CVE-2024-26616
Published: 11 March 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: scrub: avoid use-after-free when chunk length is not 64K aligned [BUG] There is a bug report that, on a ext4-converted btrfs, scrub leads to various problems, including: - "unable to find chunk map" errors BTRFS info (device vdb): scrub: started on devid 1 BTRFS critical (device vdb): unable to find chunk map for logical 2214744064 length 4096 BTRFS critical (device vdb): unable to find chunk map for logical 2214744064 length 45056 This would lead to unrepariable errors. - Use-after-free KASAN reports: ================================================================== BUG: KASAN: slab-use-after-free in __blk_rq_map_sg+0x18f/0x7c0 Read of size 8 at addr ffff8881013c9040 by task btrfs/909 CPU: 0 PID: 909 Comm: btrfs Not tainted 6.7.0-x64v3-dbg #11 c50636e9419a8354555555245df535e380563b2b Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 2023.11-2 12/24/2023 Call Trace: <TASK> dump_stack_lvl+0x43/0x60 print_report+0xcf/0x640 kasan_report+0xa6/0xd0 __blk_rq_map_sg+0x18f/0x7c0 virtblk_prep_rq.isra.0+0x215/0x6a0 [virtio_blk 19a65eeee9ae6fcf02edfad39bb9ddee07dcdaff] virtio_queue_rqs+0xc4/0x310 [virtio_blk 19a65eeee9ae6fcf02edfad39bb9ddee07dcdaff] blk_mq_flush_plug_list.part.0+0x780/0x860 __blk_flush_plug+0x1ba/0x220 blk_finish_plug+0x3b/0x60 submit_initial_group_read+0x10a/0x290 [btrfs e57987a360bed82fe8756dcd3e0de5406ccfe965] flush_scrub_stripes+0x38e/0x430 [btrfs e57987a360bed82fe8756dcd3e0de5406ccfe965] scrub_stripe+0x82a/0xae0 [btrfs e57987a360bed82fe8756dcd3e0de5406ccfe965] scrub_chunk+0x178/0x200 [btrfs e57987a360bed82fe8756dcd3e0de5406ccfe965] scrub_enumerate_chunks+0x4bc/0xa30 [btrfs e57987a360bed82fe8756dcd3e0de5406ccfe965] btrfs_scrub_dev+0x398/0x810 [btrfs e57987a360bed82fe8756dcd3e0de5406ccfe965] btrfs_ioctl+0x4b9/0x3020 [btrfs e57987a360bed82fe8756dcd3e0de5406ccfe965] __x64_sys_ioctl+0xbd/0x100 do_syscall_64+0x5d/0xe0 entry_SYSCALL_64_after_hwframe+0x63/0x6b RIP: 0033:0x7f47e5e0952b - Crash, mostly due to above use-after-free [CAUSE] The converted fs has the following data chunk layout: item 2 key (FIRST_CHUNK_TREE CHUNK_ITEM 2214658048) itemoff 16025 itemsize 80 length 86016 owner 2 stripe_len 65536 type DATA|single For above logical bytenr 2214744064, it's at the chunk end (2214658048 + 86016 = 2214744064). This means btrfs_submit_bio() would split the bio, and trigger endio function for both of the two halves. However scrub_submit_initial_read() would only expect the endio function to be called once, not any more. This means the first endio function would already free the bbio::bio, leaving the bvec freed, thus the 2nd endio call would lead to use-after-free. [FIX] - Make sure scrub_read_endio() only updates bits in its range Since we may read less than 64K at the end of the chunk, we should not touch the bits beyond chunk boundary. - Make sure scrub_submit_initial_read() only to read the chunk range This is done by calculating the real number of sectors we need to read, and add sector-by-sector to the bio. Thankfully the scrub read repair path won't need extra fixes: - scrub_stripe_submit_repair_read() With above fixes, we won't update error bit for range beyond chunk, thus scrub_stripe_submit_repair_read() should never submit any read beyond the chunk.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
linux Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(4.13.0-16.19)
|
| focal |
Not vulnerable
(5.4.0-9.12)
|
|
| jammy |
Not vulnerable
(5.13.0-19.19)
|
|
| mantic |
Pending
|
|
| noble |
Pending
(6.8.0-7.7)
|
|
| trusty |
Not vulnerable
(3.11.0-12.19)
|
|
| upstream |
Released
(6.8~rc2)
|
|
| xenial |
Not vulnerable
(4.4.0-2.16)
|
|
|
Patches: Introduced by e02ee89baa66c40e1002cf8b09141fce7265e0f5 |
||
|
linux-allwinner-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(end of kernel support)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-aws Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(4.15.0-1001.1)
|
| focal |
Not vulnerable
(5.4.0-1005.5)
|
|
| jammy |
Not vulnerable
(5.13.0-1005.6)
|
|
| mantic |
Needed
|
|
| noble |
Pending
|
|
| trusty |
Not vulnerable
(4.4.0-1002.2)
|
|
| upstream |
Released
(6.8~rc2)
|
|
| xenial |
Not vulnerable
(4.4.0-1001.10)
|
|
|
linux-aws-5.0 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-aws-5.3)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-5.3)
|
|
|
linux-aws-5.11 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-aws-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-5.13)
|
|
|
linux-aws-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-aws-5.15)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-5.15)
|
|
|
linux-aws-5.15 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.15.0-1014.18~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-aws-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-aws-6.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-6.2)
|
|
|
linux-aws-5.3 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-aws-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-5.4)
|
|
|
linux-aws-5.4 Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(5.4.0-1018.18~18.04.1)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-aws-5.8 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-aws-5.11)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-5.11)
|
|
|
linux-aws-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-aws-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-6.5)
|
|
|
linux-aws-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-aws-hwe Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
| xenial |
Not vulnerable
(4.15.0-1030.31~16.04.1)
|
|
|
linux-azure Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-azure-5.3)
|
| focal |
Not vulnerable
(5.4.0-1006.6)
|
|
| jammy |
Not vulnerable
(5.13.0-1006.7)
|
|
| mantic |
Needed
|
|
| noble |
Pending
|
|
| trusty |
Not vulnerable
(4.15.0-1023.24~14.04.1)
|
|
| upstream |
Released
(6.8~rc2)
|
|
| xenial |
Not vulnerable
(4.11.0-1009.9)
|
|
|
linux-azure-4.15 Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(4.15.0-1082.92)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-azure-5.11 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-azure-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-5.13)
|
|
|
linux-azure-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-azure-5.15)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-5.15)
|
|
|
linux-azure-5.15 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.15.0-1007.8~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-azure-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-azure-6.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-6.2)
|
|
|
linux-azure-5.3 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-azure-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-5.4)
|
|
|
linux-azure-5.4 Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(5.4.0-1020.20~18.04.1)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-azure-5.8 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-azure-5.11)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-5.11)
|
|
|
linux-azure-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-azure-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-6.5)
|
|
|
linux-azure-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-azure-edge Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-azure-5.3)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-5.3)
|
|
|
linux-azure-fde Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-azure-fde-5.15)
|
| jammy |
Not vulnerable
(5.13.0-1006.7)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-azure-fde-5.15 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.15.0-1007.8~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-azure-fde-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-azure-fde-6.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-fde-6.2)
|
|
|
linux-azure-fde-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(replaced by linux-azure-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(replaced by linux-azure-6.5)
|
|
|
linux-bluefield Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.4.0-1007.10)
|
| jammy |
Not vulnerable
(5.15.0-1011.13)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-fips Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-gcp Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-gcp-5.3)
|
| focal |
Not vulnerable
(5.4.0-1005.5)
|
|
| jammy |
Not vulnerable
(5.13.0-1005.6)
|
|
| mantic |
Needed
|
|
| noble |
Pending
|
|
| upstream |
Released
(6.8~rc2)
|
|
| xenial |
Not vulnerable
(4.10.0-1004.4)
|
|
|
linux-gcp-4.15 Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(4.15.0-1071.81)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-gcp-5.11 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-gcp-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gcp-5.13)
|
|
|
linux-gcp-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-gcp-5.15)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gcp-5.15)
|
|
|
linux-gcp-5.15 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.15.0-1006.9~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-gcp-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-gcp-6.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gcp-6.2)
|
|
|
linux-gcp-5.3 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-gcp-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gcp-5.4)
|
|
|
linux-gcp-5.4 Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(5.4.0-1019.19~18.04.2)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-gcp-5.8 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-gcp-5.11)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gcp-5.11)
|
|
|
linux-gcp-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-gcp-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gcp-6.5)
|
|
|
linux-gcp-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-gke Launchpad, Ubuntu, Debian |
focal |
Ignored
(end of kernel support)
|
| jammy |
Not vulnerable
(5.15.0-1002.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Needs triage
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-gke-4.15 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-gke-5.0)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gke-5.0)
|
|
|
linux-gke-5.15 Launchpad, Ubuntu, Debian |
focal |
Ignored
(end of kernel support)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-gke-5.4 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(end of kernel support)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-gkeop Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.4.0-1008.9)
|
| jammy |
Not vulnerable
(5.15.0-1001.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-gkeop-5.15 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.15.0-1003.5~20.04.2)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-gkeop-5.4 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(end of kernel support)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-hwe Launchpad, Ubuntu, Debian |
bionic |
Ignored
(replaced by linux-hwe-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
| xenial |
Not vulnerable
(4.8.0-39.42~16.04.1)
|
|
|
linux-hwe-5.11 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-hwe-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-hwe-5.13)
|
|
|
linux-hwe-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-hwe-5.15)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-hwe-5.15)
|
|
|
linux-hwe-5.15 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.15.0-33.34~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-hwe-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-hwe-6.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-hwe-6.2)
|
|
|
linux-hwe-5.4 Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(5.4.0-37.41~18.04.1)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-hwe-5.8 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-hwe-5.11)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-hwe-5.11)
|
|
|
linux-hwe-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-hwe-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-hwe-6.5)
|
|
|
linux-hwe-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-hwe-edge Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-hwe-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
| xenial |
Ignored
(superseded by linux-hwe)
|
|
|
linux-ibm Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.4.0-1003.4)
|
| jammy |
Not vulnerable
(5.15.0-1002.2)
|
|
| mantic |
Ignored
(end of kernel support)
|
|
| noble |
Pending
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-ibm-5.15 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.15.0-1033.36~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-ibm-5.4 Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(5.4.0-1010.11~18.04.2)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-intel-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(end of kernel support)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-intel-iotg Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Not vulnerable
(5.15.0-1004.6)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-intel-iotg-5.15 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.15.0-1003.5~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-iot Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.4.0-1001.3)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-kvm Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(4.15.0-1002.2)
|
| focal |
Not vulnerable
(5.4.0-1004.4)
|
|
| jammy |
Not vulnerable
(5.13.0-1004.4)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
| xenial |
Not vulnerable
(4.4.0-1004.9)
|
|
|
linux-laptop Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Does not exist
|
|
| mantic |
Needed
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-lowlatency Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Not vulnerable
(5.15.0-22.22)
|
|
| mantic |
Needed
|
|
| noble |
Pending
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-lowlatency-hwe-5.15 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.15.0-33.34~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-lowlatency-hwe-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-lowlatency-hwe-6.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-lowlatency-hwe-6.2)
|
|
|
linux-lowlatency-hwe-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-lowlatency-hwe-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-lowlatency-hwe-6.5)
|
|
|
linux-lowlatency-hwe-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-lts-xenial Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| trusty |
Not vulnerable
(4.4.0-13.29~14.04.1)
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-nvidia Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Not vulnerable
(5.15.0-1005.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Not vulnerable
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-nvidia-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-nvidia-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-nvidia-6.5)
|
|
|
linux-nvidia-6.5 Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| focal |
Does not exist
|
|
| jammy |
Pending
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| xenial |
Does not exist
|
|
|
linux-oem Launchpad, Ubuntu, Debian |
bionic |
Ignored
(replaced by linux-hwe-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-oem-5.10 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-oem-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oem-5.13)
|
|
|
linux-oem-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-oem-5.14)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oem-5.14)
|
|
|
linux-oem-5.14 Launchpad, Ubuntu, Debian |
focal |
Ignored
(replaced by linux-hwe-5.15)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(replaced by linux-hwe-5.15)
|
|
|
linux-oem-5.17 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-oem-6.1)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oem-6.1)
|
|
|
linux-oem-5.6 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-oem-5.10)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oem-5.10)
|
|
|
linux-oem-6.0 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-oem-6.1)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oem-6.1)
|
|
|
linux-oem-6.1 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-oem-6.5, was needs-triage)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-oem-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Released
(6.5.0-1022.23)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-oracle Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(4.15.0-1007.9)
|
| focal |
Not vulnerable
(5.4.0-1005.5)
|
|
| jammy |
Not vulnerable
(5.13.0-1008.10)
|
|
| mantic |
Needed
|
|
| noble |
Pending
|
|
| upstream |
Released
(6.8~rc2)
|
|
| xenial |
Not vulnerable
(4.15.0-1007.9~16.04.1)
|
|
|
linux-oracle-5.0 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-oracle-5.3)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oracle-5.3)
|
|
|
linux-oracle-5.11 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-oracle-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oracle-5.13)
|
|
|
linux-oracle-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-oracle-5.15)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oracle-5.15)
|
|
|
linux-oracle-5.15 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.15.0-1007.9~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-oracle-5.3 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-oracle-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oracle-5.4)
|
|
|
linux-oracle-5.4 Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(5.4.0-1019.19~18.04.1)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-oracle-5.8 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-oracle-5.11)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oracle-5.11)
|
|
|
linux-oracle-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-raspi Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.4.0-1007.7)
|
| jammy |
Not vulnerable
(5.13.0-1008.9)
|
|
| mantic |
Needed
|
|
| noble |
Pending
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-raspi-5.4 Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(5.4.0-1013.13~18.04.1)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-raspi2 Launchpad, Ubuntu, Debian |
focal |
Ignored
(replaced by linux-raspi)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(replaced by linux-raspi)
|
|
|
linux-riscv Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-riscv-5.8)
|
| jammy |
Ignored
(end of kernel support)
|
|
| mantic |
Needed
|
|
| noble |
Pending
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-riscv-5.11 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-riscv-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-riscv-5.13)
|
|
|
linux-riscv-5.15 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.15.0-1015.17~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-riscv-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(end of kernel support)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-riscv-5.8 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-riscv-5.11)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-riscv-5.11)
|
|
|
linux-riscv-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-starfive Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Does not exist
|
|
| mantic |
Needed
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-starfive-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(end of kernel support)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-starfive-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-starfive-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-starfive-6.5)
|
|
|
linux-starfive-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
|
linux-xilinx-zynqmp Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.4.0-1020.24)
|
| jammy |
Not vulnerable
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc2)
|
|
References
- https://git.kernel.org/linus/f546c4282673497a06ecb6190b50ae7f6c85b02f (6.8-rc2)
- https://git.kernel.org/stable/c/642b9c520ef2f104277ad1f902f8526edbe087fb
- https://git.kernel.org/stable/c/34de0f04684ec00c093a0455648be055f0e8e24f
- https://git.kernel.org/stable/c/f546c4282673497a06ecb6190b50ae7f6c85b02f
- https://www.cve.org/CVERecord?id=CVE-2024-26616
- https://ubuntu.com/security/notices/USN-6765-1
- NVD
- Launchpad
- Debian