USN-7195-1: Linux kernel (Azure) vulnerabilities

Releases

• Ubuntu 20.04 LTS

Packages

• linux-azure - Linux kernel for Microsoft Azure Cloud systems

Details

Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not
properly handle certain error conditions, leading to a NULL pointer
dereference. A local attacker could possibly trigger this vulnerability to
cause a denial of service. (CVE-2022-38096)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:

• ARM32 architecture;
• ARM64 architecture;
• S390 architecture;
• x86 architecture;
• Power management core;
• GPU drivers;
• InfiniBand drivers;
• Network drivers;
• S/390 drivers;
• SCSI subsystem;
• TTY drivers;
• BTRFS file system;
• Ext4 file system;
• EROFS file system;
• F2FS file system;
• File systems infrastructure;
• BPF subsystem;
• Socket messages infrastructure;
• Bluetooth subsystem;
• Memory management;
• Amateur Radio drivers;
• Ethernet bridge;
• Networking core;
• IPv4 networking;
• Network traffic control;
• Sun RPC protocol;
• VMware vSockets driver;
• SELinux security module;
  (CVE-2024-42240, CVE-2024-36938, CVE-2024-35967, CVE-2024-36953,
  CVE-2022-48938, CVE-2024-38553, CVE-2024-35904, CVE-2024-35965,
  CVE-2024-26947, CVE-2024-36968, CVE-2024-43892, CVE-2024-38597,
  CVE-2023-52498, CVE-2021-47501, CVE-2024-44942, CVE-2024-42077,
  CVE-2024-53057, CVE-2024-46724, CVE-2024-35963, CVE-2022-48943,
  CVE-2024-42068, CVE-2024-42156, CVE-2022-48733, CVE-2023-52639,
  CVE-2021-47101, CVE-2023-52821, CVE-2024-44940, CVE-2024-36952,
  CVE-2021-47001, CVE-2024-38538, CVE-2024-40910, CVE-2021-47076,
  CVE-2024-35966, CVE-2024-50264, CVE-2024-35951, CVE-2023-52488,
  CVE-2023-52497, CVE-2024-49967)

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 20.04

• linux-image-5.4.0-1142-azure - 5.4.0-1142.149
• linux-image-azure-lts-20.04 - 5.4.0.1142.136

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References

• CVE-2024-46724
• CVE-2022-38096
• CVE-2024-36952
• CVE-2024-35967
• CVE-2023-52497
• CVE-2024-36938
• CVE-2024-36953
• CVE-2022-48938
• CVE-2023-52639
• CVE-2024-53057
• CVE-2023-52498
• CVE-2024-38597
• CVE-2024-44942
• CVE-2023-52488
• CVE-2021-47001
• CVE-2024-43892
• CVE-2024-35951
• CVE-2024-38538
• CVE-2024-50264
• CVE-2024-44940
• CVE-2024-42077
• CVE-2024-38553
• CVE-2024-26947
• CVE-2024-35963
• CVE-2021-47076
• CVE-2021-47101
• CVE-2022-48943
• CVE-2024-35965
• CVE-2024-40910
• CVE-2024-42240
• CVE-2024-35966
• CVE-2024-49967
• CVE-2022-48733
• CVE-2024-36968
• CVE-2024-42156
• CVE-2021-47501
• CVE-2023-52821
• CVE-2024-42068
• CVE-2024-35904

Related notices

• USN-7100-1
• USN-7100-2
• USN-7123-1
• USN-7144-1
• USN-7154-1
• USN-7155-1
• USN-7156-1
• USN-7159-1
• USN-7159-2
• USN-7159-3
• USN-7159-4
• USN-7159-5
• USN-7154-2
• USN-7194-1
• USN-7196-1
• USN-6816-1
• USN-6817-1
• USN-6817-2
• USN-6817-3
• USN-6878-1
• USN-6898-1
• USN-6898-2
• USN-6898-3
• USN-6898-4
• USN-6917-1
• USN-6919-1
• USN-6927-1
• USN-7019-1
• USN-7173-1
• USN-7173-2
• USN-6949-1
• USN-6950-1
• USN-6952-1
• USN-6955-1
• USN-6950-2
• USN-6957-1
• USN-6956-1
• USN-6950-3
• USN-6949-2
• USN-6950-4
• USN-6893-1
• USN-6893-2
• USN-6893-3
• USN-6918-1
• USN-7179-1
• USN-7179-2
• USN-7179-3
• USN-7186-1
• USN-7186-2
• USN-6818-1
• USN-6819-1
• USN-6820-1
• USN-6821-1
• USN-6818-2
• USN-6821-2
• USN-6820-2
• USN-6828-1
• USN-6821-3
• USN-6819-2
• USN-6819-3
• USN-6821-4
• USN-6818-3
• USN-6818-4
• USN-6819-4
• USN-6871-1
• USN-6892-1
• USN-7121-1
• USN-7121-2
• USN-7121-3
• USN-7148-1
• USN-7166-1
• USN-7166-2
• USN-7166-3
• USN-7163-1
• USN-7167-1
• USN-7169-1
• USN-7170-1
• USN-7169-2
• USN-7183-1
• USN-7184-1
• USN-7185-1
• USN-7169-4
• USN-7167-2
• USN-7169-3
• USN-7185-2
• USN-6766-1
• USN-6766-2
• USN-6766-3
• USN-6795-1
• USN-7007-1
• USN-7009-1
• USN-7007-2
• USN-7007-3
• USN-7009-2
• LSN-0108-1
• USN-7069-1
• USN-7069-2
• USN-7110-1
• USN-7089-1
• USN-7090-1
• USN-7089-2
• USN-7089-3
• USN-7095-1
• USN-7089-4
• USN-7089-5
• USN-7089-6
• USN-7089-7
• USN-7122-1
• USN-6999-1
• USN-7004-1
• USN-7005-1
• USN-7008-1
• USN-7005-2
• USN-6999-2
• USN-7029-1