Ubuntu update for linux

Published: 2021-02-10

Risk	Medium
Patch available	YES
Number of vulnerabilities	1
CVE-ID	CVE-2020-28374
CWE-ID	CWE-22
Exploitation vector	Network
Public exploit	N/A
Vulnerable software	Ubuntu Operating systems & Components / Operating system linux-image-virtual (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-server (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-powerpc64-smp (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-powerpc64-emb (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-powerpc-smp (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-powerpc-e500mc (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-powerpc-e500 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-omap (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-lowlatency-pae (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-lowlatency (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-highbank (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-generic-pae (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-generic-lpae (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-generic (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-3.13.0-184-powerpc64-smp (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-3.13.0-184-powerpc64-emb (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-3.13.0-184-powerpc-smp (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-3.13.0-184-powerpc-e500mc (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-3.13.0-184-powerpc-e500 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-3.13.0-184-lowlatency (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-3.13.0-184-generic-lpae (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-3.13.0-184-generic (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-raspi2-hwe-18.04 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-gkeop-5.3 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-gke-5.3 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-gke-5.0 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.3.0-70-lowlatency (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.3.0-70-generic (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.3.0-1040-gke (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.3.0-1037-raspi2 (Ubuntu package) Operating systems & Components / Operating system package or component linux-image-5.0.0-1051-gke (Ubuntu package) Operating systems & Components / Operating system package or component
Vendor	Canonical Ltd.

Security Bulletin

This security bulletin contains one medium risk vulnerability.

1) Path traversal

EUVDB-ID: #VU49914

Risk: Medium

CVSSv4.0: 6.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2020-28374

CWE-ID: CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Exploit availability: No

Description

The vulnerability allows a remote user to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences in drivers/target/target_core_xcopy.c in the Linux kernel. A remote user with access to iSCSI LUN can send a specially crafted XCOPY request and read or write arbitrary files on the system.

Mitigation

Update the affected package linux to the latest version.

Vulnerable software versions

Ubuntu: 14.04 - 18.04

linux-image-virtual (Ubuntu package): before 3.13.0.184.193

linux-image-server (Ubuntu package): before 3.13.0.184.193

linux-image-powerpc64-smp (Ubuntu package): before 3.13.0.184.193

linux-image-powerpc64-emb (Ubuntu package): before 3.13.0.184.193

linux-image-powerpc-smp (Ubuntu package): before 3.13.0.184.193

linux-image-powerpc-e500mc (Ubuntu package): before 3.13.0.184.193

linux-image-powerpc-e500 (Ubuntu package): before 3.13.0.184.193

linux-image-omap (Ubuntu package): before 3.13.0.184.193

linux-image-lowlatency-pae (Ubuntu package): before 3.13.0.184.193

linux-image-lowlatency (Ubuntu package): before 3.13.0.184.193

linux-image-highbank (Ubuntu package): before 3.13.0.184.193

linux-image-generic-pae (Ubuntu package): before 3.13.0.184.193

linux-image-generic-lpae (Ubuntu package): before 3.13.0.184.193

linux-image-generic (Ubuntu package): before 3.13.0.184.193

linux-image-3.13.0-184-powerpc64-smp (Ubuntu package): before 3.13.0-184.235

linux-image-3.13.0-184-powerpc64-emb (Ubuntu package): before 3.13.0-184.235

linux-image-3.13.0-184-powerpc-smp (Ubuntu package): before 3.13.0-184.235

linux-image-3.13.0-184-powerpc-e500mc (Ubuntu package): before 3.13.0-184.235

linux-image-3.13.0-184-powerpc-e500 (Ubuntu package): before 3.13.0-184.235

linux-image-3.13.0-184-lowlatency (Ubuntu package): before 3.13.0-184.235

linux-image-3.13.0-184-generic-lpae (Ubuntu package): before 3.13.0-184.235

linux-image-3.13.0-184-generic (Ubuntu package): before 3.13.0-184.235

linux-image-raspi2-hwe-18.04 (Ubuntu package): before 5.3.0.1037.26

linux-image-gkeop-5.3 (Ubuntu package): before 5.3.0.70.127

linux-image-gke-5.3 (Ubuntu package): before 5.3.0.1040.23

linux-image-gke-5.0 (Ubuntu package): before 5.0.0.1051.35

linux-image-5.3.0-70-lowlatency (Ubuntu package): before 5.3.0-70.66

linux-image-5.3.0-70-generic (Ubuntu package): before 5.3.0-70.66

linux-image-5.3.0-1040-gke (Ubuntu package): before 5.3.0-1040.43

linux-image-5.3.0-1037-raspi2 (Ubuntu package): before 5.3.0-1037.39

linux-image-5.0.0-1051-gke (Ubuntu package): before 5.0.0-1051.53

CPE2.3

External links

https://ubuntu.com/security/notices/USN-4713-2

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.