USN-6645-1: Linux kernel vulnerability
20 February 2024
The system could be made to stop responding under certain conditions.
Releases
Packages
- linux - Linux kernel
Details
It was discovered that the netfilter connection tracker for netlink in the
Linux kernel did not properly perform reference counting in some error
conditions. A local attacker could possibly use this to cause a denial of
service (memory exhaustion).
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 14.04
-
linux-image-3.13.0-196-generic
-
3.13.0-196.247
Available with Ubuntu Pro
-
linux-image-3.13.0-196-lowlatency
-
3.13.0-196.247
Available with Ubuntu Pro
-
linux-image-generic
-
3.13.0.196.206
Available with Ubuntu Pro
-
linux-image-generic-lts-trusty
-
3.13.0.196.206
Available with Ubuntu Pro
-
linux-image-lowlatency
-
3.13.0.196.206
Available with Ubuntu Pro
-
linux-image-server
-
3.13.0.196.206
Available with Ubuntu Pro
-
linux-image-virtual
-
3.13.0.196.206
Available with Ubuntu Pro
After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.
References
Related notices
- USN-6646-1: linux-signed-lowlatency, linux-lowlatency-lts-utopic, linux-image-4.4.0-1128-aws, linux-tools-virtual-lts-wily, linux-image-extra-virtual-lts-wily, linux-source-4.4.0, linux-lts-xenial-tools-4.4.0-251, linux-virtual, linux-signed-image-generic-lts-utopic, linux-cloud-tools-virtual-lts-wily, linux-headers-generic-lts-vivid, linux-kvm, linux-modules-4.4.0-1128-aws, linux-lowlatency-lts-wily, linux-signed-generic-lts-wily, linux-tools-lowlatency-lts-utopic, linux-image-virtual-lts-vivid, linux-aws-headers-4.4.0-1128, linux-headers-kvm, linux-signed-image-lowlatency, linux-tools-lowlatency-lts-wily, linux-generic-lts-vivid, linux-aws-cloud-tools-4.4.0-1128, linux-image-virtual-lts-wily, linux-tools-generic-lts-utopic, linux-cloud-tools-lowlatency, linux-image-generic-lts-wily, linux-doc, linux-headers-generic, linux-image-4.4.0-251-generic, linux-aws-cloud-tools-4.4.0-1166, linux-cloud-tools-common, linux-cloud-tools-lowlatency-lts-vivid, linux-image-virtual, linux-signed-image-generic-lts-xenial, linux-generic, linux-buildinfo-4.4.0-251-lowlatency, linux-image-hwe-generic-trusty, linux-lowlatency-lts-xenial, linux-headers-generic-lts-utopic, linux-tools-virtual-lts-utopic, linux-image-unsigned-4.4.0-251-lowlatency, linux-libc-dev, linux-buildinfo-4.4.0-1128-aws, linux-modules-extra-4.4.0-251-generic, linux-image-virtual-lts-utopic, linux-hwe-generic-trusty, linux-generic-lts-utopic, linux-cloud-tools-4.4.0-1166-aws, linux-signed-generic-lts-vivid, linux-image-virtual-lts-xenial, linux-headers-4.4.0-251, linux-headers-aws, linux-tools-common, linux-aws-tools-4.4.0-1166, linux-tools-lts-utopic, linux-signed-generic, linux-signed-generic-lts-xenial, linux-modules-4.4.0-1166-aws, linux-aws-tools-4.4.0-1128, linux-signed-generic-lts-utopic, linux-tools-generic-lts-wily, linux-cloud-tools-lowlatency-lts-utopic, linux-image-extra-virtual-lts-utopic, linux-cloud-tools-generic, linux-modules-4.4.0-1129-kvm, linux-cloud-tools-4.4.0-251, linux-tools-generic-lts-vivid, linux-tools-4.4.0-1129-kvm, linux-image-hwe-virtual-trusty, linux-lowlatency, linux-signed-image-generic-lts-wily, linux-headers-generic-lts-xenial, linux-image-extra-virtual-lts-xenial, linux-image-kvm, linux-cloud-tools-virtual, linux-kvm-tools-4.4.0-1129, linux-tools-host, linux-tools-4.4.0-1166-aws, linux-hwe-virtual-trusty, linux-buildinfo-4.4.0-1129-kvm, linux-headers-generic-lts-wily, linux-virtual-lts-wily, linux-cloud-tools-virtual-lts-vivid, linux-signed-image-generic-lts-vivid, linux-buildinfo-4.4.0-251-generic, linux-source, linux-modules-extra-aws, linux-tools-4.4.0-251, linux-image-4.4.0-251-lowlatency, linux-modules-extra-4.4.0-1166-aws, linux-image-lowlatency, linux-image-unsigned-4.4.0-251-generic, linux-tools-lowlatency, linux-headers-4.4.0-1166-aws, linux-lts-xenial-cloud-tools-4.4.0-251, linux-cloud-tools-lowlatency-lts-wily, linux-cloud-tools-4.4.0-251-generic, linux-cloud-tools-virtual-lts-xenial, linux-tools-generic-lts-xenial, linux-image-generic-lts-xenial, linux-aws-headers-4.4.0-1166, linux-tools-lowlatency-lts-vivid, linux-headers-virtual-lts-xenial, linux-image-generic, linux-image-generic-lts-vivid, linux-headers-4.4.0-1129-kvm, linux-cloud-tools-generic-lts-vivid, linux-virtual-lts-utopic, linux-buildinfo-4.4.0-1166-aws, linux-tools-4.4.0-251-lowlatency, linux-tools-4.4.0-1128-aws, linux-signed-image-generic, linux-headers-lowlatency, linux-tools-virtual-lts-vivid, linux-image-4.4.0-1166-aws, linux-modules-4.4.0-251-lowlatency, linux-image-aws, linux-image-lowlatency-lts-vivid, linux-headers-virtual, linux-image-extra-virtual-lts-vivid, linux-virtual-lts-vivid, linux-image-extra-virtual, linux-cloud-tools-generic-lts-utopic, linux-headers-virtual-lts-vivid, linux-tools-4.4.0-251-generic, linux-headers-4.4.0-1128-aws, linux-headers-4.4.0-251-generic, linux-kvm-cloud-tools-4.4.0-1129, linux-tools-virtual-lts-xenial, linux-headers-lowlatency-lts-vivid, linux-lowlatency-lts-vivid, linux-generic-lts-wily, linux-image-lowlatency-lts-wily, linux-crashdump, linux-cloud-tools-lowlatency-lts-xenial, linux-generic-lts-xenial, linux-image-lowlatency-lts-xenial, linux-signed-image-lowlatency-lts-wily, linux-cloud-tools-4.4.0-1128-aws, linux-cloud-tools-generic-lts-xenial, linux-headers-virtual-lts-utopic, linux-aws, linux-signed-lowlatency-lts-wily, linux-signed-lowlatency-lts-xenial, linux-image-4.4.0-1129-kvm, linux-tools-lowlatency-lts-xenial, linux-tools-generic, linux-tools-kvm, linux-headers-4.4.0-251-lowlatency, linux-tools-aws, linux-tools-virtual, linux-modules-4.4.0-251-generic, linux-headers-lowlatency-lts-utopic, linux-cloud-tools-virtual-lts-utopic, linux-lts-xenial, linux-cloud-tools-4.4.0-251-lowlatency, linux-image-lowlatency-lts-utopic, linux-signed-image-lowlatency-lts-xenial, linux-cloud-tools-generic-lts-wily, linux-headers-lowlatency-lts-xenial, linux-headers-virtual-lts-wily, linux-image-generic-lts-utopic, linux, linux-headers-lowlatency-lts-wily, linux-kvm-headers-4.4.0-1129, linux-virtual-lts-xenial, linux-cloud-tools-4.4.0-1129-kvm
- USN-6647-1: linux-signed-lowlatency, linux-cloud-tools-virtual-hwe-16.04, linux-cloud-tools-4.15.0-222, linux-tools-aws-hwe, linux-tools-gcp, linux-headers-4.15.0-222-generic, linux-gcp-4.15-tools-4.15.0-1159, linux-modules-4.15.0-1165-aws, linux-signed-image-azure-lts-18.04, linux-virtual, linux-image-unsigned-4.15.0-1128-oracle, linux-tools-virtual-hwe-16.04, linux-image-unsigned-4.15.0-1159-gcp, linux-image-unsigned-4.15.0-222-lowlatency, linux-aws-hwe, linux-kvm, linux-azure-edge, linux-image-lowlatency-hwe-16.04-edge, linux-headers-lowlatency-hwe-16.04, linux-kvm-headers-4.15.0-1149, linux-tools-azure, linux-cloud-tools-4.15.0-1174-azure, linux-headers-kvm, linux-signed-image-lowlatency, linux-signed-generic-hwe-16.04, linux-modules-extra-aws-lts-18.04, linux-tools-4.15.0-1149-kvm, linux-signed-image-generic-hwe-16.04, linux-signed-lowlatency-hwe-16.04, linux-image-4.15.0-1174-azure, linux-buildinfo-4.15.0-1159-gcp, linux-cloud-tools-lowlatency, linux-image-azure-lts-18.04, linux-doc, linux-headers-generic, linux-signed-oem, linux-tools-4.15.0-222-generic, linux-cloud-tools-common, linux-signed-image-azure, linux-image-virtual, linux-tools-azure-lts-18.04, linux-image-virtual-hwe-16.04, linux-headers-aws-lts-18.04, linux-generic, linux-tools-4.15.0-1128-oracle, linux-cloud-tools-azure-edge, linux-cloud-tools-virtual-hwe-16.04-edge, linux-cloud-tools-4.15.0-222-generic, linux-aws-headers-4.15.0-1165, linux-gcp-4.15, linux-image-4.15.0-1159-gcp, linux-image-4.15.0-1128-oracle, linux-tools-generic-hwe-16.04-edge, linux-headers-azure-lts-18.04, linux-libc-dev, linux-image-gke, linux-headers-virtual-hwe-16.04-edge, linux-hwe-cloud-tools-4.15.0-222, linux-gcp-4.15-headers-4.15.0-1159, linux-aws-tools-4.15.0-1165, linux-image-4.15.0-222-generic, linux-aws-hwe-cloud-tools-4.15.0-1165, linux-tools-lowlatency-hwe-16.04, linux-tools-lowlatency-hwe-16.04-edge, linux-aws-cloud-tools-4.15.0-1165, linux-modules-extra-azure, linux-signed-image-lowlatency-hwe-16.04-edge, linux-tools-common, linux-azure-lts-18.04, linux-signed-generic, linux-image-azure, linux-signed-azure, linux-generic-hwe-16.04-edge, linux-tools-aws-lts-18.04, linux-hwe-tools-4.15.0-222, linux-oracle-lts-18.04, linux-image-unsigned-4.15.0-222-generic, linux-tools-virtual-hwe-16.04-edge, linux-headers-azure-edge, linux-cloud-tools-generic, linux-modules-extra-gcp, linux-cloud-tools-lowlatency-hwe-16.04-edge, linux-headers-aws-hwe, linux-image-gcp, linux-signed-image-lowlatency-hwe-16.04, linux-modules-4.15.0-1159-gcp, linux-cloud-tools-azure, linux-azure-4.15-cloud-tools-4.15.0-1174, linux-buildinfo-4.15.0-1128-oracle, linux-lowlatency, linux-aws-edge, linux-image-lowlatency-hwe-16.04, linux-image-4.15.0-222-lowlatency, linux-virtual-hwe-16.04, linux-buildinfo-4.15.0-222-lowlatency, linux-image-kvm, linux-cloud-tools-azure-lts-18.04, linux-cloud-tools-virtual, linux-tools-oracle, linux-tools-host, linux-cloud-tools-4.15.0-1165-aws, linux-headers-4.15.0-222, linux-headers-virtual-hwe-16.04, linux-image-unsigned-4.15.0-1165-aws, linux-azure-4.15, linux-image-extra-virtual-hwe-16.04-edge, linux-buildinfo-4.15.0-1149-kvm, linux-headers-4.15.0-1165-aws, linux-headers-oracle, linux-image-aws-lts-18.04, linux-modules-4.15.0-1128-oracle, linux-tools-azure-edge, linux-source, linux-image-generic-hwe-16.04, linux-signed-image-oem, linux-gcp-lts-18.04, linux-headers-oracle-lts-18.04, linux-image-oem, linux-cloud-tools-lowlatency-hwe-16.04, linux-image-lowlatency, linux-tools-4.15.0-222-lowlatency, linux-image-4.15.0-1149-kvm, linux-modules-4.15.0-222-generic, linux-tools-lowlatency, linux-modules-extra-aws-hwe, linux-image-extra-virtual-hwe-16.04, linux-signed-azure-lts-18.04, linux-image-azure-edge, linux-modules-4.15.0-1149-kvm, linux-modules-4.15.0-1174-azure, linux-modules-extra-azure-edge, linux-oracle-headers-4.15.0-1128, linux-modules-extra-4.15.0-1174-azure, linux-oem, linux-azure-tools-4.15.0-1174, linux-tools-4.15.0-1159-gcp, linux-virtual-hwe-16.04-edge, linux-image-virtual-hwe-16.04-edge, linux-image-generic, linux-image-oracle, linux-signed-image-oracle-lts-18.04, linux-headers-4.15.0-222-lowlatency, linux-aws-hwe-tools-4.15.0-1165, linux-headers-4.15.0-1159-gcp, linux-lowlatency-hwe-16.04-edge, linux-generic-hwe-16.04, linux-image-aws-hwe, linux-headers-lowlatency, linux-signed-image-generic, linux-modules-extra-4.15.0-1159-gcp, linux-cloud-tools-generic-hwe-16.04-edge, linux-headers-gke, linux-headers-virtual, linux-modules-extra-gcp-lts-18.04, linux-tools-oem, linux-cloud-tools-generic-hwe-16.04, linux-headers-generic-hwe-16.04, linux-tools-oracle-lts-18.04, linux-image-extra-virtual, linux-headers-4.15.0-1174-azure, linux-tools-gcp-lts-18.04, linux-tools-4.15.0-222, linux-tools-4.15.0-1165-aws, linux-lowlatency-hwe-16.04, linux-azure-cloud-tools-4.15.0-1174, linux-oracle, linux-signed-image-generic-hwe-16.04-edge, linux-signed-oracle, linux-azure, linux-crashdump, linux-modules-extra-4.15.0-1128-oracle, linux-tools-4.15.0-1174-azure, linux-tools-generic-hwe-16.04, linux-modules-extra-4.15.0-1165-aws, linux-headers-azure, linux-headers-4.15.0-1149-kvm, linux-gke, linux-image-unsigned-4.15.0-1174-azure, linux-kvm-tools-4.15.0-1149, linux-azure-headers-4.15.0-1174, linux-gcp-tools-4.15.0-1159, linux-headers-lowlatency-hwe-16.04-edge, linux-headers-4.15.0-1128-oracle, linux-aws, linux-azure-4.15-headers-4.15.0-1174, linux-oracle-tools-4.15.0-1128, linux-signed-image-oracle, linux-headers-gcp, linux-signed-oracle-lts-18.04, linux-tools-generic, linux-modules-extra-gke, linux-signed-lowlatency-hwe-16.04-edge, linux-azure-4.15-tools-4.15.0-1174, linux-tools-kvm, linux-source-4.15.0, linux-headers-oem, linux-tools-virtual, linux-image-oracle-lts-18.04, linux-modules-extra-4.15.0-222-generic, linux-buildinfo-4.15.0-1174-azure, linux-signed-azure-edge, linux-cloud-tools-4.15.0-222-lowlatency, linux-gcp-headers-4.15.0-1159, linux-image-4.15.0-1165-aws, linux-modules-4.15.0-222-lowlatency, linux-signed-image-azure-edge, linux-buildinfo-4.15.0-222-generic, linux-modules-extra-azure-lts-18.04, linux-headers-gcp-lts-18.04, linux-headers-generic-hwe-16.04-edge, linux-image-gcp-lts-18.04, linux-tools-gke, linux-gcp, linux-hwe, linux, linux-aws-lts-18.04, linux-buildinfo-4.15.0-1165-aws, linux-image-generic-hwe-16.04-edge, linux-signed-generic-hwe-16.04-edge
- USN-6647-2: linux-azure, linux-tools-4.15.0-1174-azure, linux-modules-extra-azure, linux-headers-azure, linux-image-unsigned-4.15.0-1174-azure, linux-azure-headers-4.15.0-1174, linux-image-azure, linux-modules-4.15.0-1174-azure, linux-modules-extra-4.15.0-1174-azure, linux-signed-azure, linux-azure-tools-4.15.0-1174, linux-tools-azure, linux-cloud-tools-4.15.0-1174-azure, linux-image-4.15.0-1174-azure, linux-buildinfo-4.15.0-1174-azure, linux-cloud-tools-azure, linux-signed-image-azure, linux-headers-4.15.0-1174-azure, linux-azure-cloud-tools-4.15.0-1174
- LSN-0101-1: ibm, lowlatency-5.15, hwe-6.5, aws, aws-5.15, gcp-4.15, aws-6.5, azure-5.4, gke, gcp-5.4, lowlatency-4.4, azure-4.15, gcp, generic-5.15, generic-5.4, gcp-5.15, aws-5.4, gkeop, generic-4.4, azure-6.5, lowlatency-4.15, gcp-6.5, gke-5.15, ibm-5.15, generic-4.15, aws-hwe, lowlatency-5.4, azure, linux
- LSN-0105-1: ibm, lowlatency-5.15, aws, aws-5.15, gcp-4.15, oracle, gke, lowlatency-4.4, azure-4.15, gcp, generic-5.15, generic-5.4, gcp-5.15, gkeop, generic-4.4, lowlatency-4.15, gke-5.15, ibm-5.15, generic-4.15, oracle-5.15, aws-hwe, lowlatency-5.4, azure, linux