Headline
Ubuntu Security Notice USN-6863-1
Ubuntu Security Notice 6863-1 - A security issue was discovered in the Linux kernel. An attacker could possibly use it to compromise the system.
==========================================================================Ubuntu Security Notice USN-6863-1July 04, 2024linux, linux-ibm, linux-lowlatency, linux-nvidia, linux-raspivulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 24.04 LTSSummary:The system could be made to crash or run programs as an administrator.Software Description:- linux: Linux kernel- linux-ibm: Linux kernel for IBM cloud systems- linux-lowlatency: Linux low latency kernel- linux-nvidia: Linux kernel for NVIDIA systems- linux-raspi: Linux kernel for Raspberry Pi systemsDetails:A security issue was discovered in the Linux kernel.An attacker could possibly use it to compromise the system.This update corrects flaws in the following subsystem: - Netfilter;(CVE-2024-26924)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 24.04 LTS linux-image-6.8.0-1006-raspi 6.8.0-1006.6 linux-image-6.8.0-1007-ibm 6.8.0-1007.7 linux-image-6.8.0-1008-nvidia 6.8.0-1008.8 linux-image-6.8.0-1008-nvidia-64k 6.8.0-1008.8 linux-image-6.8.0-36-generic 6.8.0-36.36 linux-image-6.8.0-36-generic-64k 6.8.0-36.36 linux-image-6.8.0-36-lowlatency 6.8.0-36.36.1 linux-image-6.8.0-36-lowlatency-64k 6.8.0-36.36.1 linux-image-generic 6.8.0-36.36 linux-image-generic-64k 6.8.0-36.36 linux-image-generic-64k-hwe-24.04 6.8.0-36.36 linux-image-generic-hwe-24.04 6.8.0-36.36 linux-image-generic-lpae 6.8.0-36.36 linux-image-ibm 6.8.0-1007.7 linux-image-ibm-classic 6.8.0-1007.7 linux-image-ibm-lts-24.04 6.8.0-1007.7 linux-image-kvm 6.8.0-36.36 linux-image-lowlatency 6.8.0-36.36.1 linux-image-lowlatency-64k 6.8.0-36.36.1 linux-image-nvidia 6.8.0-1008.8 linux-image-nvidia-64k 6.8.0-1008.8 linux-image-raspi 6.8.0-1006.6 linux-image-virtual 6.8.0-36.36 linux-image-virtual-hwe-24.04 6.8.0-36.36After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References: https://ubuntu.com/security/notices/USN-6863-1 CVE-2024-26924Package Information: https://launchpad.net/ubuntu/+source/linux/6.8.0-36.36 https://launchpad.net/ubuntu/+source/linux-ibm/6.8.0-1007.7 https://launchpad.net/ubuntu/+source/linux-lowlatency/6.8.0-36.36.1 https://launchpad.net/ubuntu/+source/linux-nvidia/6.8.0-1008.8 https://launchpad.net/ubuntu/+source/linux-raspi/6.8.0-1006.6Related news
Ubuntu Security Notice 6873-2 - It was discovered that the Intel Data Streaming and Intel Analytics Accelerator drivers in the Linux kernel allowed direct access to the devices for unprivileged users and virtual machines. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
Ubuntu Security Notice 6872-2 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
Ubuntu Security Notice 6870-2 - It was discovered that the Intel Data Streaming and Intel Analytics Accelerator drivers in the Linux kernel allowed direct access to the devices for unprivileged users and virtual machines. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
Ubuntu Security Notice 6864-2 - It was discovered that the Intel Data Streaming and Intel Analytics Accelerator drivers in the Linux kernel allowed direct access to the devices for unprivileged users and virtual machines. A local attacker could use this to cause a denial of service. A security issue was discovered in the Linux kernel. An attacker could possibly use it to compromise the system.
Ubuntu Security Notice 6872-1 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
Ubuntu Security Notice 6875-1 - It was discovered that the Intel Data Streaming and Intel Analytics Accelerator drivers in the Linux kernel allowed direct access to the devices for unprivileged users and virtual machines. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
Ubuntu Security Notice 6864-1 - It was discovered that the Intel Data Streaming and Intel Analytics Accelerator drivers in the Linux kernel allowed direct access to the devices for unprivileged users and virtual machines. A local attacker could use this to cause a denial of service. A security issue was discovered in the Linux kernel. An attacker could possibly use it to compromise the system.
Ubuntu Security Notice 6874-1 - It was discovered that the Intel Data Streaming and Intel Analytics Accelerator drivers in the Linux kernel allowed direct access to the devices for unprivileged users and virtual machines. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
Ubuntu Security Notice 6873-1 - It was discovered that the Intel Data Streaming and Intel Analytics Accelerator drivers in the Linux kernel allowed direct access to the devices for unprivileged users and virtual machines. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
Ubuntu Security Notice 6871-1 - It was discovered that the ATA over Ethernet driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the Atheros 802.11ac wireless driver did not properly validate certain data structures, leading to a NULL pointer dereference. An attacker could possibly use this to cause a denial of service.
Ubuntu Security Notice 6870-1 - It was discovered that the Intel Data Streaming and Intel Analytics Accelerator drivers in the Linux kernel allowed direct access to the devices for unprivileged users and virtual machines. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
Ubuntu Security Notice 6869-1 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.