- kernel-5.15.0-1073.79~20.04.1 (ubuntu-focal-lts-jammy-aws)
- 5.15.0-1075.82~20.04.1
- 2025-02-03 10:11:00
- 2025-02-05 08:36:06
- K20250203_06
- CVE-2020-12351 CVE-2020-12352 CVE-2020-24490, CVSSv2 Score: 8.8
- Description:
UBUNTU: [Config] Disable BlueZ highspeed support
- CVE: https://ubuntu.com/security/CVE-2020-24490
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2020-12351-CVE-2020-12352-CVE-2020-24490-kpatch.patch
- From: 5.15.0-130.140
- CVE-2024-40910, CVSSv2 Score: 5.5
- Description:
ax25: Fix refcount imbalance on inbound connections
- CVE: https://ubuntu.com/security/CVE-2024-40910
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2024-40910-ax25-fix-refcount-imbalance-on-inbound-connections.patch
- From: 5.15.0-130.140
- CVE-2024-53057, CVSSv2 Score: 7.8
- Description:
net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT
- CVE: https://ubuntu.com/security/CVE-2024-53057
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2024-53057-net-sched-stop-qdisc-tree-reduce-backlog-on-tc-h-root.patch
- From: 5.15.0-130.140
- CVE-2024-40973, CVSSv2 Score: 5.5
- Description:
media: mtk-vcodec: potential null pointer deference in SCP
- CVE: https://ubuntu.com/security/CVE-2024-40973
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2024-40973-media-mtk-vcodec-potential-null-pointer-deference-in-scp.patch
- From: 5.15.0-130.140
- CVE-2024-35967, CVSSv2 Score: 5.5
- Description:
Bluetooth: SCO: Fix not validating setsockopt user input
- CVE: https://ubuntu.com/security/CVE-2024-35967
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2024-35967-bluetooth-sco-fix-not-validating-setsockopt-user-input.patch
- From: 5.15.0-130.140
- CVE-2024-35966, CVSSv2 Score: 5.5
- Description:
Bluetooth: RFCOMM: Fix not validating setsockopt user
- CVE: https://ubuntu.com/security/CVE-2024-35966
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2024-35966-bluetooth-rfcomm-fix-not-validating-setsockopt-user-input.patch
- From: 5.15.0-130.140
- CVE-2024-35965, CVSSv2 Score: 5.5
- Description:
Bluetooth: L2CAP: Fix not validating setsockopt user input
- CVE: https://ubuntu.com/security/CVE-2024-35965
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2024-35965-bluetooth-l2cap-fix-not-validating-setsockopt-user-input.patch
- From: 5.15.0-130.140
- CVE-2024-35963, CVSSv2 Score: 5.5
- Description:
Bluetooth: hci_sock: Fix not validating setsockopt user input
- CVE: https://ubuntu.com/security/CVE-2024-35963
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2024-35963-bluetooth-hci-sock-fix-not-validating-setsockopt-user-input.patch
- From: 5.15.0-130.140
- CVE-2024-38553, CVSSv2 Score: 5.5
- Description:
net: fec: remove .ndo_poll_controller to avoid deadlocks
- CVE: https://ubuntu.com/security/CVE-2024-38553
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2024-38553-net-fec-remove-ndo-poll-controller-to-avoid-deadlocks.patch
- From: 5.15.0-130.140
- CVE-2024-38553, CVSSv2 Score: 5.5
- Description:
net: fec: remove .ndo_poll_controller to avoid deadlocks
- CVE: https://ubuntu.com/security/CVE-2024-38553
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2024-38553-net-fec-remove-ndo-poll-controller-to-avoid-deadlocks-kpatch.patch
- From: 5.15.0-130.140
- CVE-2024-50264, CVSSv2 Score: 7.8
- Description:
vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans
- CVE: https://ubuntu.com/security/CVE-2024-50264
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2024-50264-vsock-virtio-initialization-of-the-dangling-pointer-occurring-in-vsk-trans.patch
- From: 5.15.0-130.140
- CVE-2024-43904, CVSSv2 Score: 5.5
- Description:
drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing
- CVE: https://ubuntu.com/security/CVE-2024-43904
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2024-43904-drm-amd-display-add-null-checks-for-stream-and-plane-before-dereferencing.patch
- From: 5.15.0-130.140
- CVE-2024-26822, CVSSv2 Score: 5.5
- Description:
smb: client: set correct id, uid and cruid for multiuser automounts
- CVE: https://ubuntu.com/security/CVE-2024-26822
- Patch: ubuntu-jammy/5.15.0-130.140/CVE-2024-26822-smb-client-set-correct-id-uid-and-cruid-for-multiuser-automounts.patch
- From: 5.15.0-130.140
- CVE-2024-53164, CVSSv2 Score: 5.5
- Description:
net: sched: fix ordering of qlen adjustment
- CVE: https://ubuntu.com/security/CVE-2024-53164
- Patch: ubuntu-jammy/5.15.0-131.141/CVE-2024-53164-net-sched-fix-ordering-of-qlen-adjustment.patch
- From: 5.15.0-131.141
- CVE-2024-53141, CVSSv2 Score: 7.8
- Description:
netfilter: ipset: add missing range check in bitmap_ip_uadt
- CVE: https://ubuntu.com/security/CVE-2024-53141
- Patch: ubuntu-jammy/5.15.0-131.141/CVE-2024-53141-netfilter-ipset-add-missing-range-check-in-bitmap-ip-uadt.patch
- From: 5.15.0-131.141
- CVE-2024-53103, CVSSv2 Score: 7.8
- Description:
hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer
- CVE: https://ubuntu.com/security/CVE-2024-53103
- Patch: ubuntu-jammy/5.15.0-131.141/CVE-2024-53103-hv-sock-initializing-vsk-trans-to-null-to-prevent-a-dangling-pointer.patch
- From: 5.15.0-131.141