Описание
An issue was discovered in the Linux kernel through 5.3.9. There is a use-after-free when aa_label_parse() fails in aa_audit_rule_init() in security/apparmor/audit.c.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 4.13.0-16.19 |
| devel | not-affected | 5.4.0-9.12 |
| disco | not-affected | 5.0.0-11.12 |
| eoan | not-affected | 5.0.0-13.14 |
| esm-infra-legacy/trusty | ignored | was needs-triage ESM criteria |
| esm-infra/bionic | not-affected | 4.13.0-16.19 |
| esm-infra/xenial | not-affected | 4.2.0-16.19 |
| precise/esm | ignored | end of life, was needs-triage |
| trusty | ignored | end of standard support |
| trusty/esm | ignored | end of ESM support, was ignored [was needs-triage ESM criteria] |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 4.15.0-1001.1 |
| devel | not-affected | 5.4.0-1005.5 |
| disco | not-affected | 5.0.0-1002.2 |
| eoan | not-affected | 5.0.0-1004.4 |
| esm-infra-legacy/trusty | ignored | was needs-triage ESM criteria |
| esm-infra/bionic | not-affected | 4.15.0-1001.1 |
| esm-infra/xenial | not-affected | 4.4.0-1001.10 |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | ignored | end of ESM support, was ignored [was needs-triage ESM criteria] |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 5.0.0-1021.24~18.04.1 |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 5.0.0-1021.24~18.04.1 |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/xenial | not-affected | 4.15.0-1030.31~16.04.1 |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 5.0.0-1014.14~18.04.1 |
| devel | not-affected | 5.4.0-1006.6 |
| disco | not-affected | 5.0.0-1002.2 |
| eoan | not-affected | 5.0.0-1004.4 |
| esm-infra-legacy/trusty | ignored | was needs-triage ESM criteria |
| esm-infra/bionic | released | 5.0.0-1014.14~18.04.1 |
| esm-infra/xenial | not-affected | 4.11.0-1009.9 |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | ignored | end of ESM support, was ignored [was needs-triage ESM criteria] |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 5.3.0-1007.8~18.04.1 |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 5.3.0-1007.8~18.04.1 |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | ignored | superseded by linux-azure-5.3, was needs-triage |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 4.15.0-1001.1 |
| devel | not-affected | 5.4.0-1005.5 |
| disco | not-affected | 5.0.0-1002.2 |
| eoan | not-affected | 5.0.0-1004.4 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 4.15.0-1001.1 |
| esm-infra/xenial | not-affected | 4.10.0-1004.4 |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 5.3.0-1008.9~18.04.1 |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 5.3.0-1008.9~18.04.1 |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | ignored | end of kernel support, was needs-triage |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 4.15.0-1030.32 |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 4.15.0-1030.32 |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 5.0.0-1011.11~18.04.1 |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 5.3.0-1011.12~18.04.1 |
| devel | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 5.0.0-23.24~18.04.1 |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 5.0.0-23.24~18.04.1 |
| esm-infra/xenial | not-affected | 4.8.0-36.36~16.04.1 |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 5.0.0-15.16~18.04.1 |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 5.0.0-15.16~18.04.1 |
| esm-infra/xenial | ignored | superseded by linux-hwe, was needs-triage |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 4.15.0-1002.2 |
| devel | not-affected | 5.4.0-1004.4 |
| disco | not-affected | 5.0.0-1002.2 |
| eoan | not-affected | 5.0.0-1004.4 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 4.15.0-1002.2 |
| esm-infra/xenial | not-affected | 4.4.0-1004.9 |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | ignored | end of life, was needs-triage |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | ignored | was needs-triage ESM criteria |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | ignored | end of ESM support, was ignored [was needs-triage ESM criteria] |
| upstream | needed | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 4.15.0-1002.3 |
| devel | DNE | |
| disco | not-affected | 4.15.0-1021.24 |
| eoan | not-affected | 4.15.0-1035.40 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 4.15.0-1002.3 |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | not-affected | 5.4.0-1002.4 |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 5.0.0-1010.11 |
| devel | DNE | |
| disco | not-affected | 5.0.0-1010.11 |
| eoan | not-affected | 5.0.0-1010.11 |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 4.15.0-1007.9 |
| devel | not-affected | 5.4.0-1005.5 |
| disco | not-affected | 4.15.0-1007.9 |
| eoan | not-affected | 4.15.0-1011.13 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 4.15.0-1007.9 |
| esm-infra/xenial | not-affected | 4.15.0-1007.9~16.04.1 |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 5.0.0-1007.12~18.04.1 |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 5.0.0-1007.12~18.04.1 |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 4.13.0-1005.5 |
| devel | not-affected | 5.4.0-1004.4 |
| disco | not-affected | 5.0.0-1005.5 |
| eoan | not-affected | 5.0.0-1006.6 |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed | |
| xenial | not-affected | 4.2.0-1013.19 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 5.3.0-1017.19~18.04.1 |
| devel | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 4.4.0-1077.82 |
| devel | DNE | |
| disco | not-affected | 5.0.0-1010.10 |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed | |
| xenial | not-affected | 4.4.0-1012.12 |
Показывать по
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
An issue was discovered in the Linux kernel through 5.3.9. There is a use-after-free when aa_label_parse() fails in aa_audit_rule_init() in security/apparmor/audit.c.
An issue was discovered in the Linux kernel through 5.3.9. There is a use-after-free when aa_label_parse() fails in aa_audit_rule_init() in security/apparmor/audit.c.
An issue was discovered in the Linux kernel through 5.3.9. There is a ...
An issue was discovered in the Linux kernel through 5.3.9. There is a use-after-free when aa_label_parse() fails in aa_audit_rule_init() in security/apparmor/audit.c.
Уязвимость функции aa_audit_rule_init() (security/apparmor/audit.c) ядра операционной системы Linux, позволяющая нарушителю выполнить произвольный код
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3