{"id":"USN-4910-1","summary":"linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.8, linux-kvm, linux-oracle, linux-raspi vulnerabilities","details":"Ryota Shiga discovered that the sockopt BPF hooks in the Linux kernel could\nallow a user space program to probe for valid kernel addresses. A local\nattacker could use this to ease exploitation of another kernel\nvulnerability. (CVE-2021-20239)\n\nIt was discovered that the BPF verifier in the Linux kernel did not\nproperly handle signed add32 and sub integer overflows. A local attacker\ncould use this to cause a denial of service (system crash) or possibly\nexecute arbitrary code. (CVE-2021-20268)\n\nIt was discovered that the priority inheritance futex implementation in the\nLinux kernel contained a race condition, leading to a use-after-free\nvulnerability. A local attacker could use this to cause a denial of service\n(system crash) or possibly execute arbitrary code. (CVE-2021-3347)\n\nIt was discovered that the network block device (nbd) driver in the Linux\nkernel contained a use-after-free vulnerability during device setup. A\nlocal attacker with access to the nbd device could use this to cause a\ndenial of service (system crash) or possibly execute arbitrary code.\n(CVE-2021-3348)\n\n吴异 discovered that the NFS implementation in the Linux kernel did not\nproperly prevent access outside of an NFS export that is a subdirectory of\na file system. An attacker could possibly use this to bypass NFS access\nrestrictions. (CVE-2021-3178)\n","modified":"2026-04-27T16:03:36.817934976Z","published":"2021-04-13T20:41:12Z","related":["UBUNTU-CVE-2021-20239","UBUNTU-CVE-2021-20268","UBUNTU-CVE-2021-3178","UBUNTU-CVE-2021-3347","UBUNTU-CVE-2021-3348"],"upstream":["CVE-2021-20239","CVE-2021-20268","CVE-2021-3178","CVE-2021-3347","CVE-2021-3348","UBUNTU-CVE-2021-20239","UBUNTU-CVE-2021-20268","UBUNTU-CVE-2021-3178","UBUNTU-CVE-2021-3347","UBUNTU-CVE-2021-3348"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-4910-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2021-3178"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2021-3347"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2021-3348"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2021-20239"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2021-20268"}],"affected":[{"package":{"name":"linux-hwe-5.8","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/linux-hwe-5.8@5.8.0-49.55~20.04.1?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.8.0-49.55~20.04.1"}]}],"versions":["5.8.0-23.24~20.04.1","5.8.0-25.26~20.04.1","5.8.0-28.30~20.04.1","5.8.0-29.31~20.04.1","5.8.0-31.33~20.04.1","5.8.0-33.36~20.04.1","5.8.0-34.37~20.04.2","5.8.0-36.40~20.04.1","5.8.0-38.43~20.04.1","5.8.0-40.45~20.04.1","5.8.0-41.46~20.04.1","5.8.0-43.49~20.04.1","5.8.0-44.50~20.04.1","5.8.0-45.51~20.04.1","5.8.0-48.54~20.04.1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"block-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"block-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"block-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"crypto-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"crypto-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"crypto-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"dasd-extra-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"dasd-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"fat-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"fat-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"fat-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"fb-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"firewire-core-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"floppy-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"fs-core-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"fs-core-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"fs-core-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"fs-secondary-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"fs-secondary-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"fs-secondary-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"input-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"input-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"input-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"ipmi-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"ipmi-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"ipmi-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"kernel-image-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"kernel-image-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"kernel-image-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-buildinfo-5.8.0-49-generic"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-buildinfo-5.8.0-49-generic-64k"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-buildinfo-5.8.0-49-generic-lpae"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-buildinfo-5.8.0-49-lowlatency"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-cloud-tools-5.8.0-49-generic"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-cloud-tools-5.8.0-49-lowlatency"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-headers-5.8.0-49-generic"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-headers-5.8.0-49-generic-64k"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-headers-5.8.0-49-generic-lpae"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-headers-5.8.0-49-lowlatency"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-hwe-5.8-cloud-tools-5.8.0-49"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-hwe-5.8-cloud-tools-common"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-hwe-5.8-headers-5.8.0-49"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-hwe-5.8-source-5.8.0"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-hwe-5.8-tools-5.8.0-49"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-hwe-5.8-tools-common"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-hwe-5.8-tools-host"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-hwe-5.8-udebs-generic"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-hwe-5.8-udebs-generic-64k"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-hwe-5.8-udebs-generic-lpae"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-image-5.8.0-49-generic"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-image-5.8.0-49-generic-lpae"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-image-unsigned-5.8.0-49-generic"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-image-unsigned-5.8.0-49-generic-64k"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-image-unsigned-5.8.0-49-lowlatency"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-modules-5.8.0-49-generic"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-modules-5.8.0-49-generic-64k"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-modules-5.8.0-49-generic-lpae"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-modules-5.8.0-49-lowlatency"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-modules-extra-5.8.0-49-generic"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-tools-5.8.0-49-generic"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-tools-5.8.0-49-generic-64k"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-tools-5.8.0-49-generic-lpae"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"linux-tools-5.8.0-49-lowlatency"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"md-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"md-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"md-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"message-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"message-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"mouse-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"mouse-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"mouse-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"multipath-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"multipath-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"multipath-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nfs-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nfs-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nfs-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nic-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nic-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nic-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nic-pcmcia-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nic-shared-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nic-shared-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nic-shared-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nic-usb-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nic-usb-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"nic-usb-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"parport-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"parport-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"parport-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"pata-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"pcmcia-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"pcmcia-storage-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"plip-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"plip-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"plip-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"ppp-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"ppp-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"ppp-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"sata-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"sata-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"sata-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"scsi-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"scsi-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"scsi-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"serial-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"storage-core-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"storage-core-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"storage-core-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"usb-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"usb-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"usb-modules-5.8.0-49-generic-lpae-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"virtio-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"virtio-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"vlan-modules-5.8.0-49-generic-64k-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"vlan-modules-5.8.0-49-generic-di"},{"binary_version":"5.8.0-49.55~20.04.1","binary_name":"vlan-modules-5.8.0-49-generic-lpae-di"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:20.04:LTS","cves":[{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N","type":"CVSS_V3"},{"score":"negligible","type":"Ubuntu"}],"id":"CVE-2021-3178"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2021-3347"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2021-3348"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}],"id":"CVE-2021-20239"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2021-20268"}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4910-1.json"}}],"schema_version":"1.7.5"}