Ubuntu: (Multiple Advisories) (CVE-2024-35791): Linux kernel vulnerabilities

Ubuntu: (Multiple Advisories) (CVE-2024-35791): Linux kernel vulnerabilities

Severity

4

CVSS

(AV:L/AC:M/Au:N/C:P/I:P/A:P)

Published

05/17/2024

Created

07/16/2024

Added

07/16/2024

Modified

09/20/2024

Description

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Flush pages under kvm->lock to fix UAF in svm_register_enc_region() Do the cache flush of converted pages in svm_register_enc_region() before dropping kvm->lock to fix use-after-free issues where region and/or its array of pages could be freed by a different task, e.g. if userspace has __unregister_enc_region_locked() already queued up for the region. Note, the "obvious" alternative of using local variables doesn't fully resolve the bug, as region->pages is also dynamically allocated.I.e. the region structure itself would be fine, but region->pages could be freed. Flushing multiple pages under kvm->lock is unfortunate, but the entire flow is a rare slow path, and the manual flush is only needed on CPUs that lack coherency for encrypted memory.

Solution(s)

• ubuntu-upgrade-linux-image-5-15-0-1035-xilinx-zynqmp
• ubuntu-upgrade-linux-image-5-15-0-1048-gkeop
• ubuntu-upgrade-linux-image-5-15-0-1058-ibm
• ubuntu-upgrade-linux-image-5-15-0-1058-raspi
• ubuntu-upgrade-linux-image-5-15-0-1060-intel-iotg
• ubuntu-upgrade-linux-image-5-15-0-1060-nvidia
• ubuntu-upgrade-linux-image-5-15-0-1060-nvidia-lowlatency
• ubuntu-upgrade-linux-image-5-15-0-1062-gke
• ubuntu-upgrade-linux-image-5-15-0-1062-kvm
• ubuntu-upgrade-linux-image-5-15-0-1063-oracle
• ubuntu-upgrade-linux-image-5-15-0-1064-gcp
• ubuntu-upgrade-linux-image-5-15-0-1065-aws
• ubuntu-upgrade-linux-image-5-15-0-1065-gcp
• ubuntu-upgrade-linux-image-5-15-0-1068-azure
• ubuntu-upgrade-linux-image-5-15-0-1068-azure-fde
• ubuntu-upgrade-linux-image-5-15-0-116-generic
• ubuntu-upgrade-linux-image-5-15-0-116-generic-64k
• ubuntu-upgrade-linux-image-5-15-0-116-generic-lpae
• ubuntu-upgrade-linux-image-5-15-0-116-lowlatency
• ubuntu-upgrade-linux-image-5-15-0-116-lowlatency-64k
• ubuntu-upgrade-linux-image-aws
• ubuntu-upgrade-linux-image-aws-lts-22-04
• ubuntu-upgrade-linux-image-azure
• ubuntu-upgrade-linux-image-azure-cvm
• ubuntu-upgrade-linux-image-azure-fde
• ubuntu-upgrade-linux-image-azure-fde-lts-22-04
• ubuntu-upgrade-linux-image-azure-lts-22-04
• ubuntu-upgrade-linux-image-gcp
• ubuntu-upgrade-linux-image-gcp-lts-22-04
• ubuntu-upgrade-linux-image-generic
• ubuntu-upgrade-linux-image-generic-64k
• ubuntu-upgrade-linux-image-generic-64k-hwe-20-04
• ubuntu-upgrade-linux-image-generic-hwe-20-04
• ubuntu-upgrade-linux-image-generic-lpae
• ubuntu-upgrade-linux-image-generic-lpae-hwe-20-04
• ubuntu-upgrade-linux-image-gke
• ubuntu-upgrade-linux-image-gke-5-15
• ubuntu-upgrade-linux-image-gkeop
• ubuntu-upgrade-linux-image-gkeop-5-15
• ubuntu-upgrade-linux-image-ibm
• ubuntu-upgrade-linux-image-intel
• ubuntu-upgrade-linux-image-intel-iotg
• ubuntu-upgrade-linux-image-kvm
• ubuntu-upgrade-linux-image-lowlatency
• ubuntu-upgrade-linux-image-lowlatency-64k
• ubuntu-upgrade-linux-image-lowlatency-64k-hwe-20-04
• ubuntu-upgrade-linux-image-lowlatency-hwe-20-04
• ubuntu-upgrade-linux-image-nvidia
• ubuntu-upgrade-linux-image-nvidia-lowlatency
• ubuntu-upgrade-linux-image-oem-20-04
• ubuntu-upgrade-linux-image-oem-20-04b
• ubuntu-upgrade-linux-image-oem-20-04c
• ubuntu-upgrade-linux-image-oem-20-04d
• ubuntu-upgrade-linux-image-oracle
• ubuntu-upgrade-linux-image-oracle-lts-22-04
• ubuntu-upgrade-linux-image-raspi
• ubuntu-upgrade-linux-image-raspi-nolpae
• ubuntu-upgrade-linux-image-virtual
• ubuntu-upgrade-linux-image-virtual-hwe-20-04
• ubuntu-upgrade-linux-image-xilinx-zynqmp

References

• https://attackerkb.com/topics/cve-2024-35791
• CVE - 2024-35791
• USN-6898-1
• USN-6898-2
• USN-6898-3
• USN-6898-4
• USN-6917-1
• USN-6919-1
• USN-6927-1
• USN-7019-1

View more