Test ID:	1.3.6.1.4.1.25623.1.1.12.2024.6648.1
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-6648-1)
Summary:	The remote host is missing an update for the 'linux, linux-aws, linux-aws-5.4, linux-bluefield, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-iot, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp' package(s) announced via the USN-6648-1 advisory.
Description:	Summary: The remote host is missing an update for the 'linux, linux-aws, linux-aws-5.4, linux-bluefield, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-iot, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp' package(s) announced via the USN-6648-1 advisory. Vulnerability Insight: It was discovered that a race condition existed in the AppleTalk networking subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-51781) Zhenghan Wang discovered that the generic ID allocator implementation in the Linux kernel did not properly check for null bitmap when releasing IDs. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-6915) Robert Morris discovered that the CIFS network file system implementation in the Linux kernel did not properly validate certain server commands fields, leading to an out-of-bounds read vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information. (CVE-2024-0565) Jann Horn discovered that the TLS subsystem in the Linux kernel did not properly handle spliced messages, leading to an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2024-0646) Affected Software/OS: 'linux, linux-aws, linux-aws-5.4, linux-bluefield, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-iot, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp' package(s) on Ubuntu 18.04, Ubuntu 20.04. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-51781 https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.8 https://github.com/torvalds/linux/commit/189ff16722ee36ced4d2a2469d4ab65a8fee4198 https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html Common Vulnerability Exposure (CVE) ID: CVE-2023-6915 RHBZ#2254982 https://bugzilla.redhat.com/show_bug.cgi?id=2254982 RHSA-2024:2394 https://access.redhat.com/errata/RHSA-2024:2394 RHSA-2024:2950 https://access.redhat.com/errata/RHSA-2024:2950 RHSA-2024:3138 https://access.redhat.com/errata/RHSA-2024:3138 https://access.redhat.com/security/cve/CVE-2023-6915 https://github.com/torvalds/linux/commit/af73483f4e8b6f5c68c9aa63257bdd929a9c194a Common Vulnerability Exposure (CVE) ID: CVE-2024-0565 RHBZ#2258518 https://bugzilla.redhat.com/show_bug.cgi?id=2258518 RHSA-2024:1188 https://access.redhat.com/errata/RHSA-2024:1188 RHSA-2024:1404 https://access.redhat.com/errata/RHSA-2024:1404 RHSA-2024:1532 https://access.redhat.com/errata/RHSA-2024:1532 RHSA-2024:1533 https://access.redhat.com/errata/RHSA-2024:1533 RHSA-2024:1607 https://access.redhat.com/errata/RHSA-2024:1607 RHSA-2024:1614 https://access.redhat.com/errata/RHSA-2024:1614 https://access.redhat.com/security/cve/CVE-2024-0565 https://security.netapp.com/advisory/ntap-20240223-0002/ https://www.spinics.net/lists/stable-commits/msg328851.html Common Vulnerability Exposure (CVE) ID: CVE-2024-0646 RHBZ#2253908 https://bugzilla.redhat.com/show_bug.cgi?id=2253908 RHSA-2024:0723 https://access.redhat.com/errata/RHSA-2024:0723 RHSA-2024:0724 https://access.redhat.com/errata/RHSA-2024:0724 RHSA-2024:0725 https://access.redhat.com/errata/RHSA-2024:0725 RHSA-2024:0850 https://access.redhat.com/errata/RHSA-2024:0850 RHSA-2024:0851 https://access.redhat.com/errata/RHSA-2024:0851 RHSA-2024:0876 https://access.redhat.com/errata/RHSA-2024:0876 RHSA-2024:0881 https://access.redhat.com/errata/RHSA-2024:0881 RHSA-2024:0897 https://access.redhat.com/errata/RHSA-2024:0897 RHSA-2024:1248 https://access.redhat.com/errata/RHSA-2024:1248 RHSA-2024:1250 https://access.redhat.com/errata/RHSA-2024:1250 RHSA-2024:1251 https://access.redhat.com/errata/RHSA-2024:1251 RHSA-2024:1253 https://access.redhat.com/errata/RHSA-2024:1253 RHSA-2024:1268 https://access.redhat.com/errata/RHSA-2024:1268 RHSA-2024:1269 https://access.redhat.com/errata/RHSA-2024:1269 RHSA-2024:1278 https://access.redhat.com/errata/RHSA-2024:1278 RHSA-2024:1306 https://access.redhat.com/errata/RHSA-2024:1306 RHSA-2024:1367 https://access.redhat.com/errata/RHSA-2024:1367 RHSA-2024:1368 https://access.redhat.com/errata/RHSA-2024:1368 RHSA-2024:1377 https://access.redhat.com/errata/RHSA-2024:1377 RHSA-2024:1382 https://access.redhat.com/errata/RHSA-2024:1382 https://access.redhat.com/security/cve/CVE-2024-0646 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c5a595000e267
Copyright	Copyright (C) 2024 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.