Monday, December 14, 2020
Ubuntu Security Notice USN-4658-2
advisory
arbitrary
denial of service
kernel
local
vulnerability
In: advisory, arbitrary, denial of service, kernel, local, vulnerability
Ubuntu Security Notice 4658-2 - USN-4658-1 fixed vulnerabilities in the Linux kernel. Unfortunately, that update introduced a regression in the software raid10 driver when used with fstrim that could lead to data corruption. This update fixes the problem. It was discovered that a race condition existed in the binder IPC implementation in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed. Ubuntu Security Notice USN-4658-2