[Ksplice][Ubuntu-21.04-Updates] New Ksplice updates for Ubuntu 21.04 Hirsute (USN-5208-1)

Oracle Ksplice quentin.casasnovas at oracle.com
Wed Jan 12 18:34:34 UTC 2022 

Synopsis: USN-5208-1 can now be patched using Ksplice
CVEs: CVE-2021-20321 CVE-2021-3760 CVE-2021-3896 CVE-2021-4002 CVE-2021-41864 CVE-2021-43056 CVE-2021-43267 CVE-2021-43389

Systems running Ubuntu 21.04 Hirsute can now use Ksplice to patch
against the latest Ubuntu Security Notice, USN-5208-1.

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running Ubuntu 21.04
Hirsute install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* CVE-2021-20321: Denial-of-service in OverlayFS due to a race condition.

A race condition when accessing file objects in the OverlayFS subsystem
could lead to a system crash. A local user could use this flaw to cause
a denial-of-service.


* CVE-2021-3760: Use-after-free in the NFC subsystem when closing NCI connections.

The NFC subsystem had a use-after-free flaw which could be triggered when
closing an NCI connection. A local attacker could potentially use it to
cause a denial-of-service or execute arbitrary code.


* CVE-2021-41864: Out-of-bounds write access in eBPF during a map operation.

An integer overflow could happen in eBPF during a map operation
resulting in out-of-bounds write access. An unprivileged user
could use this flaw for a denial-of-service or to execute code.


* CVE-2021-43389, CVE-2021-3896: Out-of-bounds access in ISDN CAPI due to a race condition.

A race condition in the ISDN Kernel CAPI Interface implementation could result
in an out-of-bounds access. A privileged local user could potentially use this
flaw to cause a denial-of-service or execute arbitrary code.


* CVE-2021-4002: Information disclosure in HugeTLB due to a missing TLB flush.

A missing TLB flush in the HugeTLB implementation could allow a local attacker
to leak or alter data from other processes that use huge pages.


* Note: Oracle has determined that CVE-2021-43056 is not applicable.

Oracle has determined that CVE-2021-43056 is not applicable to x86.
Applying the patch has no resulting changes in the generated object
files.


* CVE-2021-43267: Arbitrary code execution when decoding TIPC MSG_CRYPTO packet.

Missing validation of the length of a MSG_CRYPTO TIPC message type could
allow a malicious sender to overwrite memory, potentially executing
arbitrary code.

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.

More information about the Ksplice-Ubuntu-21.04-updates mailing list