{"id":"USN-6979-1","summary":"linux-raspi-5.4 vulnerabilities","details":"Several security issues were discovered in the Linux kernel.\nAn attacker could possibly use these to compromise the system.\nThis update corrects flaws in the following subsystems:\n  - ARM64 architecture;\n  - M68K architecture;\n  - User-Mode Linux (UML);\n  - x86 architecture;\n  - Accessibility subsystem;\n  - Character device driver;\n  - Clock framework and drivers;\n  - CPU frequency scaling framework;\n  - Hardware crypto device drivers;\n  - Buffer Sharing and Synchronization framework;\n  - FireWire subsystem;\n  - ARM SCMI message protocol;\n  - GPU drivers;\n  - HW tracing;\n  - InfiniBand drivers;\n  - Macintosh device drivers;\n  - Multiple devices driver;\n  - Media drivers;\n  - Network drivers;\n  - Pin controllers subsystem;\n  - S/390 drivers;\n  - SCSI drivers;\n  - SoundWire subsystem;\n  - Greybus lights staging drivers;\n  - TTY drivers;\n  - Framebuffer layer;\n  - Virtio drivers;\n  - 9P distributed file system;\n  - eCrypt file system;\n  - EROFS file system;\n  - Ext4 file system;\n  - F2FS file system;\n  - JFFS2 file system;\n  - Network file system client;\n  - NILFS2 file system;\n  - SMB network file system;\n  - Mellanox drivers;\n  - Kernel debugger infrastructure;\n  - IRQ subsystem;\n  - Tracing infrastructure;\n  - Dynamic debug library;\n  - 9P file system network protocol;\n  - Bluetooth subsystem;\n  - Networking core;\n  - IPv4 networking;\n  - IPv6 networking;\n  - Netfilter;\n  - NET/ROM layer;\n  - NFC subsystem;\n  - NSH protocol;\n  - Open vSwitch;\n  - Phonet protocol;\n  - TIPC protocol;\n  - TLS protocol;\n  - Unix domain sockets;\n  - Wireless networking;\n  - eXpress Data Path;\n  - XFRM subsystem;\n  - ALSA framework;\n(CVE-2022-48674, CVE-2024-36016, CVE-2024-36934, CVE-2024-39471,\nCVE-2024-38381, CVE-2024-26584, CVE-2024-38635, CVE-2024-36902,\nCVE-2022-48772, CVE-2024-38600, CVE-2024-39475, CVE-2024-26886,\nCVE-2024-39301, CVE-2024-36919, CVE-2024-35947, CVE-2024-38559,\nCVE-2024-38637, CVE-2024-36014, CVE-2024-36960, CVE-2024-35976,\nCVE-2024-27399, CVE-2024-38607, CVE-2024-38558, CVE-2024-38578,\nCVE-2024-36015, CVE-2024-39488, CVE-2024-38780, CVE-2024-36940,\nCVE-2024-38621, CVE-2024-38659, CVE-2024-26585, CVE-2024-27019,\nCVE-2024-38615, CVE-2024-38661, CVE-2024-37353, CVE-2024-38549,\nCVE-2024-38579, CVE-2024-27401, CVE-2024-38589, CVE-2024-38565,\nCVE-2022-48655, CVE-2024-38567, CVE-2024-38587, CVE-2024-37356,\nCVE-2024-36959, CVE-2024-39493, CVE-2024-38627, CVE-2024-36939,\nCVE-2024-31076, CVE-2024-36971, CVE-2024-38560, CVE-2024-39467,\nCVE-2024-36286, CVE-2024-39480, CVE-2024-26907, CVE-2024-36017,\nCVE-2024-38634, CVE-2023-52585, CVE-2024-38582, CVE-2023-52752,\nCVE-2024-38583, CVE-2024-38618, CVE-2024-36946, CVE-2024-39292,\nCVE-2024-36950, CVE-2024-36886, CVE-2024-39489, CVE-2024-36933,\nCVE-2024-27398, CVE-2023-52434, CVE-2024-36905, CVE-2024-38596,\nCVE-2021-47131, CVE-2024-38601, CVE-2024-38552, CVE-2024-26583,\nCVE-2024-38633, CVE-2024-36964, CVE-2024-39276, CVE-2024-36270,\nCVE-2024-38613, CVE-2024-36904, CVE-2024-38598, CVE-2024-38612,\nCVE-2024-36941, CVE-2024-36954, CVE-2024-38599, CVE-2024-36883,\nCVE-2023-52882, CVE-2024-33621)\n","modified":"2026-04-24T10:02:27.736705292Z","published":"2024-08-22T11:54:24Z","related":["UBUNTU-CVE-2021-47131","UBUNTU-CVE-2022-48655","UBUNTU-CVE-2022-48674","UBUNTU-CVE-2022-48772","UBUNTU-CVE-2023-52434","UBUNTU-CVE-2023-52585","UBUNTU-CVE-2023-52752","UBUNTU-CVE-2023-52882","UBUNTU-CVE-2024-26583","UBUNTU-CVE-2024-26584","UBUNTU-CVE-2024-26585","UBUNTU-CVE-2024-26886","UBUNTU-CVE-2024-26907","UBUNTU-CVE-2024-27019","UBUNTU-CVE-2024-27398","UBUNTU-CVE-2024-27399","UBUNTU-CVE-2024-27401","UBUNTU-CVE-2024-31076","UBUNTU-CVE-2024-33621","UBUNTU-CVE-2024-35947","UBUNTU-CVE-2024-35976","UBUNTU-CVE-2024-36014","UBUNTU-CVE-2024-36015","UBUNTU-CVE-2024-36016","UBUNTU-CVE-2024-36017","UBUNTU-CVE-2024-36270","UBUNTU-CVE-2024-36286","UBUNTU-CVE-2024-36883","UBUNTU-CVE-2024-36886","UBUNTU-CVE-2024-36902","UBUNTU-CVE-2024-36904","UBUNTU-CVE-2024-36905","UBUNTU-CVE-2024-36919","UBUNTU-CVE-2024-36933","UBUNTU-CVE-2024-36934","UBUNTU-CVE-2024-36939","UBUNTU-CVE-2024-36940","UBUNTU-CVE-2024-36941","UBUNTU-CVE-2024-36946","UBUNTU-CVE-2024-36950","UBUNTU-CVE-2024-36954","UBUNTU-CVE-2024-36959","UBUNTU-CVE-2024-36960","UBUNTU-CVE-2024-36964","UBUNTU-CVE-2024-36971","UBUNTU-CVE-2024-37353","UBUNTU-CVE-2024-37356","UBUNTU-CVE-2024-38381","UBUNTU-CVE-2024-38549","UBUNTU-CVE-2024-38552","UBUNTU-CVE-2024-38558","UBUNTU-CVE-2024-38559","UBUNTU-CVE-2024-38560","UBUNTU-CVE-2024-38565","UBUNTU-CVE-2024-38567","UBUNTU-CVE-2024-38578","UBUNTU-CVE-2024-38579","UBUNTU-CVE-2024-38582","UBUNTU-CVE-2024-38583","UBUNTU-CVE-2024-38587","UBUNTU-CVE-2024-38589","UBUNTU-CVE-2024-38596","UBUNTU-CVE-2024-38598","UBUNTU-CVE-2024-38599","UBUNTU-CVE-2024-38600","UBUNTU-CVE-2024-38601","UBUNTU-CVE-2024-38607","UBUNTU-CVE-2024-38612","UBUNTU-CVE-2024-38613","UBUNTU-CVE-2024-38615","UBUNTU-CVE-2024-38618","UBUNTU-CVE-2024-38621","UBUNTU-CVE-2024-38627","UBUNTU-CVE-2024-38633","UBUNTU-CVE-2024-38634","UBUNTU-CVE-2024-38635","UBUNTU-CVE-2024-38637","UBUNTU-CVE-2024-38659","UBUNTU-CVE-2024-38661","UBUNTU-CVE-2024-38780","UBUNTU-CVE-2024-39276","UBUNTU-CVE-2024-39292","UBUNTU-CVE-2024-39301","UBUNTU-CVE-2024-39467","UBUNTU-CVE-2024-39471","UBUNTU-CVE-2024-39475","UBUNTU-CVE-2024-39480","UBUNTU-CVE-2024-39488","UBUNTU-CVE-2024-39489","UBUNTU-CVE-2024-39493"],"upstream":["CVE-2024-26886","CVE-2024-37353","CVE-2024-38381","CVE-2024-38587","CVE-2024-39475","CVE-2024-39493","UBUNTU-CVE-2024-26886","UBUNTU-CVE-2024-37353","UBUNTU-CVE-2024-38381","UBUNTU-CVE-2024-38587","UBUNTU-CVE-2024-39475","UBUNTU-CVE-2024-39493"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-6979-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-26886"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-37353"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-38381"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-38587"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-39475"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-39493"}],"affected":[{"package":{"name":"linux-raspi-5.4","ecosystem":"Ubuntu:Pro:18.04:LTS","purl":"pkg:deb/ubuntu/linux-raspi-5.4@5.4.0-1114.126~18.04.1?arch=source&distro=esm-infra/bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.4.0-1114.126~18.04.1"}]}],"versions":["5.4.0-1013.13~18.04.1","5.4.0-1015.15~18.04.1","5.4.0-1016.17~18.04.1","5.4.0-1018.20~18.04.1","5.4.0-1019.21~18.04.1","5.4.0-1021.24~18.04.1","5.4.0-1022.25~18.04.1","5.4.0-1023.26~18.04.1","5.4.0-1025.28~18.04.1","5.4.0-1026.29~18.04.1","5.4.0-1028.31~18.04.1","5.4.0-1029.32~18.04.1","5.4.0-1030.33~18.04.1","5.4.0-1032.35~18.04.1","5.4.0-1033.36~18.04.1","5.4.0-1034.37~18.04.1","5.4.0-1035.38~18.04.1","5.4.0-1036.39~18.04.1","5.4.0-1038.41~18.04.1","5.4.0-1041.45~18.04.1","5.4.0-1042.46~18.04.3","5.4.0-1043.47~18.04.1","5.4.0-1044.48~18.04.1","5.4.0-1045.49~18.04.1","5.4.0-1046.50~18.04.1","5.4.0-1047.52~18.04.1","5.4.0-1048.53~18.04.1","5.4.0-1050.56~18.04.1","5.4.0-1052.58~18.04.1","5.4.0-1053.60~18.04.1","5.4.0-1055.62~18.04.1","5.4.0-1056.63~18.04.1","5.4.0-1058.65~18.04.1","5.4.0-1059.66~18.04.1","5.4.0-1060.68~18.04.1","5.4.0-1062.70~18.04.1","5.4.0-1065.75~18.04.1","5.4.0-1066.76~18.04.1","5.4.0-1068.78~18.04.1","5.4.0-1069.79~18.04.1","5.4.0-1070.80~18.04.1","5.4.0-1071.81~18.04.1","5.4.0-1073.84~18.04.1","5.4.0-1074.85~18.04.1","5.4.0-1077.88~18.04.2","5.4.0-1078.89~18.04.1","5.4.0-1079.90~18.04.1","5.4.0-1080.91~18.04.1","5.4.0-1081.92~18.04.1","5.4.0-1082.93~18.04.1","5.4.0-1083.94~18.04.1","5.4.0-1084.95~18.04.1","5.4.0-1085.96~18.04.1","5.4.0-1086.97~18.04.1","5.4.0-1088.99~18.04.1","5.4.0-1089.100~18.04.1","5.4.0-1090.101~18.04.1","5.4.0-1091.102~18.04.1","5.4.0-1092.103~18.04.1","5.4.0-1093.104~18.04.1","5.4.0-1094.105~18.04.1","5.4.0-1095.106~18.04.1","5.4.0-1096.107~18.04.1","5.4.0-1097.109~18.04.2","5.4.0-1098.110~18.04.2","5.4.0-1100.112~18.04.1","5.4.0-1101.113~18.04.1","5.4.0-1102.114~18.04.1","5.4.0-1103.115~18.04.1","5.4.0-1104.116~18.04.1","5.4.0-1105.117~18.04.1","5.4.0-1106.118~18.04.1","5.4.0-1107.119~18.04.1","5.4.0-1108.120~18.04.1","5.4.0-1109.121~18.04.1","5.4.0-1110.122~18.04.1","5.4.0-1111.123~18.04.1","5.4.0-1112.124~18.04.1"],"ecosystem_specific":{"binaries":[{"binary_name":"linux-buildinfo-5.4.0-1114-raspi","binary_version":"5.4.0-1114.126~18.04.1"},{"binary_name":"linux-headers-5.4.0-1114-raspi","binary_version":"5.4.0-1114.126~18.04.1"},{"binary_name":"linux-image-5.4.0-1114-raspi","binary_version":"5.4.0-1114.126~18.04.1"},{"binary_name":"linux-modules-5.4.0-1114-raspi","binary_version":"5.4.0-1114.126~18.04.1"},{"binary_name":"linux-raspi-5.4-headers-5.4.0-1114","binary_version":"5.4.0-1114.126~18.04.1"},{"binary_name":"linux-raspi-5.4-tools-5.4.0-1114","binary_version":"5.4.0-1114.126~18.04.1"},{"binary_name":"linux-tools-5.4.0-1114-raspi","binary_version":"5.4.0-1114.126~18.04.1"}],"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro"},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:Pro:18.04:LTS","cves":[{"id":"CVE-2024-26886","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2024-37353","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2024-38381","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2024-38587","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2024-39475","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2024-39493","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6979-1.json"}}],"schema_version":"1.7.5"}