Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2021-23133

Published: 22 April 2021

A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)->sctp.addr_wq_lock then an element is removed from the auto_asconf_splist list without any proper locking. This can be exploited by an attacker with network service privileges to escalate to root or from the context of an unprivileged user directly if a BPF_CGROUP_INET_SOCK_CREATE is attached which denies creation of some SCTP socket.

From the Ubuntu Security Team

Or Cohen discovered that the SCTP implementation in the Linux kernel contained a race condition in some situations, leading to a use-after-free condition. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.

Notes

AuthorNote
sbeattie
commit b166a20b0738 "net/sctp: fix race condition in
sctp_destroy_sock" in net-next

Priority

Medium

Cvss 3 Severity Score

7.0

Score breakdown

Status

Package Release Status
linux-aws-5.8
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

groovy Does not exist

hirsute Does not exist

focal
Released (5.8.0-1038.40~20.04.1)
upstream
Released (5.13~rc1)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-azure-5.8
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

groovy Does not exist

hirsute Does not exist

focal
Released (5.8.0-1036.38~20.04.1)
upstream
Released (5.13~rc1)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-gcp-5.8
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

groovy Does not exist

hirsute Does not exist

focal
Released (5.8.0-1035.37~20.04.1)
upstream
Released (5.13~rc1)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-oracle-5.8
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

groovy Does not exist

hirsute Does not exist

focal
Released (5.8.0-1033.34~20.04.1)
upstream
Released (5.13~rc1)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-riscv-5.8
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

groovy Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
focal
Released (5.8.0-29.31~20.04.1)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-gcp-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1046.49~18.04.1)
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-hwe-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-77.86~18.04.1)
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-oem-5.10
Launchpad, Ubuntu, Debian
focal
Released (5.10.0-1032.33)
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-hwe-5.11
Launchpad, Ubuntu, Debian
focal Not vulnerable
(5.11.0-22.23~20.04.1)
upstream
Released (5.13~rc1)
trusty Does not exist

xenial Does not exist

bionic Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-riscv-5.11
Launchpad, Ubuntu, Debian
focal Not vulnerable
(5.11.0-1015.16~20.04.1)
upstream
Released (5.13~rc1)
trusty Does not exist

xenial Does not exist

bionic Does not exist

hirsute Does not exist

impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-bluefield
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
focal
Released (5.4.0-1013.16)
impish Does not exist

kinetic Does not exist

jammy Not vulnerable
(5.15.0-1010.12)
lunar Does not exist

linux-oem-5.13
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Not vulnerable
(5.13.0-1009.10)
hirsute Does not exist

upstream
Released (5.13~rc1)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-aws-5.11
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

hirsute Does not exist

impish Does not exist

focal Not vulnerable
(5.11.0-1009.9~20.04.2)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-azure-5.11
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

hirsute Does not exist

focal Not vulnerable
(5.11.0-1007.7~20.04.2)
upstream
Released (5.13~rc1)
impish Does not exist

jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-oracle-5.11
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
impish Does not exist

focal Not vulnerable
(5.11.0-1008.8~20.04.1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux
Launchpad, Ubuntu, Debian
impish Not vulnerable
(5.11.0-20.21+21.10.1)
trusty Not vulnerable
(3.11.0-12.19)
bionic
Released (4.15.0-147.151)
groovy
Released (5.8.0-59.66)
xenial Not vulnerable
(4.4.0-2.16)
upstream
Released (5.13~rc1)
focal
Released (5.4.0-77.86)
hirsute
Released (5.11.0-22.23)
jammy Not vulnerable
(5.13.0-19.19)
kinetic Not vulnerable
(5.15.0-25.25)
lunar Not vulnerable
(5.19.0-21.21)
Patches:
Introduced by

61023658760032e97869b07d54be9681d2529e77

Fixed by 34e5b01186858b36c4d7c87e1a025071e8e2401f
Introduced by

b166a20b07382b8bc1dcee2a448715c9c2c81b5b

Fixed by 01bfe5e8e428b475982a98a46cca5755726f3f7f
linux-hwe
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

bionic Ignored
(replaced by linux-hwe-5.4)
focal Does not exist

groovy Does not exist

hirsute Does not exist

xenial
Released (4.15.0-147.151~16.04.1)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-hwe-5.8
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Does not exist

groovy Does not exist

hirsute Does not exist

focal
Released (5.8.0-59.66~20.04.1)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-hwe-edge
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Ignored
(superseded by linux-hwe)
bionic Ignored
(superseded by linux-hwe-5.4)
focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-lts-trusty
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-lts-xenial
Launchpad, Ubuntu, Debian
impish Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

trusty Not vulnerable
(4.4.0-13.29~14.04.1)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-kvm
Launchpad, Ubuntu, Debian
impish Not vulnerable
(5.11.0-1009.9+21.10.1)
trusty Does not exist

bionic
Released (4.15.0-1094.96)
groovy
Released (5.8.0-1030.32)
focal
Released (5.4.0-1041.42)
xenial Not vulnerable
(4.4.0-1004.9)
jammy Not vulnerable
(5.13.0-1004.4)
upstream
Released (5.13~rc1)
hirsute
Released (5.11.0-1009.9)
kinetic Not vulnerable
(5.15.0-1004.4)
lunar Not vulnerable
(5.19.0-1008.8)
linux-aws
Launchpad, Ubuntu, Debian
impish Not vulnerable
(5.11.0-1009.9+21.10.1)
trusty Not vulnerable
(4.4.0-1002.2)
xenial Not vulnerable
(4.4.0-1001.10)
bionic
Released (4.15.0-1106.113)
focal
Released (5.4.0-1051.53)
groovy
Released (5.8.0-1038.40)
hirsute
Released (5.11.0-1011.11)
jammy Not vulnerable
(5.13.0-1005.6)
upstream
Released (5.13~rc1)
kinetic Not vulnerable
(5.15.0-1004.6)
lunar Not vulnerable
(5.19.0-1009.9)
linux-aws-5.0
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Ignored
(superseded by linux-aws-5.3)
focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-aws-5.3
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Ignored
(superseded by linux-aws-5.4)
focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-aws-5.4
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

bionic
Released (5.4.0-1051.53~18.04.1)
upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-aws-hwe
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

bionic Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

xenial
Released (4.15.0-1106.113~16.04.1)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-azure
Launchpad, Ubuntu, Debian
impish Not vulnerable
(5.11.0-1007.7+21.10.1)
bionic Ignored
(superseded by linux-azure-5.3)
groovy
Released (5.8.0-1036.38)
hirsute
Released (5.11.0-1009.9)
trusty
Released (4.15.0-1118.131~14.04.1)
xenial
Released (4.15.0-1118.131~16.04.1)
jammy Not vulnerable
(5.13.0-1006.7)
upstream
Released (5.13~rc1)
focal
Released (5.4.0-1051.53)
kinetic Not vulnerable
(5.15.0-1003.4)
lunar Not vulnerable
(5.19.0-1008.8)
linux-azure-4.15
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic
Released (4.15.0-1118.131)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-azure-5.3
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Ignored
(superseded by linux-azure-5.4)
focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-azure-5.4
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
bionic
Released (5.4.0-1051.53~18.04.1)
kinetic Does not exist

lunar Does not exist

linux-dell300x
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic
Released (4.15.0-1022.26)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-azure-edge
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Ignored
(superseded by linux-azure-5.3)
focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-gcp
Launchpad, Ubuntu, Debian
impish Not vulnerable
(5.11.0-1009.10+21.10.1)
trusty Does not exist

bionic Ignored
(superseded by linux-gcp-5.3)
groovy
Released (5.8.0-1035.37)
hirsute
Released (5.11.0-1011.12)
xenial
Released (4.15.0-1103.116~16.04.1)
jammy Not vulnerable
(5.13.0-1005.6)
upstream
Released (5.13~rc1)
focal
Released (5.4.0-1046.49)
kinetic Not vulnerable
(5.15.0-1003.6)
lunar Not vulnerable
(5.19.0-1008.8)
linux-gcp-4.15
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic
Released (4.15.0-1103.116)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-gcp-5.3
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Ignored
(superseded by linux-gcp-5.4)
focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-gcp-edge
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Ignored
(superseded by linux-gcp-5.3)
focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-gke-4.15
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic Ignored
(was needs-triage now end-of-life)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-gke-5.0
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic Ignored
(was needs-triage now end-of-life)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-gke-5.3
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic Ignored
(was needed now end-of-life)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-gke-5.4
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic
Released (5.4.0-1046.48~18.04.1)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-gkeop
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Does not exist

groovy Does not exist

hirsute Does not exist

focal
Released (5.4.0-1018.19)
upstream
Released (5.13~rc1)
jammy Not vulnerable
(5.15.0-1001.2)
kinetic Does not exist

lunar Does not exist

linux-gkeop-5.4
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic
Released (5.4.0-1018.19~18.04.1)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-oracle
Launchpad, Ubuntu, Debian
impish Not vulnerable
(5.11.0-1008.8+21.10.1)
trusty Does not exist

bionic
Released (4.15.0-1075.83)
focal
Released (5.4.0-1048.52)
groovy
Released (5.8.0-1033.34)
hirsute
Released (5.11.0-1010.10)
xenial
Released (4.15.0-1075.83~16.04.1)
jammy Not vulnerable
(5.13.0-1008.10)
upstream
Released (5.13~rc1)
kinetic Not vulnerable
(5.15.0-1002.4)
lunar Not vulnerable
(5.19.0-1008.8)
linux-oracle-5.0
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Ignored
(superseded by linux-oracle-5.3)
focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-oracle-5.3
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Ignored
(superseded by linux-oracle-5.4)
focal Does not exist

groovy Does not exist

hirsute Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-oracle-5.4
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic
Released (5.4.0-1048.52~18.04.1)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-oem
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic Ignored
(was needs-triage now end-of-life)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

xenial Ignored
(superseded by linux-hwe)
lunar Does not exist

linux-oem-5.6
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Does not exist

groovy Does not exist

hirsute Does not exist

focal Ignored
(was needed now end-of-life)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-oem-osp1
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic Ignored
(was needs-triage now end-of-life)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-raspi
Launchpad, Ubuntu, Debian
impish Not vulnerable
(5.13.0-1006.7)
trusty Does not exist

xenial Does not exist

bionic Does not exist

hirsute
Released (5.11.0-1012.13)
focal
Released (5.4.0-1038.41)
groovy
Released (5.8.0-1029.32)
upstream
Released (5.13~rc1)
jammy Not vulnerable
(5.13.0-1008.9)
kinetic Not vulnerable
(5.15.0-1005.5)
lunar Not vulnerable
(5.19.0-1004.10)
linux-raspi2
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

focal Ignored
(replaced by linux-raspi)
groovy Does not exist

hirsute Does not exist

bionic
Released (4.15.0-1089.94)
xenial Ignored
(was needs-triage now end-of-life)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-raspi2-5.3
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic Ignored
(was needed now end-of-life)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-raspi-5.4
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic
Released (5.4.0-1038.41~18.04.1)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-riscv
Launchpad, Ubuntu, Debian
impish Not vulnerable
(5.11.0-1010.10+21.10.2)
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Ignored
(was needs-triage now end-of-life)
groovy
Released (5.8.0-29.31)
hirsute
Released (5.11.0-1012.12)
upstream
Released (5.13~rc1)
jammy Not vulnerable
(5.13.0-1004.4)
kinetic Not vulnerable
(5.15.0-1007.7)
lunar Not vulnerable
(5.19.0-1004.4)
linux-snapdragon
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

focal Does not exist

groovy Does not exist

hirsute Does not exist

bionic
Released (4.15.0-1106.115)
xenial Ignored
(was needs-triage now end-of-life)
jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-gke
Launchpad, Ubuntu, Debian
impish Does not exist

focal
Released (5.4.0-1046.48)
xenial Ignored
(reached end of standard support)
trusty Does not exist

bionic Does not exist

groovy Does not exist

hirsute Does not exist

upstream
Released (5.13~rc1)
jammy Not vulnerable
(5.15.0-1002.2)
kinetic Does not exist

lunar Does not exist

linux-ibm
Launchpad, Ubuntu, Debian
impish Does not exist

trusty Does not exist

xenial Does not exist

bionic Does not exist

hirsute Does not exist

focal Not vulnerable
(5.4.0-1003.4)
upstream
Released (5.13~rc1)
jammy Not vulnerable
(5.15.0-1002.2)
kinetic Not vulnerable
(5.15.0-1002.2)
lunar Not vulnerable
(5.19.0-1008.8)
linux-gcp-5.11
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

hirsute Does not exist

impish Does not exist

focal Not vulnerable
(5.11.0-1009.10~20.04.1)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-oem-5.14
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

hirsute Does not exist

impish Does not exist

focal Not vulnerable
(5.14.0-1004.4)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-intel-5.13
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

hirsute Does not exist

impish Does not exist

upstream
Released (5.13~rc1)
focal Not vulnerable
(5.13.0-1007.7)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-azure-5.13
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

impish Does not exist

focal Not vulnerable
(5.13.0-1009.10~20.04.2)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-hwe-5.13
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

impish Does not exist

focal Not vulnerable
(5.13.0-21.21~20.04.1)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-aws-5.13
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

impish Does not exist

focal Not vulnerable
(5.13.0-1008.9~20.04.2)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-fips
Launchpad, Ubuntu, Debian
trusty Does not exist

bionic Does not exist

focal Does not exist

hirsute Does not exist

impish Does not exist

upstream
Released (5.13~rc1)
xenial Ignored
(out of standard support)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-oracle-5.13
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

impish Does not exist

focal Not vulnerable
(5.13.0-1011.13~20.04.2)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-gcp-5.13
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

impish Does not exist

focal Not vulnerable
(5.13.0-1008.9~20.04.3)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-ibm-5.4
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

focal Does not exist

impish Does not exist

bionic Not vulnerable
(5.4.0-1010.11~18.04.2)
upstream
Released (5.13~rc1)
jammy Does not exist

kinetic Does not exist

lunar Does not exist

linux-azure-fde
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

impish Does not exist

focal Not vulnerable
(5.4.0-1063.66+cvm2.2)
upstream
Released (5.13~rc1)
jammy Not vulnerable
(5.13.0-1006.7)
kinetic Does not exist

lunar Does not exist

linux-lowlatency
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

impish Does not exist

jammy Not vulnerable
(5.15.0-22.22)
upstream
Released (5.13~rc1)
kinetic Not vulnerable
(5.15.0-24.24)
lunar Not vulnerable
(5.19.0-1007.7)
linux-oem-5.17
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

impish Does not exist

jammy Not vulnerable
(5.17.0-1003.3)
upstream
Released (5.13~rc1)
kinetic Not vulnerable
(5.17.0-1003.3)
lunar Does not exist

linux-intel-iotg
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

impish Does not exist

jammy Not vulnerable
(5.15.0-1004.6)
upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-intel-iotg-5.15
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

impish Does not exist

jammy Does not exist

focal Not vulnerable
(5.15.0-1003.5~20.04.1)
kinetic Does not exist

upstream
Released (5.13~rc1)
lunar Does not exist

linux-lowlatency-hwe-5.15
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

jammy Does not exist

focal Not vulnerable
(5.15.0-33.34~20.04.1)
upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-hwe-5.15
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

jammy Does not exist

focal Not vulnerable
(5.15.0-33.34~20.04.1)
kinetic Does not exist

upstream
Released (5.13~rc1)
lunar Does not exist

linux-aws-5.15
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

jammy Does not exist

upstream
Released (5.13~rc1)
kinetic Does not exist

focal Not vulnerable
(5.15.0-1014.18~20.04.1)
lunar Does not exist

linux-gcp-5.15
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

jammy Does not exist

kinetic Does not exist

focal Not vulnerable
(5.15.0-1006.9~20.04.1)
upstream
Released (5.13~rc1)
lunar Does not exist

linux-gke-5.15
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

jammy Does not exist

kinetic Does not exist

focal Not vulnerable
(5.15.0-1011.14~20.04.1)
upstream
Released (5.13~rc1)
lunar Does not exist

linux-azure-5.15
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

jammy Does not exist

focal Not vulnerable
(5.15.0-1007.8~20.04.1)
upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-oracle-5.15
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

jammy Does not exist

focal Not vulnerable
(5.15.0-1007.9~20.04.1)
upstream
Released (5.13~rc1)
kinetic Does not exist

lunar Does not exist

linux-azure-fde-5.15
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

jammy Does not exist

kinetic Does not exist

focal Not vulnerable
(5.15.0-1019.24~20.04.1.1)
upstream
Released (5.13~rc1)
lunar Does not exist

linux-oem-6.0
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

kinetic Does not exist

jammy Not vulnerable
(6.0.0-1006.6)
upstream
Released (5.13~rc1)
lunar Does not exist

linux-iot
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Not vulnerable

jammy Does not exist

kinetic Does not exist

lunar Does not exist

upstream Needs triage

linux-riscv-5.15
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Not vulnerable

jammy Does not exist

kinetic Does not exist

lunar Does not exist

upstream Needs triage

linux-azure-fde-5.19
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Does not exist

jammy Needs triage

kinetic Does not exist

lunar Does not exist

upstream Needs triage

linux-xilinx-zynqmp
Launchpad, Ubuntu, Debian
trusty Does not exist

xenial Does not exist

bionic Does not exist

focal Not vulnerable

jammy Does not exist

kinetic Does not exist

lunar Does not exist

upstream Needs triage

Severity score breakdown

Parameter Value
Base score 7.0
Attack vector Local
Attack complexity High
Privileges required Low
User interaction None
Scope Unchanged
Confidentiality High
Integrity impact High
Availability impact High
Vector CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H