{ "document": { "aggregate_severity": { "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "TuxCare License Agreement", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Cloud Linux Inc. and provide a link to the original.", "title": "Terms of Use" }, { "category": "details", "text": "* CVE-url: https://ubuntu.com/security/CVE-2025-38352\n - posix-cpu-timers: fix race between handle_posix_cpu_timers() and\n posix_cpu_timer_del()\n * CVE-url: https://ubuntu.com/security/CVE-2022-25265\n - x86/elf: Add table to document READ_IMPLIES_EXEC\n - x86/elf: Split READ_IMPLIES_EXEC from executable PT_GNU_STACK\n - x86/elf: Disable automatic READ_IMPLIES_EXEC on 64-bit\n * CVE-url: https://ubuntu.com/security/CVE-2022-49170\n - f2fs: fix to do sanity check on curseg->alloc_type\n * CVE-url: https://ubuntu.com/security/CVE-2021-47479\n - staging: rtl8712: fix use-after-free in rtl8712_dl_fw\n * CVE-url: https://ubuntu.com/security/CVE-2022-49519\n - ath10k: skip ath10k_halt during suspend for driver state RESTARTING\n * CVE-url: https://ubuntu.com/security/CVE-2024-46713\n - perf/aux: Fix AUX buffer serialization\n * CVE-url: https://ubuntu.com/security/CVE-2024-36914\n - drm/amd/display: Skip on writeback when it's not applicable\n * CVE-url: https://ubuntu.com/security/CVE-2024-36880\n - Bluetooth: qca: add missing firmware sanity checks\n * Miscellaneous upstream changes\n - net: openvswitch: fix nested key length validation in the set() action\n - isofs: Prevent the use of too small fid\n - ext4: ignore xattrs past end\n - net: ppp: Add bound checking for skb data on ppp_sync_txmung\n - media: venus: hfi: add check to handle incorrect queue size\n - media: venus: hfi_parser: add check to avoid out of bound access\n - sctp: detect and prevent references to a freed transport in sendmsg\n - ext4: improve xattr consistency checking and error reporting\n - ext4: introduce ITAIL helper\n - ext4: fix out-of-bound read in ext4_xattr_inode_dec_ref_all()\n - ibmvnic: create send_control_ip_offload\n - ibmvnic: Use strscpy() instead of strncpy()\n - ibmvnic: Use kernel helpers for hex dumps\n - wifi: at76c50x: fix use after free access in at76_disconnect\n - wifi: cfg80211: fix use-after-free in cmp_bss()", "title": "Details" } ], "publisher": { "category": "vendor", "contact_details": "https://tuxcare.com/contact/", "name": "TuxCare", "namespace": "https://tuxcare.com/" }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://security.tuxcare.com/csaf/v2/els_os/ubuntu20.04els/advisories/2025/clsa-2025_1763989962.json" }, { "category": "self", "summary": "https://cve.tuxcare.com/els/releases/CLSA-2025:1763989962", "url": "https://cve.tuxcare.com/els/releases/CLSA-2025:1763989962" } ], "tracking": { "current_release_date": "2025-11-24T13:14:41Z", "generator": { "date": "2025-11-24T13:14:41Z", "engine": { "name": "pyCSAF" } }, "id": "CLSA-2025:1763989962", "initial_release_date": "2025-11-24T13:14:41Z", "revision_history": [ { "date": "2025-11-24T13:14:41Z", "number": "1", "summary": "Initial version" } ], "status": "final", "version": "1" }, "title": "Fix of 8 CVEs" }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Ubuntu 20.04", "product": { "name": "Ubuntu 20.04", "product_id": "Ubuntu-20", "product_identification_helper": { "cpe": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*" } } } ], "category": "product_family", "name": "Ubuntu" } ], "category": "vendor", "name": "Canonical Ltd." }, { "branches": [ { "branches": [ { "category": "product_version", "name": "linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product": { "name": "linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_id": "linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-tools-5.4.0-223-tuxcare.els5-generic@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product": { "name": "linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product_id": "linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-modules-5.4.0-223-tuxcare.els5-lowlatency@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product": { "name": "linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_id": "linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-cloud-tools-5.4.0-223-tuxcare.els5-generic@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product": { "name": "linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_id": "linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-headers-5.4.0-223-tuxcare.els5-generic@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product": { "name": "linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product_id": "linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product": { "name": "linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product_id": "linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product": { "name": "linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_id": "linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-image-unsigned-5.4.0-223-tuxcare.els5-generic@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-libc-dev-0:5.4.0-223.243.amd64", "product": { "name": "linux-libc-dev-0:5.4.0-223.243.amd64", "product_id": "linux-libc-dev-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-libc-dev@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "product": { "name": "linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "product_id": "linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-tools-5.4.0-223-tuxcare.els5@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "product": { "name": "linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "product_id": "linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-cloud-tools-5.4.0-223-tuxcare.els5@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product": { "name": "linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product_id": "linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product": { "name": "linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_id": "linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-modules-extra-5.4.0-223-tuxcare.els5-generic@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product": { "name": "linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product_id": "linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-tools-5.4.0-223-tuxcare.els5-lowlatency@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product": { "name": "linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_id": "linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-buildinfo-5.4.0-223-tuxcare.els5-generic@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product": { "name": "linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_id": "linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-modules-5.4.0-223-tuxcare.els5-generic@5.4.0-223.243?arch=amd64" } } }, { "category": "product_version", "name": "linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product": { "name": "linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product_id": "linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-headers-5.4.0-223-tuxcare.els5-lowlatency@5.4.0-223.243?arch=amd64" } } } ], "category": "architecture", "name": "amd64" }, { "branches": [ { "category": "product_version", "name": "linux-cloud-tools-common-0:5.4.0-223.243.all", "product": { "name": "linux-cloud-tools-common-0:5.4.0-223.243.all", "product_id": "linux-cloud-tools-common-0:5.4.0-223.243.all", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-cloud-tools-common@5.4.0-223.243?arch=all" } } }, { "category": "product_version", "name": "linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "product": { "name": "linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "product_id": "linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-headers-5.4.0-223-tuxcare.els5@5.4.0-223.243?arch=all" } } }, { "category": "product_version", "name": "linux-source-5.4.0-0:5.4.0-223.243.all", "product": { "name": "linux-source-5.4.0-0:5.4.0-223.243.all", "product_id": "linux-source-5.4.0-0:5.4.0-223.243.all", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-source-5.4.0@5.4.0-223.243?arch=all" } } }, { "category": "product_version", "name": "linux-tools-common-0:5.4.0-223.243.all", "product": { "name": "linux-tools-common-0:5.4.0-223.243.all", "product_id": "linux-tools-common-0:5.4.0-223.243.all", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-tools-common@5.4.0-223.243?arch=all" } } }, { "category": "product_version", "name": "linux-tools-host-0:5.4.0-223.243.all", "product": { "name": "linux-tools-host-0:5.4.0-223.243.all", "product_id": "linux-tools-host-0:5.4.0-223.243.all", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-tools-host@5.4.0-223.243?arch=all" } } }, { "category": "product_version", "name": "linux-doc-0:5.4.0-223.243.all", "product": { "name": "linux-doc-0:5.4.0-223.243.all", "product_id": "linux-doc-0:5.4.0-223.243.all", "product_identification_helper": { "purl": "pkg:deb/tuxcare/linux-doc@5.4.0-223.243?arch=all" } } } ], "category": "architecture", "name": "all" } ], "category": "vendor", "name": "TuxCare" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64" }, "product_reference": "linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64" }, "product_reference": "linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64" }, "product_reference": "linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-cloud-tools-common-0:5.4.0-223.243.all as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all" }, "product_reference": "linux-cloud-tools-common-0:5.4.0-223.243.all", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all" }, "product_reference": "linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64" }, "product_reference": "linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64" }, "product_reference": "linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64" }, "product_reference": "linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64" }, "product_reference": "linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-source-5.4.0-0:5.4.0-223.243.all as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all" }, "product_reference": "linux-source-5.4.0-0:5.4.0-223.243.all", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-libc-dev-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64" }, "product_reference": "linux-libc-dev-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64" }, "product_reference": "linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-tools-common-0:5.4.0-223.243.all as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all" }, "product_reference": "linux-tools-common-0:5.4.0-223.243.all", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64" }, "product_reference": "linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64" }, "product_reference": "linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64" }, "product_reference": "linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64" }, "product_reference": "linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-tools-host-0:5.4.0-223.243.all as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" }, "product_reference": "linux-tools-host-0:5.4.0-223.243.all", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64" }, "product_reference": "linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64" }, "product_reference": "linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-doc-0:5.4.0-223.243.all as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-doc-0:5.4.0-223.243.all" }, "product_reference": "linux-doc-0:5.4.0-223.243.all", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64" }, "product_reference": "linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "relates_to_product_reference": "Ubuntu-20" } ] }, "vulnerabilities": [ { "cve": "CVE-2022-49519", "cwe": { "id": "CWE-415", "name": "Double Free" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nath10k: skip ath10k_halt during suspend for driver state RESTARTING\n\nDouble free crash is observed when FW recovery(caused by wmi\ntimeout/crash) is followed by immediate suspend event. The FW recovery\nis triggered by ath10k_core_restart() which calls driver clean up via\nath10k_halt(). When the suspend event occurs between the FW recovery,\nthe restart worker thread is put into frozen state until suspend completes.\nThe suspend event triggers ath10k_stop() which again triggers ath10k_halt()\nThe double invocation of ath10k_halt() causes ath10k_htt_rx_free() to be\ncalled twice(Note: ath10k_htt_rx_alloc was not called by restart worker\nthread because of its frozen state), causing the crash.\n\nTo fix this, during the suspend flow, skip call to ath10k_halt() in\nath10k_stop() when the current driver state is ATH10K_STATE_RESTARTING.\nAlso, for driver state ATH10K_STATE_RESTARTING, call\nath10k_wait_for_suspend() in ath10k_stop(). This is because call to\nath10k_wait_for_suspend() is skipped later in\n[ath10k_halt() > ath10k_core_stop()] for the driver state\nATH10K_STATE_RESTARTING.\n\nThe frozen restart worker thread will be cancelled during resume when the\ndevice comes out of suspend.\n\nBelow is the crash stack for reference:\n\n[ 428.469167] ------------[ cut here ]------------\n[ 428.469180] kernel BUG at mm/slub.c:4150!\n[ 428.469193] invalid opcode: 0000 [#1] PREEMPT SMP NOPTI\n[ 428.469219] Workqueue: events_unbound async_run_entry_fn\n[ 428.469230] RIP: 0010:kfree+0x319/0x31b\n[ 428.469241] RSP: 0018:ffffa1fac015fc30 EFLAGS: 00010246\n[ 428.469247] RAX: ffffedb10419d108 RBX: ffff8c05262b0000\n[ 428.469252] RDX: ffff8c04a8c07000 RSI: 0000000000000000\n[ 428.469256] RBP: ffffa1fac015fc78 R08: 0000000000000000\n[ 428.469276] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 428.469285] Call Trace:\n[ 428.469295] ? dma_free_attrs+0x5f/0x7d\n[ 428.469320] ath10k_core_stop+0x5b/0x6f\n[ 428.469336] ath10k_halt+0x126/0x177\n[ 428.469352] ath10k_stop+0x41/0x7e\n[ 428.469387] drv_stop+0x88/0x10e\n[ 428.469410] __ieee80211_suspend+0x297/0x411\n[ 428.469441] rdev_suspend+0x6e/0xd0\n[ 428.469462] wiphy_suspend+0xb1/0x105\n[ 428.469483] ? name_show+0x2d/0x2d\n[ 428.469490] dpm_run_callback+0x8c/0x126\n[ 428.469511] ? name_show+0x2d/0x2d\n[ 428.469517] __device_suspend+0x2e7/0x41b\n[ 428.469523] async_suspend+0x1f/0x93\n[ 428.469529] async_run_entry_fn+0x3d/0xd1\n[ 428.469535] process_one_work+0x1b1/0x329\n[ 428.469541] worker_thread+0x213/0x372\n[ 428.469547] kthread+0x150/0x15f\n[ 428.469552] ? pr_cont_work+0x58/0x58\n[ 428.469558] ? kthread_blkcg+0x31/0x31\n\nTested-on: QCA6174 hw3.2 PCI WLAN.RM.4.4.1-00288-QCARMSWPZ-1", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2022-49519" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/5321e5211b5dc873e2e3d0deb749e69ecf4dbfe5", "url": "https://git.kernel.org/stable/c/5321e5211b5dc873e2e3d0deb749e69ecf4dbfe5" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/7eb14cb604f49e58b7cf6faa87961a865a3c8649", "url": "https://git.kernel.org/stable/c/7eb14cb604f49e58b7cf6faa87961a865a3c8649" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/8aa3750986ffcf73e0692db3b40dd3a8e8c0c575", "url": "https://git.kernel.org/stable/c/8aa3750986ffcf73e0692db3b40dd3a8e8c0c575" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/b72a4aff947ba807177bdabb43debaf2c66bee05", "url": "https://git.kernel.org/stable/c/b72a4aff947ba807177bdabb43debaf2c66bee05" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/c2272428090d0d215a3f017cbbbad731c07eee53", "url": "https://git.kernel.org/stable/c/c2272428090d0d215a3f017cbbbad731c07eee53" } ], "release_date": "2025-02-26T07:01:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2022-49170", "cwe": { "id": "CWE-129", "name": "Improper Validation of Array Index" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to do sanity check on curseg->alloc_type\n\nAs Wenqing Liu reported in bugzilla:\n\nhttps://bugzilla.kernel.org/show_bug.cgi?id=215657\n\n- Overview\nUBSAN: array-index-out-of-bounds in fs/f2fs/segment.c:3460:2 when mount and operate a corrupted image\n\n- Reproduce\ntested on kernel 5.17-rc4, 5.17-rc6\n\n1. mkdir test_crash\n2. cd test_crash\n3. unzip tmp2.zip\n4. mkdir mnt\n5. ./single_test.sh f2fs 2\n\n- Kernel dump\n[ 46.434454] loop0: detected capacity change from 0 to 131072\n[ 46.529839] F2FS-fs (loop0): Mounted with checkpoint version = 7548c2d9\n[ 46.738319] ================================================================================\n[ 46.738412] UBSAN: array-index-out-of-bounds in fs/f2fs/segment.c:3460:2\n[ 46.738475] index 231 is out of range for type 'unsigned int [2]'\n[ 46.738539] CPU: 2 PID: 939 Comm: umount Not tainted 5.17.0-rc6 #1\n[ 46.738547] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.13.0-1ubuntu1.1 04/01/2014\n[ 46.738551] Call Trace:\n[ 46.738556] \n[ 46.738563] dump_stack_lvl+0x47/0x5c\n[ 46.738581] ubsan_epilogue+0x5/0x50\n[ 46.738592] __ubsan_handle_out_of_bounds+0x68/0x80\n[ 46.738604] f2fs_allocate_data_block+0xdff/0xe60 [f2fs]\n[ 46.738819] do_write_page+0xef/0x210 [f2fs]\n[ 46.738934] f2fs_do_write_node_page+0x3f/0x80 [f2fs]\n[ 46.739038] __write_node_page+0x2b7/0x920 [f2fs]\n[ 46.739162] f2fs_sync_node_pages+0x943/0xb00 [f2fs]\n[ 46.739293] f2fs_write_checkpoint+0x7bb/0x1030 [f2fs]\n[ 46.739405] kill_f2fs_super+0x125/0x150 [f2fs]\n[ 46.739507] deactivate_locked_super+0x60/0xc0\n[ 46.739517] deactivate_super+0x70/0xb0\n[ 46.739524] cleanup_mnt+0x11a/0x200\n[ 46.739532] __cleanup_mnt+0x16/0x20\n[ 46.739538] task_work_run+0x67/0xa0\n[ 46.739547] exit_to_user_mode_prepare+0x18c/0x1a0\n[ 46.739559] syscall_exit_to_user_mode+0x26/0x40\n[ 46.739568] do_syscall_64+0x46/0xb0\n[ 46.739584] entry_SYSCALL_64_after_hwframe+0x44/0xae\n\nThe root cause is we missed to do sanity check on curseg->alloc_type,\nresult in out-of-bound accessing on sbi->block_count[] array, fix it.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2022-49170" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/0748a0f7dcb9d9dddc80302d73ebcecef6782ef0", "url": "https://git.kernel.org/stable/c/0748a0f7dcb9d9dddc80302d73ebcecef6782ef0" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/498b7088db71f9707359448cd6800bbb1882f4c3", "url": "https://git.kernel.org/stable/c/498b7088db71f9707359448cd6800bbb1882f4c3" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/c12765e3f129b144421c80d3383df885f85ee290", "url": "https://git.kernel.org/stable/c/c12765e3f129b144421c80d3383df885f85ee290" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/f41ee8b91c00770d718be2ff4852a80017ae9ab3", "url": "https://git.kernel.org/stable/c/f41ee8b91c00770d718be2ff4852a80017ae9ab3" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/f68caedf264a95c0b02dfd0d9f92ac2637d5848a", "url": "https://git.kernel.org/stable/c/f68caedf264a95c0b02dfd0d9f92ac2637d5848a" } ], "release_date": "2025-02-26T07:00:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-38352", "cwe": { "id": "CWE-362", "name": "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\nposix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del()\nIf an exiting non-autoreaping task has already passed exit_notify() and\ncalls handle_posix_cpu_timers() from IRQ, it can be reaped by its parent\nor debugger right after unlock_task_sighand().\nIf a concurrent posix_cpu_timer_del() runs at that moment, it won't be\nable to detect timer->it.cpu.firing != 0: cpu_timer_task_rcu() and/or\nlock_task_sighand() will fail.\nAdd the tsk->exit_state check into run_posix_cpu_timers() to fix this.\nThis fix is not needed if CONFIG_POSIX_CPU_TIMERS_TASK_WORK=y, because\nexit_task_work() is called before exit_notify(). But the check still\nmakes sense, task_work_add(&tsk->posix_cputimers_work.work) will fail\nanyway in this case.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-38352" } ], "release_date": "2025-07-22T00:00:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2024-46713", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/aux: Fix AUX buffer serialization\n\nOle reported that event->mmap_mutex is strictly insufficient to\nserialize the AUX buffer, add a per RB mutex to fully serialize it.\n\nNote that in the lock order comment the perf_event::mmap_mutex order\nwas already wrong, that is, it nesting under mmap_lock is not new with\nthis patch.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2024-46713" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/2ab9d830262c132ab5db2f571003d80850d56b2a", "url": "https://git.kernel.org/stable/c/2ab9d830262c132ab5db2f571003d80850d56b2a" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/52d13d224fdf1299c8b642807fa1ea14d693f5ff", "url": "https://git.kernel.org/stable/c/52d13d224fdf1299c8b642807fa1ea14d693f5ff" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/7882923f1cb88dc1a17f2bf0c81b1fc80d44db82", "url": "https://git.kernel.org/stable/c/7882923f1cb88dc1a17f2bf0c81b1fc80d44db82" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/9dc7ad2b67772cfb94ceb3b0c9c4023c2463215d", "url": "https://git.kernel.org/stable/c/9dc7ad2b67772cfb94ceb3b0c9c4023c2463215d" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/b9b6882e243b653d379abbeaa64a500182aba370", "url": "https://git.kernel.org/stable/c/b9b6882e243b653d379abbeaa64a500182aba370" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/c4b69bee3f4ef76809288fe6827bc14d4ae788ef", "url": "https://git.kernel.org/stable/c/c4b69bee3f4ef76809288fe6827bc14d4ae788ef" }, { "category": "external", "summary": "https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html", "url": "https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html" }, { "category": "external", "summary": "https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html", "url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html" } ], "release_date": "2024-09-13T15:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2024-36914", "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Skip on writeback when it's not applicable\n\n[WHY]\ndynamic memory safety error detector (KASAN) catches and generates error\nmessages \"BUG: KASAN: slab-out-of-bounds\" as writeback connector does not\nsupport certain features which are not initialized.\n\n[HOW]\nSkip them when connector type is DRM_MODE_CONNECTOR_WRITEBACK.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2024-36914" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/87de0a741ef6d93fcb99983138a0d89a546a043c", "url": "https://git.kernel.org/stable/c/87de0a741ef6d93fcb99983138a0d89a546a043c" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/951a498fa993c5501994ec2df97c9297b02488c7", "url": "https://git.kernel.org/stable/c/951a498fa993c5501994ec2df97c9297b02488c7" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/e9baa7110e9f3756bd5a812af376c288d9be894d", "url": "https://git.kernel.org/stable/c/e9baa7110e9f3756bd5a812af376c288d9be894d" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/ecedd99a9369fb5cde601ae9abd58bca2739f1ae", "url": "https://git.kernel.org/stable/c/ecedd99a9369fb5cde601ae9abd58bca2739f1ae" }, { "category": "external", "summary": "https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html", "url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html" } ], "release_date": "2024-05-30T16:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2024-36880", "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: add missing firmware sanity checks\n\nAdd the missing sanity checks when parsing the firmware files before\ndownloading them to avoid accessing and corrupting memory beyond the\nvmalloced buffer.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2024-36880" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/02f05ed44b71152d5e11d29be28aed91c0489b4e", "url": "https://git.kernel.org/stable/c/02f05ed44b71152d5e11d29be28aed91c0489b4e" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/1caceadfb50432dbf6d808796cb6c34ebb6d662c", "url": "https://git.kernel.org/stable/c/1caceadfb50432dbf6d808796cb6c34ebb6d662c" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/2e4edfa1e2bd821a317e7d006517dcf2f3fac68d", "url": "https://git.kernel.org/stable/c/2e4edfa1e2bd821a317e7d006517dcf2f3fac68d" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/427281f9498ed614f9aabc80e46ec077c487da6d", "url": "https://git.kernel.org/stable/c/427281f9498ed614f9aabc80e46ec077c487da6d" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/ed53949cc92e28aaa3463d246942bda1fbb7f307", "url": "https://git.kernel.org/stable/c/ed53949cc92e28aaa3463d246942bda1fbb7f307" } ], "release_date": "2024-05-30T16:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2022-25265", "cwe": { "id": "CWE-913", "name": "Improper Control of Dynamically-Managed Code Resources" }, "notes": [ { "category": "description", "text": "In the Linux kernel through 5.16.10, certain binary files may have the exec-all attribute if they were built in approximately 2003 (e.g., with GCC 3.2.2 and Linux kernel 2.4.20). This can cause execution of bytes located in supposedly non-executable regions of a file.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2022-25265" }, { "category": "external", "summary": "https://github.com/torvalds/linux/blob/1c33bb0507508af24fd754dd7123bd8e997fab2f/arch/x86/include/asm/elf.h#L281-L294", "url": "https://github.com/torvalds/linux/blob/1c33bb0507508af24fd754dd7123bd8e997fab2f/arch/x86/include/asm/elf.h#L281-L294" }, { "category": "external", "summary": "https://github.com/x0reaxeax/exec-prot-bypass", "url": "https://github.com/x0reaxeax/exec-prot-bypass" }, { "category": "external", "summary": "https://security.netapp.com/advisory/ntap-20220318-0005/", "url": "https://security.netapp.com/advisory/ntap-20220318-0005/" } ], "release_date": "2022-02-16T21:15:00Z", "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2021-47479", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8712: fix use-after-free in rtl8712_dl_fw\n\nSyzbot reported use-after-free in rtl8712_dl_fw(). The problem was in\nrace condition between r871xu_dev_remove() ->ndo_open() callback.\n\nIt's easy to see from crash log, that driver accesses released firmware\nin ->ndo_open() callback. It may happen, since driver was releasing\nfirmware _before_ unregistering netdev. Fix it by moving\nunregister_netdev() before cleaning up resources.\n\nCall Trace:\n...\n rtl871x_open_fw drivers/staging/rtl8712/hal_init.c:83 [inline]\n rtl8712_dl_fw+0xd95/0xe10 drivers/staging/rtl8712/hal_init.c:170\n rtl8712_hal_init drivers/staging/rtl8712/hal_init.c:330 [inline]\n rtl871x_hal_init+0xae/0x180 drivers/staging/rtl8712/hal_init.c:394\n netdev_open+0xe6/0x6c0 drivers/staging/rtl8712/os_intfs.c:380\n __dev_open+0x2bc/0x4d0 net/core/dev.c:1484\n\nFreed by task 1306:\n...\n release_firmware+0x1b/0x30 drivers/base/firmware_loader/main.c:1053\n r871xu_dev_remove+0xcc/0x2c0 drivers/staging/rtl8712/usb_intf.c:599\n usb_unbind_interface+0x1d8/0x8d0 drivers/usb/core/driver.c:458", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2021-47479" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/a65c9afe9f2f55b7a7fb4a25ab654cd4139683a4", "url": "https://git.kernel.org/stable/c/a65c9afe9f2f55b7a7fb4a25ab654cd4139683a4" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/befd23bd3b17f1a3f9c943a8580b47444c7c63ed", "url": "https://git.kernel.org/stable/c/befd23bd3b17f1a3f9c943a8580b47444c7c63ed" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/c052cc1a069c3e575619cf64ec427eb41176ca70", "url": "https://git.kernel.org/stable/c/c052cc1a069c3e575619cf64ec427eb41176ca70" }, { "category": "external", "summary": "https://git.kernel.org/stable/c/c430094541a80575259a94ff879063ef01473506", "url": "https://git.kernel.org/stable/c/c430094541a80575259a94ff879063ef01473506" } ], "release_date": "2024-05-22T09:15:00Z", "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.0, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-buildinfo-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-cloud-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-doc-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.all", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-headers-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-image-unsigned-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-libc-dev-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-modules-extra-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-source-5.4.0-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-generic-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-5.4.0-223-tuxcare.els5-lowlatency-0:5.4.0-223.243.amd64", "Ubuntu-20:linux-tools-common-0:5.4.0-223.243.all", "Ubuntu-20:linux-tools-host-0:5.4.0-223.243.all" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] } ] }