LSN-0077-1
- Source
- https://ubuntu.com/security/notices/LSN-0077-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/lsn/LSN-0077-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/LSN-0077-1
- Related
- Published
- 2021-05-17T07:04:24Z
- Modified
- 2021-05-17T07:04:24Z
- Summary
- Kernel Live Patch Security Notice
- Details
-
Vincent Dehors discovered that the shiftfs file system in the Ubuntu Linux kernel did not properly handle faults in copyfromuser() when passing through ioctls to an underlying file system. A local attacker could use this to cause a denial of service (memory exhaustion) or execute arbitrary code.(CVE-2021-3492)
- References
Affected packages
Ubuntu:Pro:18.04:LTS / linux-gke-5.4
Package
- Name
- linux-gke-5.4
- Purl
- pkg:deb/ubuntu/linux-gke-5.4@5.4.0-1042.44~18.04.1?arch=source&distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.4.0-1042.44~18.04.1
Ubuntu:Pro:20.04:LTS / linux
Package
- Name
- linux
- Purl
- pkg:deb/ubuntu/linux@5.4.0-72.80?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.4.0-72.80
Affected versions
5.*
5.3.0-18.19
5.3.0-24.26
5.4.0-9.12
5.4.0-18.22
5.4.0-21.25
5.4.0-24.28
5.4.0-25.29
5.4.0-26.30
5.4.0-28.32
5.4.0-29.33
5.4.0-31.35
5.4.0-33.37
5.4.0-37.41
5.4.0-39.43
5.4.0-40.44
5.4.0-42.46
5.4.0-45.49
5.4.0-47.51
5.4.0-48.52
5.4.0-51.56
5.4.0-52.57
5.4.0-53.59
5.4.0-54.60
5.4.0-56.62
5.4.0-58.64
5.4.0-59.65
5.4.0-60.67
5.4.0-62.70
5.4.0-64.72
5.4.0-65.73
5.4.0-66.74
5.4.0-67.75
5.4.0-70.78
5.4.0-71.79