[Ksplice][Ubuntu-24.04-Updates] New Ksplice updates for Ubuntu 24.04 Noble (6.8.0-53.55)

Oracle Ksplice gregory.herrero at oracle.com
Mon Mar 10 17:02:00 UTC 2025 

Synopsis: 6.8.0-53.55 can now be patched using Ksplice
CVEs: CVE-2024-41016 CVE-2024-47670 CVE-2024-47675 CVE-2024-47684 CVE-2024-47685 CVE-2024-47687 CVE-2024-47692 CVE-2024-47701 CVE-2024-47706 CVE-2024-47723 CVE-2024-47727 CVE-2024-47739 CVE-2024-47742 CVE-2024-47745 CVE-2024-49860 CVE-2024-49863 CVE-2024-49867 CVE-2024-49868 CVE-2024-49878 CVE-2024-49880 CVE-2024-49882 CVE-2024-49883 CVE-2024-49884 CVE-2024-49891 CVE-2024-49900 CVE-2024-49936 CVE-2024-49944 CVE-2024-49948 CVE-2024-49949 CVE-2024-49957 CVE-2024-49958 CVE-2024-49966 CVE-2024-49974 CVE-2024-49980 CVE-2024-49982 CVE-2024-49983 CVE-2024-49995 CVE-2024-49996 CVE-2024-50017 CVE-2024-50179 CVE-2024-50241 CVE-2024-53073

Systems running Ubuntu 24.04 Noble can now use Ksplice to patch
against the latest Ubuntu kernel update, 6.8.0-53.55.

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running Ubuntu 24.04
Noble install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* CVE-2024-41016, CVE-2024-47670: Privilege escalation in OCFS2 filesystem.

Missing checks when reading extended attributes in the OCFS2 filesystem
could lead to an out-of-bounds memory access. A local attacker could use
a crafted image to escalate privileges.


* CVE-2024-47675: Denial-of-service in BPF tracing subsystem.

A logic error when using the BPF tracing subsystem could lead to
a use-after-free. A local attacker could use this flaw to cause a
denial-of-service.


* CVE-2024-47684: Denial-of-service in TCP/IP networking driver.

A missing check when using the TCP/IP networking driver could lead to a
NULL pointer dereference. A local attacker could use this flaw to cause
a denial-of-service.


* CVE-2024-47685: Remote information leak in IPv6 packet rejection driver.

A missing check when using the IPv6 packet rejection driver could lead
to use of uninitialized memory. A remote attacker could use this flaw to
extract sensitive information.


* CVE-2024-47687: Denial-of-service in vDPA driver for ConnectX devices.

A missing check when using the vDPA driver for ConnectX devices could
lead to use of uninitialized memory. A local attacker could use this
flaw to cause a denial-of-service.


* CVE-2024-47692: Denial-of-service in NFS server driver.

A missing check when using the NFS server driver could lead to a NULL
pointer dereference. A local attacker could use this flaw to cause a
denial-of-service.


* CVE-2024-47701: Privilege escalation in ext4 filesystem.

A race condition when using the ext4 filesystem could lead to an
out-of-bounds memory access. A local attacker could use this flaw to
escalate privileges.


* CVE-2024-47706: Privilege escalation in generic block I/O layer.

A missing check when using the generic block I/O layer could lead to a
use-after-free. A local attacker could use this flaw to escalate
privileges.


* CVE-2024-47723: Information leak in JFS.

Missing checks in the JFS filesystem driver could lead to an
out-of-bounds access. A local attacker could use this flaw to
leak sensitive information or cause a denial-of-service.


* CVE-2024-47727: Memory corruption in Intel TDX (Trust Domain Extensions) - Guest driver.

A missing check when using the Intel TDX (Trust Domain Extensions) -
Guest driver could lead to an out-of-bounds memory access. A local
attacker could use this flaw to cause memory corruption.


* CVE-2024-47739: Denial-of-service in padata subsystem.

A locking error when using the padata subsystem could lead to a deadlock.
A local attacker could use this flaw to cause a denial-of-service.


* CVE-2024-47742: Privilege escalation in the firmware loader driver.

A missing check when user loads a firmware using firmware loader driver
indirectly could lead to loading arbitrary files. A local attacker could
use this flaw to escalate privileges.


* CVE-2024-47745: Memory corruption in Memory Management subsystem.

A missing check when using the Memory Management subsystem could lead to
LSM security check bypass. A local attacker could use this flaw to cause
memory corruption.


* CVE-2024-49860: Information leak in ACPI driver.

A missing check when using the ACPI driver could lead to an
out-of-bounds memory read. A local attacker could use this flaw to
extract sensitive information.


* CVE-2024-49863: Denial-of-service in virtio SCSI driver.

A missing check when retrieving SCSI request in the virtio SCSI driver
could lead to a NULL pointer dereference. A local attacker could use
this flaw to cause a denial-of-service.


* CVE-2024-49867: Privilege escalation in BTRFS filesystem.

A missing flush when unmounting the BTRFS filesystem could lead to a
use-after-free. A local attacker could use this flaw to escalate
privileges.


* CVE-2024-49868: Denial-of-service in BTRFS filesystem.

A missing check when using the BTRFS filesystem could lead to a NULL
pointer dereference. A local attacker could use this flaw to cause a
denial-of-service.


* CVE-2024-49878: Information leak in kernel resource manager with CXL memory.

A logic error in the kernel resource manager when CXL memory is in use
could lead to accessing normally restricted part of the memory. A local
attacker could use this flaw to leak sensitive information.


* CVE-2024-49880: Denial-of-service in The Extended 4 (ext4) filesystem driver.

A logic error when resizing the The Extended 4 (ext4) filesystem
could lead to a kernel assertion failure. A local attacker could use
this flaw to cause a denial-of-service and corrupt the filesystem.


* CVE-2024-49882: Code execution in ext4 filesystem.

A logic error in the ext4 filesystem could lead to a double free. A
local attacker could use this flaw to execute arbitrary code in kernel
mode.


* CVE-2024-49883: Privilege escalation in ext4 filesystem.

A logic error when using the ext4 filesystem could lead to a
use-after-free. A local attacker could use this flaw to escalate
privileges.


* CVE-2024-49884: Privilege escalation in EXT4 filesystem driver.

A logic error when adding extent in the EXT4 filesystem driver could
lead to a use-after-free. A local attacker could use this flaw to
escalate privileges.


* CVE-2024-49891: Denial-of-service in Emulex LightPulse Fibre Channel driver.

A race condition when using the Emulex LightPulse Fibre Channel driver
could lead to a use-after-free. A local attacker could use this flaw to
cause a denial-of-service.


* CVE-2024-49900: Information leak in JFS.

A logic error in the JFS filesystem driver could lead to
using an uninitialized buffer when working with extended
attributes. A local attacker could use this flaw to leak
sensitive information from kernel space.


* CVE-2024-49936: Privilege escalation in Xen backend network device driver.

A locking error when using the Xen backend network device driver could
lead to a use-after-free. An attacker from a guest VM could use this
flaw to escalate privileges.


* CVE-2024-49944: Denial-of-service in SCTP Protocol driver.

A missing check when listening on a socket in the SCTP Protocol driver
could lead to a NULL pointer dereference. A local attacker could use
this flaw to cause a denial-of-service.


* CVE-2024-49948, CVE-2024-49949: Denial-of-service in core networking layer.

Missing checks on maliciously crafted packets from userspace could
cause an underflow leading to a NULL pointer dereference. A local
attacker could use this flaw to cause a denial-of-service.


* CVE-2024-49957: Denial-of-service in OCFS2 file system driver.

A logic error when mounting a filesystem with a corrupted journal in the
OCFS2 file system driver could lead to a NULL pointer dereference. A
local attacker could use this flaw to cause a denial-of-service.


* CVE-2024-49958: Denial-of-service in OCFS2 filesystem.

A logic error when using the OCFS2 filesystem could lead to disk
corruption, and a potential kernel panic. A local attacker could use this
flaw to corrupt a filesystem, or cause a denial-of-service.


* CVE-2024-49966: Privilege escalation in OCFS2 file system driver.

A logic error when reading information header from global quota file in
the OCFS2 file system driver could lead to a use-after-free. A local
attacker could use this flaw to escalate privileges.


* CVE-2024-49974: Remote denial-of-service in NFS server driver.

A logic error when doing async copy operations in the NFS server driver
could lead to memory and cpu exhaustion. A remote attacker could use
this flaw to cause a denial-of-service.


* CVE-2024-49980: Denial-of-service in Virtual Routing and Forwarding driver.

A locking error when using the Virtual Routing and Forwarding driver
could lead to a deadlock. A local attacker could use this flaw to cause
a denial-of-service.


* CVE-2024-49982: Use-after-free in ATA-over-Ethernet driver.

Due to incorrect handling of device refcount in the ATA-over-Ethernet
(AoE) driver, a race is possible between freeing of an AoE device and
access through associated socket buffers, leading to a use-after-free.
A local attacker can exploit this flaw to cause a denial-of-service or
execute arbitrary code.


* CVE-2024-49983: Privilege escalation in EXT4 filesystem driver.

A logic error when using fast commit feature of the EXT4 filesystem
driver could lead to a use-after-free. A local attacker could use this
flaw to escalate privileges.


* CVE-2024-49995: Privilege escalation in TIPC Protocol driver.

A logic error when setting TIPC bearer name in the TIPC Protocol driver
could lead to an out-of-bounds memory access. A local attacker could use
this flaw to escalate privileges.


* CVE-2024-49996: Privilege escalation in SMB3 and CIFS driver.

A missing check when parsing NFS reparse points in the SMB3 and CIFS
driver could lead to an out-of-bounds memory access. A remote attacker
could use this flaw to escalate privileges.


* CVE-2024-50017: Denial-of-service in memory management subsystem.

A logic error when mapping memory pages can cause inclusion of
regions that will cause hardware to halt the system if accessed.
A local attacker could use this flaw as a step to cause a
denial-of-service.


* CVE-2024-50179: Denial-of-service in Ceph distributed file system driver.

A logic error when setting dirty pages in the Ceph distributed file
system driver could lead to a kernel assertion failure. A local attacker
could use this flaw to cause a denial-of-service.


* CVE-2024-50241, CVE-2024-53073: Denial-of-service in NFS server driver.

Incorrect reference counting when using the NFS server driver could lead
to use of uninitialized memory. A local attacker could use this flaw to
cause a denial-of-service.


* Note: Oracle has determined some CVEs are not applicable.

The kernel is not affected by the following CVEs
since the code under consideration is not compiled.

CVE-2024-49925

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.

More information about the Ksplice-Ubuntu-24.04-updates mailing list