usn-7234-2
Vulnerability from osv_ubuntu
Published
2025-01-30 19:12
Modified
2026-06-03 10:45
Summary
linux-hwe-5.4 vulnerabilities
Details

Ye Zhang and Nicolas Wu discovered that the io_uring subsystem in the Linux kernel did not properly handle locking for rings with IOPOLL, leading to a double-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-21400)

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - TTY drivers; - Netfilter; - Network traffic control; - VMware vSockets driver; (CVE-2024-53141, CVE-2024-53103, CVE-2024-40967, CVE-2024-53164)


{
  "affected": [
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2023-21400",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "high",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2024-40967",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2024-53103",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "high",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2024-53141",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2024-53164",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:Pro:18.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "block-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "crypto-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "dasd-extra-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "dasd-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "fat-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "fb-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "firewire-core-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "floppy-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "fs-core-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "input-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "ipmi-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "kernel-image-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-buildinfo-5.4.0-205-generic",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-buildinfo-5.4.0-205-lowlatency",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-cloud-tools-5.4.0-205-generic",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-cloud-tools-5.4.0-205-lowlatency",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-headers-5.4.0-205-generic",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-headers-5.4.0-205-lowlatency",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-hwe-5.4-cloud-tools-5.4.0-205",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-hwe-5.4-cloud-tools-common",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-hwe-5.4-headers-5.4.0-205",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-hwe-5.4-source-5.4.0",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-hwe-5.4-tools-5.4.0-205",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-hwe-5.4-tools-common",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-hwe-5.4-udebs-generic",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-image-unsigned-5.4.0-205-generic",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-image-unsigned-5.4.0-205-lowlatency",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-modules-5.4.0-205-generic",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-modules-5.4.0-205-lowlatency",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-modules-extra-5.4.0-205-generic",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-tools-5.4.0-205-generic",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "linux-tools-5.4.0-205-lowlatency",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "md-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "message-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "mouse-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "multipath-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "nfs-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "nic-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "nic-pcmcia-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "nic-shared-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "nic-usb-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "parport-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "pata-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "pcmcia-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "pcmcia-storage-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "plip-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "ppp-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "sata-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "scsi-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "serial-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "storage-core-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "usb-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "virtio-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          },
          {
            "binary_name": "vlan-modules-5.4.0-205-generic-di",
            "binary_version": "5.4.0-205.225~18.04.1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:18.04:LTS",
        "name": "linux-hwe-5.4",
        "purl": "pkg:deb/ubuntu/linux-hwe-5.4@5.4.0-205.225~18.04.1?arch=source\u0026distro=esm-infra/bionic"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "5.4.0-205.225~18.04.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "5.4.0-37.41~18.04.1",
        "5.4.0-39.43~18.04.1",
        "5.4.0-40.44~18.04.1",
        "5.4.0-42.46~18.04.1",
        "5.4.0-45.49~18.04.2",
        "5.4.0-47.51~18.04.1",
        "5.4.0-48.52~18.04.1",
        "5.4.0-51.56~18.04.1",
        "5.4.0-52.57~18.04.1",
        "5.4.0-53.59~18.04.1",
        "5.4.0-54.60~18.04.1",
        "5.4.0-56.62~18.04.1",
        "5.4.0-58.64~18.04.1",
        "5.4.0-59.65~18.04.1",
        "5.4.0-60.67~18.04.1",
        "5.4.0-62.70~18.04.1",
        "5.4.0-64.72~18.04.1",
        "5.4.0-65.73~18.04.1",
        "5.4.0-66.74~18.04.2",
        "5.4.0-67.75~18.04.1",
        "5.4.0-70.78~18.04.1",
        "5.4.0-71.79~18.04.1",
        "5.4.0-72.80~18.04.1",
        "5.4.0-73.82~18.04.1",
        "5.4.0-74.83~18.04.1",
        "5.4.0-77.86~18.04.1",
        "5.4.0-80.90~18.04.1",
        "5.4.0-81.91~18.04.1",
        "5.4.0-84.94~18.04.1",
        "5.4.0-86.97~18.04.1",
        "5.4.0-87.98~18.04.1",
        "5.4.0-89.100~18.04.1",
        "5.4.0-90.101~18.04.1",
        "5.4.0-91.102~18.04.1",
        "5.4.0-92.103~18.04.2",
        "5.4.0-94.106~18.04.1",
        "5.4.0-96.109~18.04.1",
        "5.4.0-97.110~18.04.1",
        "5.4.0-99.112~18.04.1",
        "5.4.0-100.113~18.04.1",
        "5.4.0-104.118~18.04.1",
        "5.4.0-105.119~18.04.1",
        "5.4.0-107.121~18.04.1",
        "5.4.0-109.123~18.04.1",
        "5.4.0-110.124~18.04.1",
        "5.4.0-113.127~18.04.1",
        "5.4.0-117.132~18.04.1",
        "5.4.0-120.136~18.04.1",
        "5.4.0-121.137~18.04.1",
        "5.4.0-122.138~18.04.1",
        "5.4.0-124.140~18.04.1",
        "5.4.0-125.141~18.04.1",
        "5.4.0-126.142~18.04.1",
        "5.4.0-128.144~18.04.1",
        "5.4.0-131.147~18.04.1",
        "5.4.0-132.148~18.04.1",
        "5.4.0-133.149~18.04.1",
        "5.4.0-135.152~18.04.2",
        "5.4.0-136.153~18.04.1",
        "5.4.0-137.154~18.04.1",
        "5.4.0-139.156~18.04.1",
        "5.4.0-144.161~18.04.1",
        "5.4.0-146.163~18.04.1",
        "5.4.0-147.164~18.04.1",
        "5.4.0-148.165~18.04.1",
        "5.4.0-149.166~18.04.1",
        "5.4.0-150.167~18.04.1",
        "5.4.0-152.169~18.04.1",
        "5.4.0-153.170~18.04.1",
        "5.4.0-155.172~18.04.1",
        "5.4.0-156.173~18.04.1",
        "5.4.0-159.176~18.04.1",
        "5.4.0-162.179~18.04.1",
        "5.4.0-163.180~18.04.1",
        "5.4.0-164.181~18.04.1",
        "5.4.0-165.182~18.04.1",
        "5.4.0-166.183~18.04.2",
        "5.4.0-167.184~18.04.1",
        "5.4.0-169.187~18.04.1",
        "5.4.0-170.188~18.04.1",
        "5.4.0-171.189~18.04.1",
        "5.4.0-172.190~18.04.1",
        "5.4.0-173.191~18.04.1",
        "5.4.0-174.193~18.04.1",
        "5.4.0-175.195~18.04.1",
        "5.4.0-177.197~18.04.1",
        "5.4.0-181.201~18.04.1",
        "5.4.0-182.202~18.04.1",
        "5.4.0-186.206~18.04.1",
        "5.4.0-187.207~18.04.1",
        "5.4.0-189.209~18.04.1",
        "5.4.0-190.210~18.04.1",
        "5.4.0-192.212~18.04.1",
        "5.4.0-193.213~18.04.1",
        "5.4.0-195.215~18.04.1",
        "5.4.0-196.216~18.04.1",
        "5.4.0-198.218~18.04.1",
        "5.4.0-200.220~18.04.1",
        "5.4.0-202.222~18.04.1",
        "5.4.0-204.224~18.04.1"
      ]
    }
  ],
  "aliases": [],
  "details": "Ye Zhang and Nicolas Wu discovered that the io_uring subsystem in the Linux\nkernel did not properly handle locking for rings with IOPOLL, leading to a\ndouble-free vulnerability. A local attacker could use this to cause a\ndenial of service (system crash) or possibly execute arbitrary code.\n(CVE-2023-21400)\n\nSeveral security issues were discovered in the Linux kernel.\nAn attacker could possibly use these to compromise the system.\nThis update corrects flaws in the following subsystems:\n  - TTY drivers;\n  - Netfilter;\n  - Network traffic control;\n  - VMware vSockets driver;\n(CVE-2024-53141, CVE-2024-53103, CVE-2024-40967, CVE-2024-53164)\n",
  "id": "USN-7234-2",
  "modified": "2026-06-03T10:45:54Z",
  "published": "2025-01-30T19:12:57Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://ubuntu.com/security/notices/USN-7234-2"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2023-21400"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2024-40967"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2024-53103"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2024-53141"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2024-53164"
    }
  ],
  "related": [],
  "schema_version": "1.7.0",
  "summary": "linux-hwe-5.4 vulnerabilities",
  "upstream": [
    "UBUNTU-CVE-2023-21400",
    "UBUNTU-CVE-2024-40967",
    "UBUNTU-CVE-2024-53103",
    "UBUNTU-CVE-2024-53141",
    "UBUNTU-CVE-2024-53164"
  ]
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…