Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2020-26541

Published: 2 October 2020

The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c.

From the Ubuntu Security Team

It was discovered that the Linux kernel did not properly enforce certain types of entries in the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. An attacker could use this to bypass UEFI Secure Boot restrictions.

Priority

Medium

Cvss 3 Severity Score

6.5

Score breakdown

Status

Package Release Status
linux-aws-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
groovy Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

focal Ignored
(superseded by linux-aws-5.11, was needed)
linux-azure-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
groovy Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

focal
Released (5.8.0-1043.46~20.04.1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-gcp-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
trusty Does not exist

groovy Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

xenial Does not exist

mantic Does not exist

focal Ignored
(superseded by linux-gcp-5.11, was needed)
linux-oracle-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
groovy Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

focal Ignored
(superseded by linux-oracle-5.11, was needed)
linux-riscv-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
groovy Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

focal Ignored
(superseded by linux-riscv-5.11, was needed)
linux-hwe-5.11
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
bionic Does not exist

hirsute Does not exist

focal
Released (5.11.0-34.36~20.04.1)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-riscv-5.11
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
bionic Does not exist

hirsute Does not exist

focal
Released (5.11.0-1018.19~20.04.2)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-aws-5.11
Launchpad, Ubuntu, Debian
bionic Does not exist

hirsute Does not exist

impish Does not exist

focal
Released (5.11.0-1017.18~20.04.1)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-azure-5.11
Launchpad, Ubuntu, Debian
bionic Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
focal
Released (5.11.0-1015.16~20.04.1)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-oem-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable
(5.13.0-1009.10)
hirsute Does not exist

upstream
Released (5.13~rc1)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-oracle-5.11
Launchpad, Ubuntu, Debian
bionic Does not exist

hirsute Does not exist

focal
Released (5.11.0-1017.18~20.04.1)
upstream
Released (5.13~rc1)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-bluefield
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.4.0-1023.26)
hirsute Does not exist

upstream
Released (5.13~rc1)
impish Does not exist

jammy Not vulnerable
(5.15.0-1011.13)
kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-nvidia
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

kinetic Does not exist

lunar Does not exist

upstream Needs triage

mantic Does not exist

linux
Launchpad, Ubuntu, Debian
xenial Ignored
(was needs-triage ESM criteria)
trusty Ignored
(ESM criteria, was needed)
hirsute
Released (5.11.0-34.36)
upstream
Released (5.13~rc1)
bionic Needed

focal
Released (5.4.0-92.103)
groovy Ignored
(end of life)
impish Not vulnerable
(5.13.0-14.14)
jammy Not vulnerable
(5.13.0-19.19)
kinetic Not vulnerable
(5.15.0-25.25)
lunar Not vulnerable
(5.15.0-25.25)
mantic Not vulnerable
(5.15.0-25.25)
Patches:
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by 56c5812623f95313f6a46fbf0beee7fa17c68bbf
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by 2565ca7f5ec1a98d51eea8860c4ab923f1ca2c85
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by d1f044103dad70c1cec0a8f3abdf00834fec8b98
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by ebd9c2ae369a45bdd9f8615484db09be58fc242b
linux-hwe
Launchpad, Ubuntu, Debian
xenial Ignored
(was needs-triage ESM criteria)
focal Does not exist

upstream
Released (5.13~rc1)
groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

mantic Does not exist

bionic Ignored
(replaced by linux-hwe-5.4, was needed)
linux-hwe-5.4
Launchpad, Ubuntu, Debian
groovy Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

upstream
Released (5.13~rc1)
bionic
Released (5.4.0-92.103~18.04.2)
hirsute Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-hwe-edge
Launchpad, Ubuntu, Debian
groovy Does not exist

impish Does not exist

trusty Does not exist

bionic Ignored
(superseded by linux-hwe-5.4, was needs-triage)
focal Does not exist

upstream
Released (5.13~rc1)
hirsute Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

xenial Ignored
(was needs-triage ESM criteria)
mantic Does not exist

linux-aws
Launchpad, Ubuntu, Debian
groovy Ignored
(end of life)
impish Not vulnerable
(5.13.0-1005.6)
xenial Ignored
(was needs-triage ESM criteria)
focal
Released (5.4.0-1061.64)
trusty Ignored
(ESM criteria, was needed)
bionic Needed

hirsute
Released (5.11.0-1017.18)
upstream
Released (5.13~rc1)
jammy Not vulnerable
(5.13.0-1005.6)
kinetic Not vulnerable
(5.15.0-1004.6)
lunar Not vulnerable
(5.15.0-1004.6)
mantic Not vulnerable
(5.15.0-1004.6)
linux-aws-5.0
Launchpad, Ubuntu, Debian
groovy Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

upstream
Released (5.13~rc1)
hirsute Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

bionic Ignored
(superseded by linux-aws-5.3, was needs-triage)
linux-aws-5.3
Launchpad, Ubuntu, Debian
groovy Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

upstream
Released (5.13~rc1)
hirsute Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

bionic Ignored
(superseded by linux-aws-5.4, was needs-triage)
linux-aws-5.4
Launchpad, Ubuntu, Debian
groovy Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

upstream
Released (5.13~rc1)
bionic
Released (5.4.0-1061.64~18.04.1)
focal Does not exist

hirsute Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-aws-hwe
Launchpad, Ubuntu, Debian
groovy Does not exist

impish Does not exist

trusty Does not exist

upstream
Released (5.13~rc1)
bionic Does not exist

focal Does not exist

xenial Ignored
(was needs-triage ESM criteria)
hirsute Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-azure
Launchpad, Ubuntu, Debian
groovy Ignored
(end of life)
impish Not vulnerable
(5.13.0-1004.5)
trusty Ignored
(ESM criteria, was needed)
focal
Released (5.4.0-1065.68)
xenial Ignored
(was needs-triage ESM criteria)
hirsute
Released (5.11.0-1015.16)
jammy Not vulnerable
(5.13.0-1006.7)
kinetic Not vulnerable
(5.15.0-1003.4)
lunar Not vulnerable
(5.15.0-1003.4)
upstream
Released (5.13~rc1)
mantic Not vulnerable
(5.15.0-1003.4)
bionic Ignored
(superseded by linux-azure-5.3, was needs-triage)
linux-kvm
Launchpad, Ubuntu, Debian
groovy Ignored
(end of life)
impish Not vulnerable
(5.13.0-1001.1)
trusty Does not exist

upstream
Released (5.13~rc1)
xenial Ignored
(was needs-triage ESM criteria)
bionic Needed

focal
Released (5.4.0-1051.53)
hirsute
Released (5.11.0-1015.16)
jammy Not vulnerable
(5.13.0-1004.4)
kinetic Not vulnerable
(5.15.0-1004.4)
lunar Not vulnerable
(5.15.0-1004.4)
mantic Does not exist

linux-lts-xenial
Launchpad, Ubuntu, Debian
groovy Does not exist

impish Does not exist

xenial Does not exist

trusty Ignored
(ESM criteria, was needed)
bionic Does not exist

focal Does not exist

upstream
Released (5.13~rc1)
hirsute Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-azure-4.15
Launchpad, Ubuntu, Debian
groovy Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Needed

focal Does not exist

hirsute Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

upstream
Released (5.13~rc1)
mantic Does not exist

linux-azure-5.3
Launchpad, Ubuntu, Debian
groovy Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

hirsute Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

upstream
Released (5.13~rc1)
mantic Does not exist

bionic Ignored
(superseded by linux-azure-5.4, was needs-triage)
linux-azure-5.4
Launchpad, Ubuntu, Debian
groovy Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

bionic
Released (5.4.0-1065.68~18.04.1)
hirsute Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

upstream
Released (5.13~rc1)
mantic Does not exist

linux-azure-edge
Launchpad, Ubuntu, Debian
groovy Does not exist

impish Does not exist

trusty Does not exist

focal Does not exist

hirsute Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

upstream
Released (5.13~rc1)
xenial Does not exist

mantic Does not exist

bionic Ignored
(superseded by linux-azure-5.3, was needs-triage)
linux-dell300x
Launchpad, Ubuntu, Debian
groovy Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Ignored
(end of standard support, was needed)
focal Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-gcp-5.11
Launchpad, Ubuntu, Debian
bionic Does not exist

hirsute Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

upstream
Released (5.13~rc1)
focal
Released (5.11.0-1018.20~20.04.2)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-oem-5.14
Launchpad, Ubuntu, Debian
bionic Does not exist

hirsute Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

focal Not vulnerable
(5.14.0-1004.4)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-intel-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

hirsute Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

focal Not vulnerable
(5.13.0-1007.7)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-azure-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

focal Not vulnerable
(5.13.0-1009.10~20.04.2)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-gkeop-5.15
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Needs triage

jammy Does not exist

kinetic Does not exist

lunar Does not exist

upstream Needs triage

mantic Does not exist

linux-aws-5.19
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

kinetic Does not exist

lunar Does not exist

mantic Does not exist

upstream Ignored
(superseded by linux-aws-6.2, was needs-triage)
linux-gcp-5.19
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

kinetic Does not exist

lunar Does not exist

upstream Ignored
(superseded by linux-gcp-6.2, was needs-triage)
mantic Does not exist

linux-riscv-5.19
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

kinetic Does not exist

lunar Does not exist

mantic Does not exist

upstream Ignored
(end of life, was needs-triage)
linux-hwe-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

trusty Does not exist

xenial Does not exist

focal Not vulnerable
(5.13.0-21.21~20.04.1)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

upstream
Released (5.13~rc1)
mantic Does not exist

linux-aws-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

focal Not vulnerable
(5.13.0-1008.9~20.04.2)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

upstream
Released (5.13~rc1)
mantic Does not exist

linux-allwinner
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Does not exist

kinetic Not vulnerable

lunar Not vulnerable

mantic Does not exist

upstream Ignored
(end of life, was needs-triage)
linux-allwinner-5.19
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

kinetic Does not exist

lunar Does not exist

mantic Does not exist

upstream Ignored
(end of life, was needs-triage)
linux-ibm
Launchpad, Ubuntu, Debian
focal
Released (5.4.0-1010.11)
upstream
Released (5.13~rc1)
bionic Does not exist

hirsute Does not exist

impish Does not exist

jammy Not vulnerable
(5.15.0-1002.2)
kinetic Not vulnerable
(5.15.0-1002.2)
lunar Not vulnerable
(5.15.0-1002.2)
trusty Does not exist

xenial Does not exist

mantic Not vulnerable
(5.15.0-1002.2)
linux-starfive
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Does not exist

kinetic Not vulnerable

lunar Not vulnerable

upstream Needs triage

mantic Not vulnerable

linux-starfive-5.19
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

kinetic Does not exist

lunar Does not exist

mantic Does not exist

upstream Ignored
(end of life, was needs-triage)
linux-fips
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

hirsute Does not exist

impish Does not exist

trusty Does not exist

upstream
Released (5.13~rc1)
xenial Ignored
(end of standard support)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-gcp-5.13
Launchpad, Ubuntu, Debian
bionic Does not exist

impish Does not exist

focal Not vulnerable
(5.13.0-1008.9~20.04.3)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-gke-5.4
Launchpad, Ubuntu, Debian
focal Does not exist

hirsute Does not exist

bionic
Released (5.4.0-1057.60~18.04.1)
upstream
Released (5.13~rc1)
groovy Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-hwe-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
groovy Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

focal Ignored
(superseded by linux-hwe-5.11, was pending)
linux-gkeop-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1029.30~18.04.2)
focal Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
groovy Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-azure-fde
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
jammy Needs triage

focal
Released (5.4.0-1065.68)
bionic Does not exist

impish Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-ibm-5.4
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(5.4.0-1010.11~18.04.2)
upstream
Released (5.13~rc1)
focal Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-oracle-5.13
Launchpad, Ubuntu, Debian
focal Not vulnerable
(5.13.0-1011.13~20.04.2)
upstream
Released (5.13~rc1)
bionic Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-gke-4.15
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-gke-5.0, was needs-triage)
upstream
Released (5.13~rc1)
focal Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-oem-5.10
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
bionic Does not exist

focal
Released (5.10.0-1049.51)
hirsute Does not exist

groovy Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-gkeop
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.4.0-1029.30)
hirsute Does not exist

upstream
Released (5.13~rc1)
jammy Needs triage

groovy Does not exist

impish Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-oem-6.0
Launchpad, Ubuntu, Debian
jammy Not vulnerable
(6.0.0-1006.6)
bionic Does not exist

focal Does not exist

kinetic Does not exist

trusty Does not exist

xenial Does not exist

lunar Does not exist

mantic Does not exist

upstream Ignored
(superseded by linux-oem-6.1, was needs-triage)
linux-aws-6.2
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

lunar Does not exist

upstream Ignored
(superseded by linux-aws-6.5, was needs-triage)
mantic Does not exist

linux-hwe-6.2
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

lunar Does not exist

mantic Does not exist

upstream Ignored
(superseded by linux-hwe-6.5, was needs-triage)
linux-lowlatency-hwe-6.2
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

lunar Does not exist

mantic Does not exist

upstream Ignored
(superseded by linux-lowlatency-hwe-6.5, was needs-triage)
linux-ibm-5.15
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Not vulnerable

jammy Does not exist

lunar Does not exist

upstream Needs triage

mantic Does not exist

linux-gcp-6.2
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

lunar Does not exist

mantic Does not exist

upstream Ignored
(superseded by linux-gcp-6.5, was needs-triage)
linux-azure-6.2
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

lunar Does not exist

mantic Does not exist

upstream Ignored
(superseded by linux-azure-6.5, was needs-triage)
linux-azure-fde-6.2
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

lunar Does not exist

mantic Does not exist

upstream Ignored
(replaced by linux-azure-6.5, was needs-triage)
linux-gcp-4.15
Launchpad, Ubuntu, Debian
bionic Needed

focal Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

upstream
Released (5.13~rc1)
xenial Does not exist

mantic Does not exist

linux-gke
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.4.0-1057.60)
hirsute Does not exist

upstream
Released (5.13~rc1)
groovy Does not exist

impish Does not exist

jammy Not vulnerable
(5.15.0-1002.2)
kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Ignored
(end of standard support)
mantic Does not exist

linux-lts-trusty
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

upstream
Released (5.13~rc1)
groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-gke-5.0
Launchpad, Ubuntu, Debian
bionic Ignored
(end of standard support, was needs-triage)
upstream
Released (5.13~rc1)
focal Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-gke-5.3
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
bionic Ignored
(end of standard support, was needed)
focal Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-raspi-5.4
Launchpad, Ubuntu, Debian
focal Does not exist

upstream
Released (5.13~rc1)
bionic
Released (5.4.0-1048.53~18.04.1)
groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-raspi2-5.3
Launchpad, Ubuntu, Debian
focal Does not exist

upstream
Released (5.13~rc1)
bionic Ignored
(end of standard support, was needed)
groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-riscv
Launchpad, Ubuntu, Debian
bionic Does not exist

upstream
Released (5.13~rc1)
groovy Ignored
(end of life)
hirsute
Released (5.11.0-1018.19)
impish Not vulnerable
(5.13.0-1002.2)
jammy Not vulnerable
(5.13.0-1004.4)
kinetic Not vulnerable
(5.15.0-1007.7)
lunar Not vulnerable
(5.15.0-1007.7)
trusty Does not exist

xenial Does not exist

mantic Not vulnerable
(5.15.0-1007.7)
focal Ignored
(superseded by linux-riscv-5.8, was needs-triage)
linux-snapdragon
Launchpad, Ubuntu, Debian
focal Does not exist

upstream
Released (5.13~rc1)
xenial Ignored
(end of standard support, was needs-triage)
bionic Ignored
(end of standard support, was needed)
groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

mantic Does not exist

linux-gcp-5.3
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
focal Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

bionic Ignored
(superseded by linux-gcp-5.4, was needs-triage)
linux-gcp-5.4
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
bionic
Released (5.4.0-1059.63~18.04.1)
focal Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-gcp-edge
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
focal Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

bionic Ignored
(end of kernel support, was needs-triage)
linux-oem
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
focal Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Ignored
(end of standard support, was needs-triage)
mantic Does not exist

bionic Ignored
(replaced by linux-hwe-5.4, was needs-triage)
linux-oem-5.6
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
bionic Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

focal Ignored
(superseded by linux-oem-5.10, was needed)
linux-oem-osp1
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
bionic Ignored
(end of standard support, was needs-triage)
focal Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-oracle
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
xenial Ignored
(was needs-triage ESM criteria)
bionic Needed

focal
Released (5.4.0-1059.63)
groovy Ignored
(end of life)
hirsute
Released (5.11.0-1017.18)
impish Not vulnerable
(5.13.0-1008.10)
jammy Not vulnerable
(5.13.0-1008.10)
kinetic Not vulnerable
(5.15.0-1002.4)
lunar Not vulnerable
(5.15.0-1002.4)
trusty Does not exist

mantic Not vulnerable
(5.15.0-1002.4)
linux-oracle-5.0
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
focal Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

bionic Ignored
(superseded by linux-oracle-5.3, was needs-triage)
linux-oracle-5.3
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
focal Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

bionic Ignored
(superseded by linux-oracle-5.4, was needs-triage)
linux-oracle-5.4
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
bionic
Released (5.4.0-1059.63~18.04.1)
focal Does not exist

groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

linux-raspi
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
bionic Does not exist

focal
Released (5.4.0-1048.53)
groovy Ignored
(end of life)
hirsute
Released (5.11.0-1017.18)
impish Not vulnerable
(5.13.0-1006.7)
jammy Not vulnerable
(5.13.0-1008.9)
kinetic Not vulnerable
(5.15.0-1005.5)
lunar Not vulnerable
(5.15.0-1005.5)
trusty Does not exist

xenial Does not exist

mantic Not vulnerable
(5.15.0-1005.5)
linux-raspi2
Launchpad, Ubuntu, Debian
upstream
Released (5.13~rc1)
bionic Ignored
(end of standard support, was needed)
groovy Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Ignored
(end of standard support, was needs-triage)
mantic Does not exist

focal Ignored
(replaced by linux-raspi, was needs-triage)
linux-lowlatency
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

jammy Not vulnerable
(5.15.0-22.22)
upstream
Released (5.13~rc1)
kinetic Not vulnerable
(5.15.0-24.24)
lunar Not vulnerable
(5.15.0-24.24)
mantic Not vulnerable
(5.15.0-24.24)
linux-oem-5.17
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

impish Does not exist

trusty Does not exist

xenial Does not exist

jammy Not vulnerable
(5.17.0-1003.3)
upstream
Released (5.13~rc1)
kinetic Not vulnerable
(5.17.0-1003.3)
lunar Does not exist

mantic Does not exist

linux-intel-iotg
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

impish Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

jammy Not vulnerable
(5.15.0-1004.6)
kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-lowlatency-hwe-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable

jammy Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-hwe-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable

jammy Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-aws-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

jammy Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

focal Not vulnerable

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-azure-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable

jammy Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-gcp-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable

jammy Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-gke-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable

jammy Does not exist

trusty Does not exist

xenial Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

upstream Ignored
(end of life, was needs-triage)
linux-gcp
Launchpad, Ubuntu, Debian
xenial Ignored
(was needs-triage ESM criteria)
focal
Released (5.4.0-1059.63)
groovy Ignored
(end of life)
hirsute
Released (5.11.0-1018.20)
impish Not vulnerable
(5.13.0-1003.4)
jammy Not vulnerable
(5.13.0-1005.6)
kinetic Not vulnerable
(5.15.0-1003.6)
lunar Not vulnerable
(5.15.0-1003.6)
trusty Does not exist

upstream
Released (5.13~rc1)
mantic Not vulnerable
(5.15.0-1003.6)
bionic Ignored
(superseded by linux-gcp-5.3, was needs-triage)
linux-oracle-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable

jammy Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

kinetic Does not exist

lunar Does not exist

mantic Does not exist

linux-azure-fde-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

jammy Does not exist

kinetic Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

focal Not vulnerable
(5.15.0-1007.8~20.04.1)
lunar Does not exist

mantic Does not exist

linux-oem-6.1
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable

kinetic Does not exist

trusty Does not exist

xenial Does not exist

lunar Does not exist

upstream Needs triage

mantic Does not exist

linux-hwe-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable

kinetic Does not exist

trusty Does not exist

xenial Does not exist

lunar Does not exist

mantic Does not exist

upstream Ignored
(superseded by linux-hwe-6.2, was needs-triage)
linux-lowlatency-hwe-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable

kinetic Does not exist

trusty Does not exist

xenial Does not exist

lunar Does not exist

mantic Does not exist

upstream Ignored
(superseded by linux-lowlatency-hwe-6.2, was needs-triage)
linux-azure-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable

kinetic Does not exist

trusty Does not exist

xenial Does not exist

lunar Does not exist

mantic Does not exist

upstream Ignored
(superseded by linux-azure-6.2, was needs-triage)
linux-intel-iotg-5.15
Launchpad, Ubuntu, Debian
focal Not vulnerable
(5.15.0-1003.5~20.04.1)
bionic Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

mantic Does not exist

linux-iot
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

mantic Does not exist

linux-azure-fde-5.19
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Not vulnerable

kinetic Does not exist

lunar Does not exist

trusty Does not exist

xenial Does not exist

mantic Does not exist

upstream Ignored
(superseded by linux-azure-fde-6.2, was needs-triage)
linux-riscv-5.15
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable

jammy Does not exist

kinetic Does not exist

lunar Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

mantic Does not exist

linux-xilinx-zynqmp
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable

kinetic Does not exist

lunar Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

jammy Not vulnerable

mantic Does not exist

linux-nvidia-6.2
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

lunar Does not exist

mantic Does not exist

upstream Ignored
(superseded by linux-nvidia-6.5, was needs-triage)
linux-starfive-6.2
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

lunar Does not exist

mantic Does not exist

upstream Ignored
(superseded by linux-starfive-6.5, was needs-triage)
linux-laptop
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Does not exist

lunar Does not exist

mantic Not vulnerable

upstream Needs triage

linux-oem-6.5
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

lunar Does not exist

mantic Does not exist

upstream Needs triage

linux-hwe-6.5
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

lunar Does not exist

mantic Does not exist

upstream Needs triage

linux-lowlatency-hwe-6.5
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

lunar Does not exist

mantic Does not exist

upstream Needs triage

linux-riscv-6.5
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

upstream Needs triage

linux-starfive-6.5
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

upstream Needs triage

linux-aws-6.5
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

upstream Needs triage

linux-azure-6.5
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

upstream Needs triage

linux-gcp-6.5
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

upstream Needs triage

linux-oracle-6.5
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Not vulnerable

mantic Does not exist

upstream Needs triage

Severity score breakdown

Parameter Value
Base score 6.5
Attack vector Local
Attack complexity Low
Privileges required High
User interaction Required
Scope Unchanged
Confidentiality High
Integrity impact High
Availability impact High
Vector CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H