-activate the\nclass eventually anyways which will lead to a use-after-free.\nThe referenced fix commit attempted to fix this behavior for the HFSC\ncase by moving the backlog accounting around, though this turned out to\nbe incomplete since the parent's parent may run into the issue too.\nThe following reproducer demonstrates this use-after-free:\ntc qdisc add dev lo root handle 1: drr\ntc filter add dev lo parent 1: basic classid 1:1\ntc class add dev lo parent 1: classid 1:1 drr\ntc qdisc add dev lo parent 1:1 handle 2: hfsc def 1\ntc class add dev lo parent 2: classid 2:1 hfsc rt m1 8 d 1 m2 0\ntc qdisc add dev lo parent 2:1 handle 3: netem\ntc qdisc add dev lo parent 3:1 handle 4: blackhole\necho 1 | socat -u STDIN UDP4-DATAGRAM:127.0.0.1:8888\ntc class delete dev lo classid 1:1\necho 1 | socat -u STDIN UDP4-DATAGRAM:127.0.0.1:8888\nSince backlog accounting issues leading to a use-after-frees on stale\nclass pointers is a recurring pattern at this point, this patch takes\na different approach. Instead of trying to fix the accounting, the patch\nensures that qdisc_tree_reduce_backlog always calls qlen_notify when\nthe child qdisc is empty. This solves the problem because deletion of\nqdiscs always involves a call to qdisc_reset() and / or\nqdisc_purge_queue() which ultimately resets its qlen to 0 thus causing\nthe following qdisc_tree_reduce_backlog() to report to the parent. Note\nthat this may call qlen_notify on passive classes multiple times. This\nis not a problem after the recent patch series that made all the\nclassful qdiscs qlen_notify() handlers idempotent.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-38350" } ], "release_date": "2025-07-19T00:00:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.0, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-37798", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\ncodel: remove sch->q.qlen check before qdisc_tree_reduce_backlog()\nAfter making all ->qlen_notify() callbacks idempotent, now it is safe to\nremove the check of qlen!=0 from both fq_codel_dequeue() and\ncodel_qdisc_dequeue().", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-37798" } ], "release_date": "2025-05-02T00:00:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] }, { "cve": "CVE-2025-21704", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: cdc-acm: Check control transfer buffer size before access\n\nIf the first fragment is shorter than struct usb_cdc_notification, we can't\ncalculate an expected_size. Log an error and discard the notification\ninstead of reading lengths from memory outside the received data, which can\nlead to memory corruption when the expected_size decreases between\nfragments, causing `expected_size - acm->nb_index` to wrap.\n\nThis issue has been present since the beginning of git history; however,\nit only leads to memory corruption since commit ea2583529cd1\n(\"cdc-acm: reassemble fragmented notifications\").\n\nA mitigating factor is that acm_ctrl_irq() can only execute after userspace\nhas opened /dev/ttyACM*; but if ModemManager is running, ModemManager will\ndo that automatically depending on the USB device's vendor/product IDs and\nits other interfaces.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-21704" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/383d516a0ebc8641372b521c8cb717f0f1834831", "url": "https://git.kernel.org/stable/c/383d516a0ebc8641372b521c8cb717f0f1834831" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/6abb510251e75f875797d8983a830e6731fa281c", "url": "https://git.kernel.org/stable/c/6abb510251e75f875797d8983a830e6731fa281c" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/7828e9363ac4d23b02419bf2a45b9f1d9fb35646", "url": "https://git.kernel.org/stable/c/7828e9363ac4d23b02419bf2a45b9f1d9fb35646" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/871619c2b78fdfe05afb4e8ba548678687beb812", "url": "https://git.kernel.org/stable/c/871619c2b78fdfe05afb4e8ba548678687beb812" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/90dd2f1b7342b9a671a5ea4160f408037b92b118", "url": "https://git.kernel.org/stable/c/90dd2f1b7342b9a671a5ea4160f408037b92b118" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/a4e1ae5c0533964170197e4fb4f33bc8c1db5cd2", "url": "https://git.kernel.org/stable/c/a4e1ae5c0533964170197e4fb4f33bc8c1db5cd2" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/e563b01208f4d1f609bcab13333b6c0e24ce6a01", "url": "https://git.kernel.org/stable/c/e563b01208f4d1f609bcab13333b6c0e24ce6a01" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/f64079bef6a8a7823358c3f352ea29a617844636", "url": "https://git.kernel.org/stable/c/f64079bef6a8a7823358c3f352ea29a617844636" }, { "category": "external", "summary": "https://project-zero.issues.chromium.org/issues/395107243", "url": "https://project-zero.issues.chromium.org/issues/395107243" } ], "release_date": "2025-02-22T10:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2024-35965", "cwe": { "id": "CWE-1284", "name": "Improper Validation of Specified Quantity in Input" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: Fix not validating setsockopt user input\n\nCheck user input length before copying data.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2024-35965" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/28234f8ab69c522ba447f3e041bbfbb284c5959a", "url": "https://git.kernel.org/stable/c/28234f8ab69c522ba447f3e041bbfbb284c5959a" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/4f3951242ace5efc7131932e2e01e6ac6baed846", "url": "https://git.kernel.org/stable/c/4f3951242ace5efc7131932e2e01e6ac6baed846" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/8ee0c132a61df9723813c40e742dc5321824daa9", "url": "https://git.kernel.org/stable/c/8ee0c132a61df9723813c40e742dc5321824daa9" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/9d42f373391211c7c8af66a3a316533a32b8a607", "url": "https://git.kernel.org/stable/c/9d42f373391211c7c8af66a3a316533a32b8a607" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/f13b04cf65a86507ff15a9bbf37969d25be3e2a0", "url": "https://git.kernel.org/stable/c/f13b04cf65a86507ff15a9bbf37969d25be3e2a0" } ], "release_date": "2024-05-20T10:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2022-43945", "cwe": { "id": "CWE-131", "name": "Incorrect Calculation of Buffer Size" }, "notes": [ { "category": "description", "text": "The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call (RPC) into a single array of pages. A client can force the send buffer to shrink by sending an RPC message over TCP with garbage data added at the end of the message. The RPC message with garbage data is still correctly formed according to the specification and is passed forward to handlers. Vulnerable code in NFSD is not expecting the oversized request and writes beyond the allocated buffer space. CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2022-43945" }, { "category": "external", "summary": "http://packetstormsecurity.com/files/171289/Kernel-Live-Patch-Security-Notice-LNS-0092-1.html", "url": "http://packetstormsecurity.com/files/171289/Kernel-Live-Patch-Security-Notice-LNS-0092-1.html" }, { "category": "external", "summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f90497a16e434c2211c66e3de8e77b17868382b8", "url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f90497a16e434c2211c66e3de8e77b17868382b8" }, { "category": "external", "summary": "https://security.netapp.com/advisory/ntap-20221215-0006/", "url": "https://security.netapp.com/advisory/ntap-20221215-0006/" } ], "release_date": "2022-11-04T19:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2024-35966", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: Fix not validating setsockopt user input\n\nsyzbot reported rfcomm_sock_setsockopt_old() is copying data without\nchecking user input length.\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset\ninclude/linux/sockptr.h:49 [inline]\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr\ninclude/linux/sockptr.h:55 [inline]\nBUG: KASAN: slab-out-of-bounds in rfcomm_sock_setsockopt_old\nnet/bluetooth/rfcomm/sock.c:632 [inline]\nBUG: KASAN: slab-out-of-bounds in rfcomm_sock_setsockopt+0x893/0xa70\nnet/bluetooth/rfcomm/sock.c:673\nRead of size 4 at addr ffff8880209a8bc3 by task syz-executor632/5064", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2024-35966" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/00767fbd67af70d7a550caa5b12d9515fa978bab", "url": "https://git.kernel.org/stable/c/00767fbd67af70d7a550caa5b12d9515fa978bab" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/4ea65e2095e9bd151d0469328dd7fc2858feb546", "url": "https://git.kernel.org/stable/c/4ea65e2095e9bd151d0469328dd7fc2858feb546" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/a97de7bff13b1cc825c1b1344eaed8d6c2d3e695", "url": "https://git.kernel.org/stable/c/a97de7bff13b1cc825c1b1344eaed8d6c2d3e695" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/c3f787a3eafe519c93df9abbb0ca5145861c8d0f", "url": "https://git.kernel.org/stable/c/c3f787a3eafe519c93df9abbb0ca5145861c8d0f" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/d072ea24748189cd8f4a9c3f585ca9af073a0838", "url": "https://git.kernel.org/stable/c/d072ea24748189cd8f4a9c3f585ca9af073a0838" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/eea40d33bf936a5c7fb03c190e61e0cfee00e872", "url": "https://git.kernel.org/stable/c/eea40d33bf936a5c7fb03c190e61e0cfee00e872" } ], "release_date": "2024-05-20T10:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2024-49924", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: pxafb: Fix possible use after free in pxafb_task()\n\nIn the pxafb_probe function, it calls the pxafb_init_fbinfo function,\nafter which &fbi->task is associated with pxafb_task. Moreover,\nwithin this pxafb_init_fbinfo function, the pxafb_blank function\nwithin the &pxafb_ops struct is capable of scheduling work.\n\nIf we remove the module which will call pxafb_remove to make cleanup,\nit will call unregister_framebuffer function which can call\ndo_unregister_framebuffer to free fbi->fb through\nput_fb_info(fb_info), while the work mentioned above will be used.\nThe sequence of operations that may lead to a UAF bug is as follows:\n\nCPU0 CPU1\n\n | pxafb_task\npxafb_remove |\nunregister_framebuffer(info) |\ndo_unregister_framebuffer(fb_info) |\nput_fb_info(fb_info) |\n// free fbi->fb | set_ctrlr_state(fbi, state)\n | __pxafb_lcd_power(fbi, 0)\n | fbi->lcd_power(on, &fbi->fb.var)\n | //use fbi->fb\n\nFix it by ensuring that the work is canceled before proceeding\nwith the cleanup in pxafb_remove.\n\nNote that only root user can remove the driver at runtime.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2024-49924" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/3c0d416eb4bef705f699213cee94bf54b6acdacd", "url": "https://git.kernel.org/stable/c/3c0d416eb4bef705f699213cee94bf54b6acdacd" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/4a6921095eb04a900e0000da83d9475eb958e61e", "url": "https://git.kernel.org/stable/c/4a6921095eb04a900e0000da83d9475eb958e61e" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/4cda484e584be34d55ee17436ebf7ad11922b97a", "url": "https://git.kernel.org/stable/c/4cda484e584be34d55ee17436ebf7ad11922b97a" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/6d0a07f68b66269e167def6c0b90a219cd3e7473", "url": "https://git.kernel.org/stable/c/6d0a07f68b66269e167def6c0b90a219cd3e7473" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/a3a855764dbacbdb1cc51e15dc588f2d21c93e0e", "url": "https://git.kernel.org/stable/c/a3a855764dbacbdb1cc51e15dc588f2d21c93e0e" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/aaadc0cb05c999ccd8898a03298b7e5c31509b08", "url": "https://git.kernel.org/stable/c/aaadc0cb05c999ccd8898a03298b7e5c31509b08" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/e657fa2df4429f3805a9b3e47fb1a4a1b02a72bd", "url": "https://git.kernel.org/stable/c/e657fa2df4429f3805a9b3e47fb1a4a1b02a72bd" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/e6897e299f57b103e999e62010b88e363b3eebae", "url": "https://git.kernel.org/stable/c/e6897e299f57b103e999e62010b88e363b3eebae" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/fdda354f60a576d52dcf90351254714681df4370", "url": "https://git.kernel.org/stable/c/fdda354f60a576d52dcf90351254714681df4370" } ], "release_date": "2024-10-21T18:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-cloud-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-cloud-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-cloud-tools-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-crashdump-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-doc-0:4.15.0-252.263.all", "Ubuntu-18:linux-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.all", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-headers-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-headers-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-libc-dev-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-lowlatency-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-modules-extra-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-source-0:4.15.0.252.263.all", "Ubuntu-18:linux-source-4.15.0-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-generic-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-4.15.0-252-tuxcare.els40-lowlatency-0:4.15.0-252.263.amd64", "Ubuntu-18:linux-tools-common-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-generic-0:4.15.0.252.263.amd64", "Ubuntu-18:linux-tools-host-0:4.15.0-252.263.all", "Ubuntu-18:linux-tools-lowlatency-0:4.15.0.252.263.amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] } ] }