The new kernel updates are available for Ubuntu 20.10 (Groovy Gorilla), Ubuntu 20.04 LTS (Focal Fossa), Ubuntu 18.04 LTS (Bionic Beaver), Ubuntu 16.04 LTS (Xenial Xerus), and Ubuntu 14.04 ESM systems.įor Ubuntu 20.10 and Ubuntu 20.04 LTS systems running Linux kernel 5.8, the new kernel update fixes CVE-2021-20239, a flaw discovered by Ryota Shiga in Linux kernel’s sockopt BPF hooks that could allow a local attacker to exploit another kernel vulnerability, CVE-2021-20268, a flaw discovered in the BPF verifier, which could allow a local attacker to cause a denial of service (system crash) or possibly execute arbitrary code, and CVE-2021-3178, a flaw discovered in the NFS implementation, which could allow an attacker to bypass NFS access restrictions.įor Ubuntu 20.04 LTS and Ubuntu 18.04 LTS systems running Linux kernel 5.4 LTS, the new kernel update fixes CVE-2021-20194, a flaw discovered by Loris Reiff in the BPF implementation that could allow a local attacker to cause a denial of service (system crash), as well as CVE-2021-26930 and CVE-2021-26931, two flaws discovered in the Xen paravirtualization backend, which could allow an attacker in a guest VM to crash the host domain.
Canonical published today new Linux kernel updates for all supported Ubuntu releases to address up to 20 security vulnerabilities affecting all supported kernel flavors.