{"id":"USN-6921-1","summary":"linux, linux-aws, linux-gcp, linux-gke, linux-ibm, linux-nvidia, linux-oem-6.8, linux-raspi vulnerabilities","details":"\nBenedict Schlüter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde\ndiscovered that an untrusted hypervisor could inject malicious #VC\ninterrupts and compromise the security guarantees of AMD SEV-SNP. This flaw\nis known as WeSee. A local attacker in control of the hypervisor could use\nthis to expose sensitive information or possibly execute arbitrary code in\nthe trusted execution environment. (CVE-2024-25742)\n\nSeveral security issues were discovered in the Linux kernel.\nAn attacker could possibly use these to compromise the system.\nThis update corrects flaws in the following subsystems:\n  - DMA engine subsystem;\n  - HID subsystem;\n  - I2C subsystem;\n  - PHY drivers;\n  - TTY drivers;\n  - IPv4 networking;\n(CVE-2024-35990, CVE-2024-35997, CVE-2024-35992, CVE-2024-35984,\nCVE-2024-36008, CVE-2024-36016)\n","modified":"2026-05-23T01:47:51.546511506Z","published":"2024-07-29T12:51:56Z","related":["UBUNTU-CVE-2024-25742","UBUNTU-CVE-2024-35984","UBUNTU-CVE-2024-35990","UBUNTU-CVE-2024-35992","UBUNTU-CVE-2024-35997","UBUNTU-CVE-2024-36008","UBUNTU-CVE-2024-36016"],"upstream":["CVE-2024-35992","UBUNTU-CVE-2024-35992"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-6921-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-35992"}],"affected":[{"package":{"name":"linux","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/linux?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.8.0-39.39"}]}],"versions":["6.5.0-9.9","6.6.0-14.14","6.8.0-11.11","6.8.0-20.20","6.8.0-22.22","6.8.0-28.28","6.8.0-31.31","6.8.0-35.35","6.8.0-36.36","6.8.0-38.38"],"ecosystem_specific":{"binaries":[{"binary_version":"6.8.0-39.39","binary_name":"linux-buildinfo-6.8.0-39-generic"},{"binary_version":"6.8.0-39.39","binary_name":"linux-buildinfo-6.8.0-39-generic-64k"},{"binary_version":"6.8.0-39.39","binary_name":"linux-cloud-tools-6.8.0-39"},{"binary_version":"6.8.0-39.39","binary_name":"linux-cloud-tools-6.8.0-39-generic"},{"binary_version":"6.8.0-39.39","binary_name":"linux-cloud-tools-common"},{"binary_version":"6.8.0-39.39","binary_name":"linux-headers-6.8.0-39"},{"binary_version":"6.8.0-39.39","binary_name":"linux-headers-6.8.0-39-generic"},{"binary_version":"6.8.0-39.39","binary_name":"linux-headers-6.8.0-39-generic-64k"},{"binary_version":"6.8.0-39.39","binary_name":"linux-image-6.8.0-39-generic"},{"binary_version":"6.8.0-39.39","binary_name":"linux-image-unsigned-6.8.0-39-generic"},{"binary_version":"6.8.0-39.39","binary_name":"linux-image-unsigned-6.8.0-39-generic-64k"},{"binary_version":"6.8.0-39.39","binary_name":"linux-lib-rust-6.8.0-39-generic"},{"binary_version":"6.8.0-39.39","binary_name":"linux-modules-6.8.0-39-generic"},{"binary_version":"6.8.0-39.39","binary_name":"linux-modules-6.8.0-39-generic-64k"},{"binary_version":"6.8.0-39.39","binary_name":"linux-modules-extra-6.8.0-39-generic"},{"binary_version":"6.8.0-39.39","binary_name":"linux-modules-ipu6-6.8.0-39-generic"},{"binary_version":"6.8.0-39.39","binary_name":"linux-modules-iwlwifi-6.8.0-39-generic"},{"binary_version":"6.8.0-39.39","binary_name":"linux-modules-usbio-6.8.0-39-generic"},{"binary_version":"6.8.0-39.39","binary_name":"linux-source-6.8.0"},{"binary_version":"6.8.0-39.39","binary_name":"linux-tools-6.8.0-39"},{"binary_version":"6.8.0-39.39","binary_name":"linux-tools-6.8.0-39-generic"},{"binary_version":"6.8.0-39.39","binary_name":"linux-tools-6.8.0-39-generic-64k"},{"binary_version":"6.8.0-39.39","binary_name":"linux-tools-common"},{"binary_version":"6.8.0-39.39","binary_name":"linux-tools-host"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6921-1.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-35992"}]}}},{"package":{"name":"linux-aws","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/linux-aws?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.8.0-1012.13"}]}],"versions":["6.5.0-1008.8","6.6.0-1001.1","6.8.0-1001.1","6.8.0-1006.6","6.8.0-1008.8","6.8.0-1009.9","6.8.0-1010.10","6.8.0-1011.12"],"ecosystem_specific":{"binaries":[{"binary_version":"6.8.0-1012.13","binary_name":"linux-aws-cloud-tools-6.8.0-1012"},{"binary_version":"6.8.0-1012.13","binary_name":"linux-aws-headers-6.8.0-1012"},{"binary_version":"6.8.0-1012.13","binary_name":"linux-aws-tools-6.8.0-1012"},{"binary_version":"6.8.0-1012.13","binary_name":"linux-buildinfo-6.8.0-1012-aws"},{"binary_version":"6.8.0-1012.13","binary_name":"linux-cloud-tools-6.8.0-1012-aws"},{"binary_version":"6.8.0-1012.13","binary_name":"linux-headers-6.8.0-1012-aws"},{"binary_version":"6.8.0-1012.13","binary_name":"linux-image-unsigned-6.8.0-1012-aws"},{"binary_version":"6.8.0-1012.13","binary_name":"linux-modules-6.8.0-1012-aws"},{"binary_version":"6.8.0-1012.13","binary_name":"linux-modules-extra-6.8.0-1012-aws"},{"binary_version":"6.8.0-1012.13","binary_name":"linux-tools-6.8.0-1012-aws"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6921-1.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-35992"}]}}},{"package":{"name":"linux-gcp","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/linux-gcp?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.8.0-1011.12"}]}],"versions":["6.5.0-1007.7","6.6.0-1001.1","6.8.0-1002.2","6.8.0-1005.5","6.8.0-1006.6","6.8.0-1007.7","6.8.0-1008.9","6.8.0-1009.10","6.8.0-1010.11"],"ecosystem_specific":{"binaries":[{"binary_version":"6.8.0-1011.12","binary_name":"linux-buildinfo-6.8.0-1011-gcp"},{"binary_version":"6.8.0-1011.12","binary_name":"linux-gcp-headers-6.8.0-1011"},{"binary_version":"6.8.0-1011.12","binary_name":"linux-gcp-tools-6.8.0-1011"},{"binary_version":"6.8.0-1011.12","binary_name":"linux-headers-6.8.0-1011-gcp"},{"binary_version":"6.8.0-1011.12","binary_name":"linux-image-unsigned-6.8.0-1011-gcp"},{"binary_version":"6.8.0-1011.12","binary_name":"linux-modules-6.8.0-1011-gcp"},{"binary_version":"6.8.0-1011.12","binary_name":"linux-modules-extra-6.8.0-1011-gcp"},{"binary_version":"6.8.0-1011.12","binary_name":"linux-modules-iwlwifi-6.8.0-1011-gcp"},{"binary_version":"6.8.0-1011.12","binary_name":"linux-tools-6.8.0-1011-gcp"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6921-1.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"id":"CVE-2024-35992","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]}]}}},{"package":{"name":"linux-gke","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/linux-gke?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.8.0-1007.10"}]}],"versions":["6.8.0-1003.5","6.8.0-1004.7","6.8.0-1005.8","6.8.0-1006.9"],"ecosystem_specific":{"binaries":[{"binary_version":"6.8.0-1007.10","binary_name":"linux-buildinfo-6.8.0-1007-gke"},{"binary_version":"6.8.0-1007.10","binary_name":"linux-gke-headers-6.8.0-1007"},{"binary_version":"6.8.0-1007.10","binary_name":"linux-gke-tools-6.8.0-1007"},{"binary_version":"6.8.0-1007.10","binary_name":"linux-headers-6.8.0-1007-gke"},{"binary_version":"6.8.0-1007.10","binary_name":"linux-image-unsigned-6.8.0-1007-gke"},{"binary_version":"6.8.0-1007.10","binary_name":"linux-modules-6.8.0-1007-gke"},{"binary_version":"6.8.0-1007.10","binary_name":"linux-modules-extra-6.8.0-1007-gke"},{"binary_version":"6.8.0-1007.10","binary_name":"linux-modules-iwlwifi-6.8.0-1007-gke"},{"binary_version":"6.8.0-1007.10","binary_name":"linux-tools-6.8.0-1007-gke"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6921-1.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-35992"}]}}},{"package":{"name":"linux-ibm","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/linux-ibm?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.8.0-1009.9"}]}],"versions":["6.5.0-1009.9","6.8.0-1001.1","6.8.0-1003.3","6.8.0-1004.4","6.8.0-1005.5","6.8.0-1006.6","6.8.0-1007.7","6.8.0-1008.8"],"ecosystem_specific":{"binaries":[{"binary_version":"6.8.0-1009.9","binary_name":"linux-buildinfo-6.8.0-1009-ibm"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-headers-6.8.0-1009-ibm"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-ibm-cloud-tools-common"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-ibm-headers-6.8.0-1009"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-ibm-source-6.8.0"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-ibm-tools-6.8.0-1009"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-image-unsigned-6.8.0-1009-ibm"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-modules-6.8.0-1009-ibm"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-modules-extra-6.8.0-1009-ibm"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-modules-iwlwifi-6.8.0-1009-ibm"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-tools-6.8.0-1009-ibm"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6921-1.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"id":"CVE-2024-35992","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]}]}}},{"package":{"name":"linux-nvidia","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/linux-nvidia?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.8.0-1010.10"}]}],"versions":["6.8.0-1007.7","6.8.0-1008.8","6.8.0-1009.9"],"ecosystem_specific":{"binaries":[{"binary_version":"6.8.0-1010.10","binary_name":"linux-buildinfo-6.8.0-1010-nvidia"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-buildinfo-6.8.0-1010-nvidia-64k"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-headers-6.8.0-1010-nvidia"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-headers-6.8.0-1010-nvidia-64k"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-image-unsigned-6.8.0-1010-nvidia"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-image-unsigned-6.8.0-1010-nvidia-64k"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-modules-6.8.0-1010-nvidia"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-modules-6.8.0-1010-nvidia-64k"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-modules-extra-6.8.0-1010-nvidia"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-modules-nvidia-fs-6.8.0-1010-nvidia"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-modules-nvidia-fs-6.8.0-1010-nvidia-64k"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-nvidia-headers-6.8.0-1010"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-nvidia-tools-6.8.0-1010"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-nvidia-tools-host"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-tools-6.8.0-1010-nvidia"},{"binary_version":"6.8.0-1010.10","binary_name":"linux-tools-6.8.0-1010-nvidia-64k"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6921-1.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"id":"CVE-2024-35992","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]}]}}},{"package":{"name":"linux-oem-6.8","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/linux-oem-6.8?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.8.0-1009.9"}]}],"versions":["6.8.0-1003.3","6.8.0-1004.4","6.8.0-1005.5","6.8.0-1006.6","6.8.0-1007.7","6.8.0-1008.8"],"ecosystem_specific":{"binaries":[{"binary_version":"6.8.0-1009.9","binary_name":"linux-buildinfo-6.8.0-1009-oem"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-headers-6.8.0-1009-oem"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-image-unsigned-6.8.0-1009-oem"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-modules-6.8.0-1009-oem"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-modules-ipu6-6.8.0-1009-oem"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-modules-iwlwifi-6.8.0-1009-oem"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-modules-usbio-6.8.0-1009-oem"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-oem-6.8-headers-6.8.0-1009"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-oem-6.8-tools-6.8.0-1009"},{"binary_version":"6.8.0-1009.9","binary_name":"linux-tools-6.8.0-1009-oem"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6921-1.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"id":"CVE-2024-35992","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]}]}}},{"package":{"name":"linux-raspi","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/linux-raspi?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.8.0-1008.8"}]}],"versions":["6.5.0-1005.7","6.7.0-1001.1","6.8.0-1001.1","6.8.0-1002.2","6.8.0-1003.3","6.8.0-1004.4","6.8.0-1005.5","6.8.0-1006.6","6.8.0-1007.7"],"ecosystem_specific":{"binaries":[{"binary_version":"6.8.0-1008.8","binary_name":"linux-buildinfo-6.8.0-1008-raspi"},{"binary_version":"6.8.0-1008.8","binary_name":"linux-headers-6.8.0-1008-raspi"},{"binary_version":"6.8.0-1008.8","binary_name":"linux-image-6.8.0-1008-raspi"},{"binary_version":"6.8.0-1008.8","binary_name":"linux-modules-6.8.0-1008-raspi"},{"binary_version":"6.8.0-1008.8","binary_name":"linux-raspi-headers-6.8.0-1008"},{"binary_version":"6.8.0-1008.8","binary_name":"linux-raspi-tools-6.8.0-1008"},{"binary_version":"6.8.0-1008.8","binary_name":"linux-tools-6.8.0-1008-raspi"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6921-1.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"id":"CVE-2024-35992","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]}]}}}],"schema_version":"1.7.5"}