Ubuntu update for linux-oem-5.10

1) Null pointer dereference

EUVDB-ID: #VU92764

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2020-25639

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local privileged user to perform a denial of service (DoS) attack.

A NULL pointer dereference flaw was found in the Linux kernel's GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user calls ioctl DRM_IOCTL_NOUVEAU_CHANNEL_ALLOC. This flaw allows a local user to crash the system.

Mitigation

Update the affected package linux-oem-5.10 to the latest version.

Vulnerable software versions

Ubuntu: 20.04

linux-image-oem-20.04b (Ubuntu package): before 5.10.0.1021.22

linux-image-5.10.0-1021-oem (Ubuntu package): before 5.10.0-1021.22

CPE2.3

• cpe:2.3:o:canonical:ubuntu:20.04:*:*:*:*:*:*:*
• cpe:2.3:a:canonical:linux-image-oem-20.04b_ubuntu_package:*:*:*:*:*:ubuntu:*:*
• cpe:2.3:a:canonical:linux-image-5.10.0-1021-oem_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

https://ubuntu.com/security/notices/USN-4911-1

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Allocation of resources without limits or throttling

EUVDB-ID: #VU92417

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-28038

CWE-ID: CWE-770 - Allocation of Resources Without Limits or Throttling

Exploit availability: No

Description

The vulnerability allows a local user to a crash the entire system.

The vulnerability exists due to allocation of resources without limits or throttling error within the xenvif_tx_action() function in drivers/net/xen-netback/netback.c. A local user can a crash the entire system.

Mitigation

Update the affected package linux-oem-5.10 to the latest version.

Vulnerable software versions

Ubuntu: 20.04

linux-image-oem-20.04b (Ubuntu package): before 5.10.0.1021.22

linux-image-5.10.0-1021-oem (Ubuntu package): before 5.10.0-1021.22

CPE2.3

• cpe:2.3:o:canonical:ubuntu:20.04:*:*:*:*:*:*:*
• cpe:2.3:a:canonical:linux-image-oem-20.04b_ubuntu_package:*:*:*:*:*:ubuntu:*:*
• cpe:2.3:a:canonical:linux-image-5.10.0-1021-oem_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

https://ubuntu.com/security/notices/USN-4911-1

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Missing authorization

EUVDB-ID: #VU92415

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-28375

CWE-ID: CWE-862 - Missing Authorization

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to missing authorization error within the fastrpc_internal_invoke() function in drivers/misc/fastrpc.c. A local user can execute arbitrary code.

Mitigation

Update the affected package linux-oem-5.10 to the latest version.

Vulnerable software versions

Ubuntu: 20.04

linux-image-oem-20.04b (Ubuntu package): before 5.10.0.1021.22

linux-image-5.10.0-1021-oem (Ubuntu package): before 5.10.0-1021.22

CPE2.3

• cpe:2.3:o:canonical:ubuntu:20.04:*:*:*:*:*:*:*
• cpe:2.3:a:canonical:linux-image-oem-20.04b_ubuntu_package:*:*:*:*:*:ubuntu:*:*
• cpe:2.3:a:canonical:linux-image-5.10.0-1021-oem_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

https://ubuntu.com/security/notices/USN-4911-1

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Excessive Iteration

EUVDB-ID: #VU58207

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-28950

CWE-ID: CWE-834 - Excessive Iteration

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to excessive iteration in fs/fuse/fuse_i.h in the Linux kernel. A local user can run a specially crafted program to perform a denial of service attack.

Mitigation

Update the affected package linux-oem-5.10 to the latest version.

Vulnerable software versions

Ubuntu: 20.04

linux-image-oem-20.04b (Ubuntu package): before 5.10.0.1021.22

linux-image-5.10.0-1021-oem (Ubuntu package): before 5.10.0-1021.22

CPE2.3

• cpe:2.3:o:canonical:ubuntu:20.04:*:*:*:*:*:*:*
• cpe:2.3:a:canonical:linux-image-oem-20.04b_ubuntu_package:*:*:*:*:*:ubuntu:*:*
• cpe:2.3:a:canonical:linux-image-5.10.0-1021-oem_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

https://ubuntu.com/security/notices/USN-4911-1

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.