126 Linux kernel Vulnerabilities Lets Attackers Exploit 78 Linux Sub-Systems

Users of Ubuntu 22.04 LTS are urged to update their systems immediately following a significant security patch issued by Canonical to address several critical vulnerabilities in the Linux kernel for Xilinx ZynqMP processors.

The Linux kernel for Xilinx Zynq UltraScale+ MPSoC (ZynqMP) is a specialized version of the Linux kernel that is tailored to support the features and hardware of the Xilinx Zynq UltraScale+ MPSoC family of processors.

These processors combine a quad-core ARM Cortex-A53 (64-bit) application processor, a dual-core ARM Cortex-R5 (32-bit) real-time processor, an ARM Mali-400 GPU, and programmable logic (FPGA).

The Linux kernel provides a robust foundation for both embedded and general-purpose applications on these devices.

If it is left unpatched, these flaws could allow attackers to compromise systems, potentially leading to unauthorized access or disruption.

“Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system”.

The patch resolves hundreds of CVEs, spanning vulnerabilities in subsystems, architectures, drivers, and protocols. A complete list of addressed CVEs is provided in the official security notice.

Investigate Real-World Malicious Links & Phishing Attacks With Threat Intelligence Lookup - Try for Free

Linux Kernel Update Brings Security Fixes and Enhancements

The latest Linux kernel update delivers critical security patches and performance improvements across multiple subsystems:

• Architectures: Updates for ARM32, x86, RISC-V, and S390.
• File Systems: Enhanced security and performance for BTRFS, Ext4, GFS2, Ceph, NFS, JFS, and F2FS.
• Drivers: Fixes for GPU, USB, Bluetooth, GPIO, Ethernet bonding, and InfiniBand drivers.
• Networking: Improvements to TCP, SCTP, IPv4, IPv6, Netfilter, and more.
• Security Frameworks: Updates for SELinux and access control modules.
• Core Components: Optimizations for memory management and tracing infrastructure.

Here’s the updated table with links for each associated CVE:

In addition to subsystem updates, Ubuntu has also released security updates addressing vulnerabilities affecting other systems.

Here’s the updated table with links embedded in the CVE identifiers:

The vulnerabilities affect multiple subsystems and components within the Linux kernel, underscoring the complexity and breadth of the issues. For the full list, visit the Ubuntu Security Notice (USN-7166-4).

Canonical has provided a targeted kernel update to address these issues. The affected package is linux-xilinx-zynqmp, and the updated version is 5.15.0-1039.43. Users are advised to check their current version and upgrade immediately to ensure their systems are secure.

To apply the update, users should execute the following commands in their terminal:

sudo apt update
sudo apt upgrade
sudo reboot

Rebooting is critical to ensure all fixes are applied, and the newly updated kernel is used.

This patch introduces changes to the Application Binary Interface (ABI), requiring recompilation and reinstallation of any third-party kernel modules.

However, for most users who have not manually removed standard kernel metapackages (e.g., linux-generic), this process will be automated during the upgrade.

This update is part of Canonical’s ongoing commitment to ensuring the security and stability of its open-source operating system.

Given the severity and scope of the vulnerabilities, Ubuntu users are strongly encouraged to update their systems as soon as possible to avoid potential exploitation.

Integrating Application Security into Your CI/CD Workflows Using Jenkins & Jira -> Free Webinar

The post 126 Linux kernel Vulnerabilities Lets Attackers Exploit 78 Linux Sub-Systems appeared first on Cyber Security News.