ABB Cylon Aspect version 3.07.01 BMS/BAS controller is operating with default and hard-coded credentials contained in install package while exposed to the Internet.

    ABB Cylon Aspect 3.07.01 (config.inc.php) Hard-coded Credentials in phpMyAdminVendor: ABB Ltd.Product web page: https://www.global.abbAffected version: NEXUS Series, MATRIX-2 Series, ASPECT-Enterprise, ASPECT-Studio                  Firmware: <=3.07.01Summary: ASPECT is an award-winning scalable building energy managementand control solution designed to allow users seamless access to theirbuilding data through standard building protocols including smart devices.Desc: The ABB BMS/BAS controller is operating with default and hard-codedcredentials contained in install package while exposed to the Internet.Tested on: GNU/Linux 3.15.10 (armv7l)           GNU/Linux 3.10.0 (x86_64)           GNU/Linux 2.6.32 (x86_64)           Intel(R) Atom(TM) Processor E3930 @ 1.30GHz           Intel(R) Xeon(R) Silver 4208 CPU @ 2.10GHz           PHP/7.3.11           PHP/5.6.30           PHP/5.4.16           PHP/4.4.8           PHP/5.3.3           AspectFT Automation Application Server           lighttpd/1.4.32           lighttpd/1.4.18           Apache/2.2.15 (CentOS)           OpenJDK Runtime Environment (rhel-2.6.22.1.-x86_64)           OpenJDK 64-Bit Server VM (build 24.261-b02, mixed mode)           phpMyAdmin 2.11.9Vulnerability discovered by Gjoko 'LiquidWorm' Krstic                            @zeroscienceReported by DIVDAdvisory ID: ZSL-2024-5830Advisory URL: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2024-5830.phpCVE ID: CVE-2024-4007CVE URL: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-400721.04.2024--$ cat project                 P   R   O   J   E   C   T                        .|                        | |                        |'|            ._____                ___    |  |            |.   |' .---"|        _    .-'   '-. |  |     .--'|  ||   | _|    |     .-'|  _.|  |    ||   '-__  |   |  |    ||      |     |' | |.    |    ||       | |   |  |    ||      | ____|  '-'     '    ""       '-'   '-.'    '`      |____░▒▓███████▓▒░░▒▓███████▓▒░ ░▒▓██████▓▒░░▒▓█▓▒░▒▓███████▓▒░  ░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░ ░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░ ░▒▓███████▓▒░░▒▓███████▓▒░░▒▓████████▓▒░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░ ░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░ ░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░ ░▒▓███████▓▒░░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░                                                                     ░▒▓████████▓▒░▒▓██████▓▒░ ░▒▓██████▓▒░          ░▒▓█▓▒░░░░░░░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░         ░▒▓█▓▒░░░░░░░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░░░░░░          ░▒▓██████▓▒░░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒▒▓███▓▒░         ░▒▓█▓▒░░░░░░░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░         ░▒▓█▓▒░░░░░░░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░         ░▒▓█▓▒░░░░░░░░▒▓██████▓▒░ ░▒▓██████▓▒░                                                                                                                                                              $ cat max/var/www/html/phpMyAdmin/config.inc.php | grep control$cfg['Servers'][$i]['controluser'] = 'root';$cfg['Servers'][$i]['controlpass'] = 'F@c1liTy';

ABB Cylon Aspect 3.07.01 Hard-Coded Credentials

Proof of concept toolkit to demonstrate the issue noted in CVE-2023-52709 related to the TI bluetooth stack. When running Defensics test case #SMP legacy 1001 with loop mode on DUT configured as resolvable private address, after a while, the device will end up generating unresolvable random private address causing denial of service for already bonded peer devices.

TI Bluetooth Denial Of Service

pgAdmin versions 8.11 and earlier are vulnerable to a security flaw in OAuth2 authentication. This vulnerability allows an attacker to potentially obtain the client ID and secret, leading to unauthorized access to user data.

pgAdmin 8.11 Information Disclosure

Ubuntu Security Notice 7039-1 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

    ==========================================================================Ubuntu Security Notice USN-7039-1September 26, 2024linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 16.04 LTS- Ubuntu 14.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux: Linux kernel- linux-aws: Linux kernel for Amazon Web Services (AWS) systems- linux-kvm: Linux kernel for cloud environments- linux-lts-xenial: Linux hardware enablement kernel from Xenial for TrustyDetails:Several security issues were discovered in the Linux kernel.An attacker could possibly use these to compromise the system.This update corrects flaws in the following subsystems:  - GPU drivers;  - Input Device (Tablet) drivers;  - Modular ISDN driver;  - Multiple devices driver;  - Network drivers;  - Near Field Communication (NFC) drivers;  - SCSI drivers;  - GCT GDM724x LTE driver;  - USB subsystem;  - VFIO drivers;  - GFS2 file system;  - JFS file system;  - NILFS2 file system;  - Networking core;  - IPv4 networking;  - L2TP protocol;  - Netfilter;  - RxRPC session sockets;(CVE-2024-26651, CVE-2024-38583, CVE-2023-52527, CVE-2024-26880,CVE-2022-48850, CVE-2024-26733, CVE-2021-47188, CVE-2024-42154,CVE-2023-52809, CVE-2024-42228, CVE-2022-48863, CVE-2022-48836,CVE-2022-48838, CVE-2024-26677, CVE-2024-27437, CVE-2022-48857,CVE-2022-48791, CVE-2021-47181, CVE-2024-26851, CVE-2024-40902,CVE-2022-48851, CVE-2024-38570)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 16.04 LTS  linux-image-4.4.0-1137-kvm      4.4.0-1137.147                                  Available with Ubuntu Pro  linux-image-4.4.0-1174-aws      4.4.0-1174.189                                  Available with Ubuntu Pro  linux-image-4.4.0-259-generic   4.4.0-259.293                                  Available with Ubuntu Pro  linux-image-4.4.0-259-lowlatency  4.4.0-259.293                                  Available with Ubuntu Pro  linux-image-aws                 4.4.0.1174.178                                  Available with Ubuntu Pro  linux-image-generic             4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-generic-lts-utopic  4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-generic-lts-vivid   4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-generic-lts-wily    4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-generic-lts-xenial  4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-kvm                 4.4.0.1137.134                                  Available with Ubuntu Pro  linux-image-lowlatency          4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-lowlatency-lts-utopic  4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-lowlatency-lts-vivid  4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-lowlatency-lts-wily  4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-lowlatency-lts-xenial  4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-virtual             4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-virtual-lts-utopic  4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-virtual-lts-vivid   4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-virtual-lts-wily    4.4.0.259.265                                  Available with Ubuntu Pro  linux-image-virtual-lts-xenial  4.4.0.259.265                                  Available with Ubuntu ProUbuntu 14.04 LTS  linux-image-4.4.0-1136-aws      4.4.0-1136.142                                  Available with Ubuntu Pro  linux-image-4.4.0-259-generic   4.4.0-259.293~14.04.1                                  Available with Ubuntu Pro  linux-image-4.4.0-259-lowlatency  4.4.0-259.293~14.04.1                                  Available with Ubuntu Pro  linux-image-aws                 4.4.0.1136.133                                  Available with Ubuntu Pro  linux-image-generic-lts-xenial  4.4.0.259.293~14.04.1                                  Available with Ubuntu Pro  linux-image-lowlatency-lts-xenial  4.4.0.259.293~14.04.1                                  Available with Ubuntu Pro  linux-image-virtual-lts-xenial  4.4.0.259.293~14.04.1                                  Available with Ubuntu ProAfter a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:  https://ubuntu.com/security/notices/USN-7039-1  CVE-2021-47181, CVE-2021-47188, CVE-2022-48791, CVE-2022-48836,  CVE-2022-48838, CVE-2022-48850, CVE-2022-48851, CVE-2022-48857,  CVE-2022-48863, CVE-2023-52527, CVE-2023-52809, CVE-2024-26651,  CVE-2024-26677, CVE-2024-26733, CVE-2024-26851, CVE-2024-26880,  CVE-2024-27437, CVE-2024-38570, CVE-2024-38583, CVE-2024-40902,  CVE-2024-42154, CVE-2024-42228

Ubuntu Security Notice USN-7039-1

Ubuntu Security Notice 7021-3 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

    ==========================================================================Ubuntu Security Notice USN-7021-3September 26, 2024linux-lowlatency, linux-lowlatency-hwe-5.15 vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 22.04 LTS- Ubuntu 20.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux-lowlatency: Linux low latency kernel- linux-lowlatency-hwe-5.15: Linux low latency kernelDetails:Several security issues were discovered in the Linux kernel.An attacker could possibly use these to compromise the system.This update corrects flaws in the following subsystems:  - GPU drivers;  - BTRFS file system;  - F2FS file system;  - GFS2 file system;  - BPF subsystem;  - Netfilter;  - RxRPC session sockets;  - Integrity Measurement Architecture(IMA) framework;(CVE-2024-39494, CVE-2024-38570, CVE-2024-27012, CVE-2024-39496,CVE-2024-42160, CVE-2024-41009, CVE-2024-42228, CVE-2024-26677)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 22.04 LTS  linux-image-5.15.0-122-lowlatency  5.15.0-122.132  linux-image-5.15.0-122-lowlatency-64k  5.15.0-122.132  linux-image-lowlatency          5.15.0.122.111  linux-image-lowlatency-64k      5.15.0.122.111Ubuntu 20.04 LTS  linux-image-5.15.0-122-lowlatency  5.15.0-122.132~20.04.1  linux-image-5.15.0-122-lowlatency-64k  5.15.0-122.132~20.04.1  linux-image-lowlatency-64k-hwe-20.04  5.15.0.122.132~20.04.1  linux-image-lowlatency-hwe-20.04  5.15.0.122.132~20.04.1After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:  https://ubuntu.com/security/notices/USN-7021-3  https://ubuntu.com/security/notices/USN-7021-2  https://ubuntu.com/security/notices/USN-7021-1  CVE-2024-26677, CVE-2024-27012, CVE-2024-38570, CVE-2024-39494,  CVE-2024-39496, CVE-2024-41009, CVE-2024-42160, CVE-2024-42228Package Information:  https://launchpad.net/ubuntu/+source/linux-lowlatency/5.15.0-122.132  https://launchpad.net/ubuntu/+source/linux-lowlatency-hwe-5.15/5.15.0-122.132~20.04.1

Ubuntu Security Notice USN-7021-3

Red Hat Security Advisory 2024-7164-03 - The Migration Toolkit for Containers 1.8.4 is now available. Issues addressed include denial of service and password leak vulnerabilities.

The following advisory data is extracted from:

https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_7164.json

Red Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.

- Packet Storm Staff

====================================================================  
Red Hat Security Advisory

Synopsis:           Important: Migration Toolkit for Containers (MTC) 1.8.4 security and bug fix update  
Advisory ID:        RHSA-2024:7164-03  
Product:            Red Hat Migration Toolkit  
Advisory URL:       https://access.redhat.com/errata/RHSA-2024:7164  
Issue date:         2024-09-26  
Revision:           03  
CVE Names:          CVE-2019-25211  
====================================================================

Summary: 

The Migration Toolkit for Containers (MTC) 1.8.4 is now available.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

Description:

The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.

Security Fix(es) from Bugzilla:

* golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS (CVE-2023-45288)

* webpack-dev-middleware: lack of URL validation may lead to file leak (CVE-2024-29180)

* express: cause malformed URLs to be evaluated (CVE-2024-29041)

* axios: axios: Server-Side Request Forgery (CVE-2024-39338)

* golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect (CVE-2023-45289)

* jose-go: improper handling of highly compressed data (CVE-2024-28180)

* follow-redirects: Possible credential leak (CVE-2024-28849)

* moby: external DNS requests from 'internal' networks could lead to data exfiltration (CVE-2024-29018)

* containers/image: digest type does not guarantee valid type (CVE-2024-3727)

* golang: net: malformed DNS message can cause infinite loop (CVE-2024-24788)

* braces: fails to limit the number of characters it can handle (CVE-2024-4068)

* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Solution:

https://access.redhat.com/articles/11258

CVEs:

CVE-2019-25211

References:

https://access.redhat.com/security/updates/classification/#important  
https://bugzilla.redhat.com/show_bug.cgi?id=2268018  
https://bugzilla.redhat.com/show_bug.cgi?id=2268273  
https://bugzilla.redhat.com/show_bug.cgi?id=2268854  
https://bugzilla.redhat.com/show_bug.cgi?id=2269576  
https://bugzilla.redhat.com/show_bug.cgi?id=2270591  
https://bugzilla.redhat.com/show_bug.cgi?id=2270863  
https://bugzilla.redhat.com/show_bug.cgi?id=2274767  
https://bugzilla.redhat.com/show_bug.cgi?id=2279814  
https://bugzilla.redhat.com/show_bug.cgi?id=2280600  
https://bugzilla.redhat.com/show_bug.cgi?id=2290901  
https://bugzilla.redhat.com/show_bug.cgi?id=2293200  
https://bugzilla.redhat.com/show_bug.cgi?id=2295302  
https://bugzilla.redhat.com/show_bug.cgi?id=2299624  
https://bugzilla.redhat.com/show_bug.cgi?id=2299625  
https://bugzilla.redhat.com/show_bug.cgi?id=2299628  
https://bugzilla.redhat.com/show_bug.cgi?id=2299668  
https://issues.redhat.com/browse/MIG-1592  
https://issues.redhat.com/browse/MIG-1593  
https://issues.redhat.com/browse/MIG-1598  
https://issues.redhat.com/browse/MIG-1610

Red Hat Security Advisory 2024-7164-03

Ubuntu Security Notice 7020-3 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

    ==========================================================================Ubuntu Security Notice USN-7020-3September 26, 2024linux-raspi vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 24.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux-raspi: Linux kernel for Raspberry Pi systemsDetails:Several security issues were discovered in the Linux kernel.An attacker could possibly use these to compromise the system.This update corrects flaws in the following subsystems:  - GPU drivers;  - Network drivers;  - SCSI drivers;  - F2FS file system;  - BPF subsystem;  - IPv4 networking;(CVE-2024-42160, CVE-2024-42159, CVE-2024-42224, CVE-2024-41009,CVE-2024-42154, CVE-2024-42228)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 24.04 LTS  linux-image-6.8.0-1012-raspi    6.8.0-1012.13  linux-image-raspi               6.8.0-1012.13After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:  https://ubuntu.com/security/notices/USN-7020-3  https://ubuntu.com/security/notices/USN-7020-2  https://ubuntu.com/security/notices/USN-7020-1  CVE-2024-41009, CVE-2024-42154, CVE-2024-42159, CVE-2024-42160,  CVE-2024-42224, CVE-2024-42228Package Information:  https://launchpad.net/ubuntu/+source/linux-raspi/6.8.0-1012.13

Ubuntu Security Notice USN-7020-3

Red Hat Security Advisory 2024-7137-03 - An update for the python39:3.9 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.4 Telecommunications Update Service.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_7137.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Moderate: python39:3.9 security updateAdvisory ID:        RHSA-2024:7137-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:7137Issue date:         2024-09-25Revision:           03CVE Names:          CVE-2024-6923====================================================================Summary: An update for the python39:3.9 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.4 Telecommunications Update Service.Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.Security Fix(es):* cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection (CVE-2024-6923)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-6923References:https://access.redhat.com/security/updates/classification/#moderatehttps://bugzilla.redhat.com/show_bug.cgi?id=2302255

Red Hat Security Advisory 2024-7137-03

Ubuntu Security Notice 7034-2 - USN-7034-1 updated ca-certificates. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. The ca-certificates package contained outdated CA certificates. This update refreshes the included certificates to those contained in the 2.64 version of the Mozilla certificate authority bundle.

==========================================================================  
Ubuntu Security Notice USN-7034-2  
September 26, 2024

ca-certificates update  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS  
- Ubuntu 16.04 LTS

Summary:

The CA certificates in the ca-certificates package were updated.

Software Description:  
- ca-certificates: Common CA certificates

Details:

USN-7034-1 updated ca-certificates. This update provides  
the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS.

Original advisory details:

 The ca-certificates package contained outdated CA certificates.  
 This update refreshes the included certificates to those contained  
 in the 2.64 version of the Mozilla certificate authority bundle.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 18.04 LTS  
  ca-certificates                 202402031ubuntu0.18.04.1+esm1  
                                  Available with Ubuntu Pro

Ubuntu 16.04 LTS  
  ca-certificates                 202402031~16.04.1~esm1  
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:  
  https://ubuntu.com/security/notices/USN-7034-2  
  https://ubuntu.com/security/notices/USN-7034-1  
  https://launchpad.net/bugs/2081875

Ubuntu Security Notice USN-7034-2

Ubuntu Security Notice 7003-4 - It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

    ==========================================================================Ubuntu Security Notice USN-7003-4September 26, 2024linux-raspi vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux-raspi: Linux kernel for Raspberry Pi systemsDetails:It was discovered that the JFS file system contained an out-of-bounds readvulnerability when printing xattr debug information. A local attacker coulduse this to cause a denial of service (system crash). (CVE-2024-40902)Several security issues were discovered in the Linux kernel.An attacker could possibly use these to compromise the system.This update corrects flaws in the following subsystems:  - MIPS architecture;  - PowerPC architecture;  - x86 architecture;  - ACPI drivers;  - Serial ATA and Parallel ATA drivers;  - Drivers core;  - GPIO subsystem;  - GPU drivers;  - Greybus drivers;  - HID subsystem;  - I2C subsystem;  - IIO subsystem;  - InfiniBand drivers;  - Media drivers;  - VMware VMCI Driver;  - Network drivers;  - Pin controllers subsystem;  - S/390 drivers;  - SCSI drivers;  - USB subsystem;  - JFFS2 file system;  - JFS file system;  - File systems infrastructure;  - NILFS2 file system;  - IOMMU subsystem;  - Sun RPC protocol;  - Netfilter;  - Memory management;  - B.A.T.M.A.N. meshing protocol;  - CAN network layer;  - Ceph Core library;  - Networking core;  - IPv4 networking;  - IPv6 networking;  - IUCV driver;  - MAC80211 subsystem;  - NET/ROM layer;  - Network traffic control;  - SoC Audio for Freescale CPUs drivers;(CVE-2024-41034, CVE-2024-40984, CVE-2024-40987, CVE-2024-42119,CVE-2024-42224, CVE-2024-42101, CVE-2024-42096, CVE-2024-41095,CVE-2024-42087, CVE-2024-42104, CVE-2024-42148, CVE-2024-39495,CVE-2024-40980, CVE-2024-42223, CVE-2024-40961, CVE-2024-40988,CVE-2024-42127, CVE-2024-42090, CVE-2024-42236, CVE-2024-40995,CVE-2024-41007, CVE-2024-40968, CVE-2024-40901, CVE-2024-42097,CVE-2024-41041, CVE-2024-36974, CVE-2024-42115, CVE-2024-40978,CVE-2024-38619, CVE-2024-41049, CVE-2024-41035, CVE-2024-41044,CVE-2024-42154, CVE-2024-39499, CVE-2024-42070, CVE-2024-40959,CVE-2024-39487, CVE-2024-42157, CVE-2024-40916, CVE-2024-42076,CVE-2024-41087, CVE-2024-42094, CVE-2024-42124, CVE-2024-40905,CVE-2024-42145, CVE-2024-40963, CVE-2024-36894, CVE-2024-40942,CVE-2024-42092, CVE-2024-42153, CVE-2024-41089, CVE-2024-40912,CVE-2023-52887, CVE-2024-40934, CVE-2024-41006, CVE-2024-39501,CVE-2024-42084, CVE-2024-39506, CVE-2024-39509, CVE-2024-40943,CVE-2024-42106, CVE-2024-42093, CVE-2024-40902, CVE-2024-42086,CVE-2024-40958, CVE-2024-39502, CVE-2024-42232, CVE-2024-42089,CVE-2024-37078, CVE-2024-39469, CVE-2024-41046, CVE-2024-42102,CVE-2024-40974, CVE-2024-39505, CVE-2024-40960, CVE-2024-42105,CVE-2024-40932, CVE-2024-40904, CVE-2024-40981, CVE-2024-39503,CVE-2024-41097, CVE-2024-40941, CVE-2024-36978, CVE-2023-52803,CVE-2024-40945)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 20.04 LTS  linux-image-5.4.0-1116-raspi    5.4.0-1116.128  linux-image-raspi               5.4.0.1116.146  linux-image-raspi-hwe-18.04     5.4.0.1116.146  linux-image-raspi2              5.4.0.1116.146  linux-image-raspi2-hwe-18.04    5.4.0.1116.146After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:  https://ubuntu.com/security/notices/USN-7003-4  https://ubuntu.com/security/notices/USN-7003-3  https://ubuntu.com/security/notices/USN-7003-2  https://ubuntu.com/security/notices/USN-7003-1  CVE-2023-52803, CVE-2023-52887, CVE-2024-36894, CVE-2024-36974,  CVE-2024-36978, CVE-2024-37078, CVE-2024-38619, CVE-2024-39469,  CVE-2024-39487, CVE-2024-39495, CVE-2024-39499, CVE-2024-39501,  CVE-2024-39502, CVE-2024-39503, CVE-2024-39505, CVE-2024-39506,  CVE-2024-39509, CVE-2024-40901, CVE-2024-40902, CVE-2024-40904,  CVE-2024-40905, CVE-2024-40912, CVE-2024-40916, CVE-2024-40932,  CVE-2024-40934, CVE-2024-40941, CVE-2024-40942, CVE-2024-40943,  CVE-2024-40945, CVE-2024-40958, CVE-2024-40959, CVE-2024-40960,  CVE-2024-40961, CVE-2024-40963, CVE-2024-40968, CVE-2024-40974,  CVE-2024-40978, CVE-2024-40980, CVE-2024-40981, CVE-2024-40984,  CVE-2024-40987, CVE-2024-40988, CVE-2024-40995, CVE-2024-41006,  CVE-2024-41007, CVE-2024-41034, CVE-2024-41035, CVE-2024-41041,  CVE-2024-41044, CVE-2024-41046, CVE-2024-41049, CVE-2024-41087,  CVE-2024-41089, CVE-2024-41095, CVE-2024-41097, CVE-2024-42070,  CVE-2024-42076, CVE-2024-42084, CVE-2024-42086, CVE-2024-42087,  CVE-2024-42089, CVE-2024-42090, CVE-2024-42092, CVE-2024-42093,  CVE-2024-42094, CVE-2024-42096, CVE-2024-42097, CVE-2024-42101,  CVE-2024-42102, CVE-2024-42104, CVE-2024-42105, CVE-2024-42106,  CVE-2024-42115, CVE-2024-42119, CVE-2024-42124, CVE-2024-42127,  CVE-2024-42145, CVE-2024-42148, CVE-2024-42153, CVE-2024-42154,  CVE-2024-42157, CVE-2024-42223, CVE-2024-42224, CVE-2024-42232,  CVE-2024-42236Package Information:  https://launchpad.net/ubuntu/+source/linux-raspi/5.4.0-1116.128

Source

Packet Storm