CVE-2024-26903
Published: 17 April 2024
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security During our fuzz testing of the connection and disconnection process at the RFCOMM layer, we discovered this bug. By comparing the packets from a normal connection and disconnection process with the testcase that triggered a KASAN report. We analyzed the cause of this bug as follows: 1. In the packets captured during a normal connection, the host sends a `Read Encryption Key Size` type of `HCI_CMD` packet (Command Opcode: 0x1408) to the controller to inquire the length of encryption key.After receiving this packet, the controller immediately replies with a Command Completepacket (Event Code: 0x0e) to return the Encryption Key Size. 2. In our fuzz test case, the timing of the controller's response to this packet was delayed to an unexpected point: after the RFCOMM and L2CAP layers had disconnected but before the HCI layer had disconnected. 3. After receiving the Encryption Key Size Response at the time described in point 2, the host still called the rfcomm_check_security function. However, by this time `struct l2cap_conn *conn = l2cap_pi(sk)->chan->conn;` had already been released, and when the function executed `return hci_conn_security(conn->hcon, d->sec_level, auth_type, d->out);`, specifically when accessing `conn->hcon`, a null-ptr-deref error occurred. To fix this bug, check if `sk->sk_state` is BT_CLOSED before calling rfcomm_recv_frame in rfcomm_process_rx.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
linux Launchpad, Ubuntu, Debian |
bionic |
Ignored
(ESM criteria, was needed)
|
| focal |
Released
(5.4.0-189.209)
|
|
| jammy |
Released
(5.15.0-112.122)
|
|
| mantic |
Ignored
(end of life, was needed)
|
|
| noble |
Not vulnerable
(6.8.0-20.20)
|
|
| trusty |
Ignored
(ESM criteria, was needed)
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Ignored
(ESM criteria, was needed)
|
|
|
Patches: Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 |
||
|
linux-allwinner-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(end of kernel support)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-aws Launchpad, Ubuntu, Debian |
bionic |
Ignored
(ESM criteria, was needed)
|
| focal |
Released
(5.4.0-1128.138)
|
|
| jammy |
Released
(5.15.0-1063.69)
|
|
| mantic |
Ignored
(end of life, was needed)
|
|
| noble |
Not vulnerable
(6.8.0-1006.6)
|
|
| trusty |
Ignored
(ESM criteria, was needed)
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Ignored
(ESM criteria, was needed)
|
|
|
linux-aws-5.0 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-aws-5.3)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-5.3)
|
|
|
linux-aws-5.11 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-aws-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-5.13)
|
|
|
linux-aws-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-aws-5.15)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-5.15)
|
|
|
linux-aws-5.15 Launchpad, Ubuntu, Debian |
focal |
Released
(5.15.0-1063.69~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-aws-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-aws-6.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-6.2)
|
|
|
linux-aws-5.3 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-aws-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-5.4)
|
|
|
linux-aws-5.4 Launchpad, Ubuntu, Debian |
bionic |
Pending
(5.4.0-1128.138~18.04.1)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-aws-5.8 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-aws-5.11)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-5.11)
|
|
|
linux-aws-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-aws-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-aws-6.5)
|
|
|
linux-aws-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-aws-fips Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Does not exist
|
|
|
linux-aws-hwe Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Ignored
(ESM criteria, was needed)
|
|
|
linux-azure Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-azure-5.3)
|
| focal |
Released
(5.4.0-1133.140)
|
|
| jammy |
Released
(5.15.0-1066.75)
|
|
| mantic |
Ignored
(end of life, was needed)
|
|
| noble |
Not vulnerable
(6.8.0-1005.5)
|
|
| trusty |
Ignored
(ESM criteria, was needed)
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Ignored
(ESM criteria, was needed)
|
|
|
linux-azure-4.15 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(ESM criteria, was needed)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-azure-5.11 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-azure-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-5.13)
|
|
|
linux-azure-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-azure-5.15)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-5.15)
|
|
|
linux-azure-5.15 Launchpad, Ubuntu, Debian |
focal |
Pending
(5.15.0-1065.74~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-azure-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-azure-6.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-6.2)
|
|
|
linux-azure-5.3 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-azure-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-5.4)
|
|
|
linux-azure-5.4 Launchpad, Ubuntu, Debian |
bionic |
Released
(5.4.0-1133.140~18.04.1)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only) |
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-azure-5.8 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-azure-5.11)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-5.11)
|
|
|
linux-azure-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-azure-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-6.5)
|
|
|
linux-azure-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-azure-edge Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-azure-5.3)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-5.3)
|
|
|
linux-azure-fde Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-azure-fde-5.15)
|
| jammy |
Released
(5.15.0-1067.76.1)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-azure-fde-5.15 Launchpad, Ubuntu, Debian |
focal |
Released
(5.15.0-1065.74~20.04.1.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-azure-fde-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-azure-fde-6.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-azure-fde-6.2)
|
|
|
linux-azure-fde-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(replaced by linux-azure-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(replaced by linux-azure-6.5)
|
|
|
linux-azure-fips Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Does not exist
|
|
|
linux-bluefield Launchpad, Ubuntu, Debian |
focal |
Released
(5.4.0-1088.95)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-fips Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-gcp Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-gcp-5.3)
|
| focal |
Released
(5.4.0-1132.141)
|
|
| jammy |
Released
(5.15.0-1062.70)
|
|
| mantic |
Ignored
(end of life, was needed)
|
|
| noble |
Not vulnerable
(6.8.0-1005.5)
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Ignored
(ESM criteria, was needed)
|
|
|
linux-gcp-4.15 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(ESM criteria, was needed)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-gcp-5.11 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-gcp-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gcp-5.13)
|
|
|
linux-gcp-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-gcp-5.15)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gcp-5.15)
|
|
|
linux-gcp-5.15 Launchpad, Ubuntu, Debian |
focal |
Released
(5.15.0-1062.70~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-gcp-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-gcp-6.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gcp-6.2)
|
|
|
linux-gcp-5.3 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-gcp-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gcp-5.4)
|
|
|
linux-gcp-5.4 Launchpad, Ubuntu, Debian |
bionic |
Released
(5.4.0-1132.141~18.04.1)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only) |
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-gcp-5.8 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-gcp-5.11)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gcp-5.11)
|
|
|
linux-gcp-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-gcp-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gcp-6.5)
|
|
|
linux-gcp-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-gcp-fips Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Does not exist
|
|
|
linux-gke Launchpad, Ubuntu, Debian |
focal |
Ignored
(end of kernel support)
|
| jammy |
Released
(5.15.0-1060.66)
|
|
| mantic |
Does not exist
|
|
| noble |
Not vulnerable
(6.8.0-1003.5)
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-gke-4.15 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-gke-5.0)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-gke-5.0)
|
|
|
linux-gke-5.15 Launchpad, Ubuntu, Debian |
focal |
Ignored
(end of kernel support)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-gke-5.4 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(end of kernel support)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-gkeop Launchpad, Ubuntu, Debian |
focal |
Released
(5.4.0-1095.99)
|
| jammy |
Released
(5.15.0-1046.53)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-gkeop-5.15 Launchpad, Ubuntu, Debian |
focal |
Released
(5.15.0-1046.53~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-gkeop-5.4 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(end of kernel support)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-hwe Launchpad, Ubuntu, Debian |
bionic |
Ignored
(replaced by linux-hwe-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Ignored
(ESM criteria, was needed)
|
|
|
linux-hwe-5.11 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-hwe-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-hwe-5.13)
|
|
|
linux-hwe-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-hwe-5.15)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-hwe-5.15)
|
|
|
linux-hwe-5.15 Launchpad, Ubuntu, Debian |
focal |
Released
(5.15.0-113.123~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-hwe-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-hwe-6.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-hwe-6.2)
|
|
|
linux-hwe-5.4 Launchpad, Ubuntu, Debian |
bionic |
Released
(5.4.0-189.209~18.04.1)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only) |
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-hwe-5.8 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-hwe-5.11)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-hwe-5.11)
|
|
|
linux-hwe-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-hwe-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-hwe-6.5)
|
|
|
linux-hwe-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-hwe-6.8, was needed)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-hwe-edge Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-hwe-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
| xenial |
Ignored
(superseded by linux-hwe)
|
|
|
linux-ibm Launchpad, Ubuntu, Debian |
focal |
Released
(5.4.0-1075.80)
|
| jammy |
Released
(5.15.0-1056.59)
|
|
| mantic |
Ignored
(end of kernel support)
|
|
| noble |
Not vulnerable
(6.8.0-1003.3)
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-ibm-5.15 Launchpad, Ubuntu, Debian |
focal |
Released
(5.15.0-1057.60~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-ibm-5.4 Launchpad, Ubuntu, Debian |
bionic |
Released
(5.4.0-1075.80~18.04.1)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only) |
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-intel Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Not vulnerable
(6.8.0-1001.6)
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Does not exist
|
|
|
linux-intel-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(end of kernel support)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-intel-iotg Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Released
(5.15.0-1058.64)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-intel-iotg-5.15 Launchpad, Ubuntu, Debian |
focal |
Released
(5.15.0-1058.64~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-iot Launchpad, Ubuntu, Debian |
focal |
Released
(5.4.0-1040.41)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-kvm Launchpad, Ubuntu, Debian |
bionic |
Ignored
(ESM criteria, was needed)
|
| focal |
Released
(5.4.0-1116.123)
|
|
| jammy |
Released
(5.15.0-1060.65)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Ignored
(ESM criteria, was needed)
|
|
|
linux-laptop Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Does not exist
|
|
| mantic |
Ignored
(end of life, was needed)
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-lowlatency Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Released
(5.15.0-110.120)
|
|
| mantic |
Ignored
(end of life, was needed)
|
|
| noble |
Not vulnerable
(6.8.0-25.25.3)
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-lowlatency-hwe-5.15 Launchpad, Ubuntu, Debian |
focal |
Released
(5.15.0-110.120~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-lowlatency-hwe-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-lowlatency-hwe-6.2)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-lowlatency-hwe-6.2)
|
|
|
linux-lowlatency-hwe-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-lowlatency-hwe-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-lowlatency-hwe-6.5)
|
|
|
linux-lowlatency-hwe-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-lowlatency-hwe-6.8, was needed)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-lts-xenial Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| trusty |
Ignored
(ESM criteria, was needed)
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-nvidia Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Released
(5.15.0-1058.59)
|
|
| mantic |
Does not exist
|
|
| noble |
Not vulnerable
(6.8.0-1007.7)
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-nvidia-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-nvidia-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-nvidia-6.5)
|
|
|
linux-nvidia-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-oem Launchpad, Ubuntu, Debian |
bionic |
Ignored
(replaced by linux-hwe-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-oem-5.10 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-oem-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oem-5.13)
|
|
|
linux-oem-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-oem-5.14)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oem-5.14)
|
|
|
linux-oem-5.14 Launchpad, Ubuntu, Debian |
focal |
Ignored
(replaced by linux-hwe-5.15)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(replaced by linux-hwe-5.15)
|
|
|
linux-oem-5.17 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-oem-6.1)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oem-6.1)
|
|
|
linux-oem-5.6 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-oem-5.10)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oem-5.10)
|
|
|
linux-oem-6.0 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-oem-6.1)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oem-6.1)
|
|
|
linux-oem-6.1 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-oem-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oem-6.5)
|
|
|
linux-oem-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-oem-6.8 Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Not vulnerable
(6.8.0-1003.3)
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Does not exist
|
|
|
linux-oracle Launchpad, Ubuntu, Debian |
bionic |
Ignored
(ESM criteria, was needed)
|
| focal |
Released
(5.4.0-1127.136)
|
|
| jammy |
Released
(5.15.0-1061.67)
|
|
| mantic |
Ignored
(end of life, was needed)
|
|
| noble |
Not vulnerable
(6.8.0-1004.4)
|
|
| upstream |
Released
(6.8~rc7)
|
|
| xenial |
Ignored
(ESM criteria, was needed)
|
|
|
linux-oracle-5.0 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-oracle-5.3)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oracle-5.3)
|
|
|
linux-oracle-5.11 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-oracle-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oracle-5.13)
|
|
|
linux-oracle-5.13 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-oracle-5.15)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oracle-5.15)
|
|
|
linux-oracle-5.15 Launchpad, Ubuntu, Debian |
focal |
Pending
(5.15.0-1061.67~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-oracle-5.3 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by linux-oracle-5.4)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oracle-5.4)
|
|
|
linux-oracle-5.4 Launchpad, Ubuntu, Debian |
bionic |
Released
(5.4.0-1127.136~18.04.1)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only) |
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-oracle-5.8 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-oracle-5.11)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-oracle-5.11)
|
|
|
linux-oracle-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-raspi Launchpad, Ubuntu, Debian |
focal |
Released
(5.4.0-1112.124)
|
| jammy |
Released
(5.15.0-1058.61)
|
|
| mantic |
Ignored
(end of life, was needed)
|
|
| noble |
Not vulnerable
(6.8.0-1002.2)
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-raspi-5.4 Launchpad, Ubuntu, Debian |
bionic |
Pending
(5.4.0-1112.124~18.04.1)
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-raspi2 Launchpad, Ubuntu, Debian |
focal |
Ignored
(replaced by linux-raspi)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(replaced by linux-raspi)
|
|
|
linux-riscv Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-riscv-5.8)
|
| jammy |
Ignored
(end of kernel support)
|
|
| mantic |
Ignored
(end of life, was needed)
|
|
| noble |
Not vulnerable
(6.8.0-20.20.1)
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-riscv-5.11 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-riscv-5.13)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-riscv-5.13)
|
|
|
linux-riscv-5.15 Launchpad, Ubuntu, Debian |
focal |
Released
(5.15.0-1059.63~20.04.1)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-riscv-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(end of kernel support)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-riscv-5.8 Launchpad, Ubuntu, Debian |
focal |
Ignored
(superseded by linux-riscv-5.11)
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-riscv-5.11)
|
|
|
linux-riscv-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(end of life, was needed)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-starfive Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Does not exist
|
|
| mantic |
Ignored
(end of life, was needed)
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-starfive-5.19 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(end of kernel support)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
linux-starfive-6.2 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Ignored
(superseded by linux-starfive-6.5)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Ignored
(superseded by linux-starfive-6.5)
|
|
|
linux-starfive-6.5 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
|
linux-xilinx-zynqmp Launchpad, Ubuntu, Debian |
focal |
Released
(5.4.0-1047.51)
|
| jammy |
Released
(5.15.0-1030.34)
|
|
| mantic |
Does not exist
|
|
| noble |
Does not exist
|
|
| upstream |
Released
(6.8~rc7)
|
|
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 5.5 |
| Attack vector | Local |
| Attack complexity | Low |
| Privileges required | Low |
| User interaction | None |
| Scope | Unchanged |
| Confidentiality | None |
| Integrity impact | None |
| Availability impact | High |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
References
- https://www.cve.org/CVERecord?id=CVE-2024-26903
- https://git.kernel.org/linus/2535b848fa0f42ddff3e5255cf5e742c9b77bb26 (6.8-rc7)
- https://git.kernel.org/stable/c/369f419c097e82407dd429a202cde9a73d3ae29b
- https://git.kernel.org/stable/c/5f369efd9d963c1f711a06c9b8baf9f5ce616d85
- https://git.kernel.org/stable/c/81d7d920a22fd58ef9aedb1bd0a68ee32bd23e96
- https://git.kernel.org/stable/c/8d1753973f598531baaa2c1033cf7f7b5bb004b0
- https://git.kernel.org/stable/c/567c0411dc3b424fc7bd1e6109726d7ba32d4f73
- https://git.kernel.org/stable/c/3ead59bafad05f2967ae2438c0528d53244cfde5
- https://git.kernel.org/stable/c/5f9fe302dd3a9bbc50f4888464c1773f45166bfd
- https://git.kernel.org/stable/c/2535b848fa0f42ddff3e5255cf5e742c9b77bb26
- https://ubuntu.com/security/notices/USN-6820-1
- https://ubuntu.com/security/notices/USN-6821-1
- https://ubuntu.com/security/notices/USN-6821-2
- https://ubuntu.com/security/notices/USN-6828-1
- https://ubuntu.com/security/notices/USN-6820-2
- https://ubuntu.com/security/notices/USN-6821-3
- https://ubuntu.com/security/notices/USN-6821-4
- https://ubuntu.com/security/notices/USN-6871-1
- https://ubuntu.com/security/notices/USN-6892-1
- https://ubuntu.com/security/notices/USN-6896-1
- https://ubuntu.com/security/notices/USN-6896-2
- https://ubuntu.com/security/notices/USN-6896-3
- https://ubuntu.com/security/notices/USN-6896-4
- https://ubuntu.com/security/notices/USN-6896-5
- https://ubuntu.com/security/notices/USN-6919-1
- NVD
- Launchpad
- Debian