LSN-0071-1

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/notices/LSN-0071-1

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/lsn/LSN-0071-1.json

JSON Data

https://api.test.osv.dev/v1/vulns/LSN-0071-1

Upstream

CVE-2020-14386

UBUNTU-CVE-2020-14386

Published

2020-09-10T07:49:49Z

Modified

2025-12-15T10:10:24.022034Z

Summary

Kernel Live Patch Security Notice

Details

Or Cohen discovered that the AF_PACKET implementation in the Linux kernel did not properly perform bounds checking in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2020-14386)

References

Affected packages

Ubuntu:Pro:18.04:LTS / linux-aws

Package

Name: linux-aws
Purl: pkg:deb/ubuntu/linux-aws@4.15.0-1082.86?arch=source&distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-1082.86

Affected versions

4.*

4.15.0-1001.1

4.15.0-1003.3

4.15.0-1005.5

4.15.0-1006.6

4.15.0-1007.7

4.15.0-1009.9

4.15.0-1010.10

4.15.0-1011.11

4.15.0-1016.16

4.15.0-1017.17

4.15.0-1019.19

4.15.0-1020.20

4.15.0-1021.21

4.15.0-1023.23

4.15.0-1025.25

4.15.0-1027.27

4.15.0-1029.30

4.15.0-1031.33

4.15.0-1032.34

4.15.0-1033.35

4.15.0-1034.36

4.15.0-1035.37

4.15.0-1037.39

4.15.0-1039.41

4.15.0-1040.42

4.15.0-1041.43

4.15.0-1043.45

4.15.0-1044.46

4.15.0-1045.47

4.15.0-1047.49

4.15.0-1048.50

4.15.0-1050.52

4.15.0-1051.53

4.15.0-1052.54

4.15.0-1054.56

4.15.0-1056.58

4.15.0-1057.59

4.15.0-1058.60

4.15.0-1060.62

4.15.0-1063.67

4.15.0-1065.69

4.15.0-1066.70

4.15.0-1067.71

4.15.0-1073.77

4.15.0-1076.80

4.15.0-1077.81

4.15.0-1079.83

4.15.0-1080.84

Ecosystem specific

{
    "module_name_regex": "lkp_Ubuntu_4_15_0[_|\\d]+_aws_(\\d+)",
    "availability": "Livepatch subscription required",
    "module_version": "71"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/lsn/LSN-0071-1.json"

Ubuntu:Pro:18.04:LTS / linux

Package

Name: linux
Purl: pkg:deb/ubuntu/linux@4.15.0-117.118?arch=source&distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-117.118

Affected versions

4.*

4.13.0-16.19

4.13.0-17.20

4.13.0-25.29

4.13.0-32.35

4.15.0-10.11

4.15.0-12.13

4.15.0-13.14

4.15.0-15.16

4.15.0-19.20

4.15.0-20.21

4.15.0-22.24

4.15.0-23.25

4.15.0-24.26

4.15.0-29.31

4.15.0-30.32

4.15.0-32.35

4.15.0-33.36

4.15.0-34.37

4.15.0-36.39

4.15.0-38.41

4.15.0-39.42

4.15.0-42.45

4.15.0-43.46

4.15.0-44.47

4.15.0-45.48

4.15.0-46.49

4.15.0-47.50

4.15.0-48.51

4.15.0-50.54

4.15.0-51.55

4.15.0-52.56

4.15.0-54.58

4.15.0-55.60

4.15.0-58.64

4.15.0-60.67

4.15.0-62.69

4.15.0-64.73

4.15.0-65.74

4.15.0-66.75

4.15.0-69.78

4.15.0-70.79

4.15.0-72.81

4.15.0-74.84

4.15.0-76.86

4.15.0-88.88

4.15.0-91.92

4.15.0-96.97

4.15.0-99.100

4.15.0-101.102

4.15.0-106.107

4.15.0-108.109

4.15.0-109.110

4.15.0-111.112

4.15.0-112.113

4.15.0-115.116

Ecosystem specific

{
    "module_name_regex": "lkp_Ubuntu_4_15_0[_|\\d]+_(?:generic|lowlatency)_(\\d+)",
    "availability": "Livepatch subscription required",
    "module_version": "71"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/lsn/LSN-0071-1.json"

Ubuntu:Pro:18.04:LTS / linux-oem

Package

Name: linux-oem
Purl: pkg:deb/ubuntu/linux-oem@4.15.0-1096.106?arch=source&distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-1096.106

Affected versions

4.*

4.15.0-1002.3

4.15.0-1004.5

4.15.0-1006.9

4.15.0-1008.11

4.15.0-1009.12

4.15.0-1012.15

4.15.0-1013.16

4.15.0-1015.18

4.15.0-1017.20

4.15.0-1018.21

4.15.0-1021.24

4.15.0-1024.29

4.15.0-1026.31

4.15.0-1028.33

4.15.0-1030.35

4.15.0-1033.38

4.15.0-1034.39

4.15.0-1035.40

4.15.0-1036.41

4.15.0-1038.43

4.15.0-1039.44

4.15.0-1043.48

4.15.0-1045.50

4.15.0-1050.57

4.15.0-1056.65

4.15.0-1057.66

4.15.0-1059.68

4.15.0-1063.72

4.15.0-1064.73

4.15.0-1065.75

4.15.0-1066.76

4.15.0-1067.77

4.15.0-1069.79

4.15.0-1073.83

4.15.0-1076.86

4.15.0-1079.89

4.15.0-1080.90

4.15.0-1081.91

4.15.0-1087.97

4.15.0-1090.100

4.15.0-1091.101

4.15.0-1093.103

4.15.0-1094.104

Ecosystem specific

{
    "module_name_regex": "lkp_Ubuntu_4_15_0[_|\\d]+_oem_(\\d+)",
    "availability": "Livepatch subscription required",
    "module_version": "71"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/lsn/LSN-0071-1.json"