Linux kernel vulnerabilities

Releases

• Ubuntu 20.04 LTS
• Ubuntu 18.04 ESM

Packages

• linux - Linux kernel
• linux-aws - Linux kernel for Amazon Web Services (AWS) systems
• linux-azure - Linux kernel for Microsoft Azure Cloud systems
• linux-bluefield - Linux kernel for NVIDIA BlueField platforms
• linux-gcp - Linux kernel for Google Cloud Platform (GCP) systems
• linux-gcp-5.4 - Linux kernel for Google Cloud Platform (GCP) systems
• linux-gkeop - Linux kernel for Google Container Engine (GKE) systems
• linux-hwe-5.4 - Linux hardware enablement (HWE) kernel
• linux-ibm - Linux kernel for IBM cloud systems
• linux-ibm-5.4 - Linux kernel for IBM cloud systems
• linux-kvm - Linux kernel for cloud environments
• linux-oracle - Linux kernel for Oracle Cloud systems
• linux-oracle-5.4 - Linux kernel for Oracle Cloud systems
• linux-raspi - Linux kernel for Raspberry Pi systems
• linux-xilinx-zynqmp - Linux kernel for Xilinx ZynqMP processors

Details

It was discovered that a race condition existed in the Bluetooth subsystem
in the Linux kernel, leading to a null pointer dereference vulnerability. A
privileged local attacker could use this to possibly cause a denial of
service (system crash). (CVE-2024-24860)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:

• SuperH RISC architecture;
• MMC subsystem;
• Network drivers;
• SCSI drivers;
• GFS2 file system;
• IPv4 networking;
• IPv6 networking;
• HD-audio driver;
  (CVE-2024-26830, CVE-2024-39484, CVE-2024-36901, CVE-2024-26929,
  CVE-2024-26921, CVE-2021-46926, CVE-2023-52629, CVE-2023-52760)