Lucene search

K
ubuntuUbuntuUSN-6870-2
HistoryJul 04, 2024 - 12:00 a.m.

Linux kernel (AWS) vulnerabilities

2024-07-0400:00:00
ubuntu.com
14
linux
aws
ubuntu
intel drivers
netfilter
security vulnerabilities

CVSS3

7.5

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H

AI Score

6.7

Confidence

High

Releases

  • Ubuntu 20.04 LTS

Packages

  • linux-aws-5.15 - Linux kernel for Amazon Web Services (AWS) systems

Details

It was discovered that the Intel Data Streaming and Intel Analytics
Accelerator drivers in the Linux kernel allowed direct access to the
devices for unprivileged users and virtual machines. A local attacker could
use this to cause a denial of service. (CVE-2024-21823)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystem:

  • Netfilter;
    (CVE-2024-26643, CVE-2024-26924)
Rows per page:
1-10 of 121

CVSS3

7.5

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H

AI Score

6.7

Confidence

High