LSN-0071-1: Kernel Live Patch Security Notice

10 September 2020

Several security issues were fixed in the kernel.

Releases

Ubuntu 18.04 ESM

Software Description

aws - Linux kernel for Amazon Web Services (AWS) systems - (>= 4.15.0-1054)
generic-4.15 - Linux kernel - (>= 4.15.0-69)
lowlatency-4.15 - Linux kernel - (>= 4.15.0-69)
oem - Linux kernel for OEM systems - (>= 4.15.0-1063)

Details

Or Cohen discovered that the AF_PACKET implementation in the Linux kernel
did not properly perform bounds checking in some situations. A local
attacker could use this to cause a denial of service (system crash) or
possibly execute arbitrary code. (CVE-2020-14386)

Checking update status

The problem can be corrected in these Livepatch versions:

Kernel type	18.04
aws	71.1
generic-4.15	71.1
lowlatency-4.15	71.1
oem	71.1

To check your kernel type and Livepatch version, enter this command:

canonical-livepatch status

References

CVE-2020-14386

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading