All Vulnerability Reports

USN-4390-1: Linux kernel vulnerabilities


Severity

Medium

Vendor

Canonical Ubuntu

Versions Affected

  • Canonical Ubuntu 16.04

Description

It was discovered that the F2FS file system implementation in the Linux kernel did not properly perform bounds checking on xattrs in some situations. A local attacker could possibly use this to expose sensitive information (kernel memory). (CVE-2020-0067)

It was discovered that memory contents previously stored in microarchitectural special registers after RDRAND, RDSEED, and SGX EGETKEY read operations on Intel client and Xeon E3 processors may be briefly exposed to processes on the same or different processor cores. A local attacker could use this to expose sensitive information. (CVE-2020-0543)

Piotr Krysiuk discovered that race conditions existed in the file system implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash). (CVE-2020-12114)

It was discovered that the USB susbsystems scatter-gather implementation in the Linux kernel did not properly take data references in some situations, leading to a use-after-free. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2020-12464)

Xiumei Mu discovered that the IPSec implementation in the Linux kernel did not properly encrypt IPv6 traffic in some situations. An attacker could use this to expose sensitive information. (CVE-2020-1749)

Dmitry Vyukov discovered that the SELinux netlink security hook in the Linux kernel did not validate messages in some situations. A privileged attacker could use this to bypass SELinux netlink restrictions. (CVE-2020-10751)

CVEs contained in this USN include: CVE-2020-0543, CVE-2020-12114, CVE-2020-10751, CVE-2020-12464, CVE-2020-1749, CVE-2020-0067

Affected VMware Products and Versions

Severity is medium unless otherwise noted.

Vulnerable Cloud Foundry components individually listed here. Impacted stemcells may be updated independently of upgrading Tanzu Application Service or Isolation Segment.

  • Isolation Segment
    • 2.7.x versions prior to 2.7.18
    • 2.8.x versions prior to 2.8.12
    • 2.9.x versions prior to 2.9.6
  • Operations Manager
    • 2.7 versions prior to 2.7.19
    • 2.8 versions prior to 2.8.10
    • 2.9 versions prior to 2.9.6
  • VMware Tanzu Application Service for VMs
    • 2.7.x versions prior to 2.7.18
    • 2.8.x versions prior to 2.8.12
    • 2.9.x versions prior to 2.9.6

Mitigation

The Cloud Foundry security team recommends upgrading the affected OSS components listed here if applicable. Upgrade VMware Tanzu products that use earlier versions of CF components to new Tanzu releases using new versions linked above. On the Tanzu Network product page for each release, check the Depends On section and/or Release Notes for this information. Releases that have fixed this issue include:

  • Isolation Segment
    • 2.7.18
    • 2.8.12
    • 2.9.6
  • Operations Manager
    • 2.7.19
    • 2.8.10
    • 2.9.6
  • VMware Tanzu Application Service for VMs
    • 2.7.18
    • 2.8.12
    • 2.9.6

References

History

2020-06-10: Initial vulnerability report published.