In the Linux kernel before 5.4.2, the iouring feature leads to requests that inadvertently have UID 0 and full capabilities, aka CID-181e448d8709. This is related to fs/io-wq.c, fs/iouring.c, and net/socket.c. For example, an attacker can bypass intended restrictions on adding an IPv4 address to the loopback interface. This occurs because IORINGOPSENDMSG operations, although requested in the context of an unprivileged user, are sometimes performed by a kernel worker thread without considering that context.
{ "availability": "No subscription required", "binaries": [ { "binary_name": "linux-azure-5.3-cloud-tools-5.3.0-1013", "binary_version": "5.3.0-1013.14~18.04.1" }, { "binary_name": "linux-azure-5.3-headers-5.3.0-1013", "binary_version": "5.3.0-1013.14~18.04.1" }, { "binary_name": "linux-azure-5.3-tools-5.3.0-1013", "binary_version": "5.3.0-1013.14~18.04.1" }, { "binary_name": "linux-buildinfo-5.3.0-1013-azure", "binary_version": "5.3.0-1013.14~18.04.1" }, { "binary_name": "linux-cloud-tools-5.3.0-1013-azure", "binary_version": "5.3.0-1013.14~18.04.1" }, { "binary_name": "linux-headers-5.3.0-1013-azure", "binary_version": "5.3.0-1013.14~18.04.1" }, { "binary_name": "linux-image-unsigned-5.3.0-1013-azure", "binary_version": "5.3.0-1013.14~18.04.1" }, { "binary_name": "linux-image-unsigned-5.3.0-1013-azure-dbgsym", "binary_version": "5.3.0-1013.14~18.04.1" }, { "binary_name": "linux-modules-5.3.0-1013-azure", "binary_version": "5.3.0-1013.14~18.04.1" }, { "binary_name": "linux-modules-extra-5.3.0-1013-azure", "binary_version": "5.3.0-1013.14~18.04.1" }, { "binary_name": "linux-tools-5.3.0-1013-azure", "binary_version": "5.3.0-1013.14~18.04.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "linux-buildinfo-5.3.0-1012-gcp", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-gcp-5.3-headers-5.3.0-1012", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-gcp-5.3-tools-5.3.0-1012", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-headers-5.3.0-1012-gcp", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-image-unsigned-5.3.0-1012-gcp", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-image-unsigned-5.3.0-1012-gcp-dbgsym", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-modules-5.3.0-1012-gcp", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-modules-extra-5.3.0-1012-gcp", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-tools-5.3.0-1012-gcp", "binary_version": "5.3.0-1012.13~18.04.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "linux-buildinfo-5.3.0-1012-gke", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-gke-5.3-headers-5.3.0-1012", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-gke-5.3-tools-5.3.0-1012", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-headers-5.3.0-1012-gke", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-image-unsigned-5.3.0-1012-gke", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-image-unsigned-5.3.0-1012-gke-dbgsym", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-modules-5.3.0-1012-gke", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-modules-extra-5.3.0-1012-gke", "binary_version": "5.3.0-1012.13~18.04.1" }, { "binary_name": "linux-tools-5.3.0-1012-gke", "binary_version": "5.3.0-1012.13~18.04.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "block-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "block-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "crypto-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "crypto-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "dasd-extra-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "dasd-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "fat-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "fat-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "fb-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "firewire-core-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "floppy-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "fs-core-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "fs-core-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "fs-secondary-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "fs-secondary-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "input-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "input-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "ipmi-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "ipmi-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "kernel-image-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "kernel-image-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-buildinfo-5.3.0-40-generic", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-buildinfo-5.3.0-40-generic-lpae", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-buildinfo-5.3.0-40-lowlatency", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-cloud-tools-5.3.0-40-generic", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-cloud-tools-5.3.0-40-lowlatency", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-headers-5.3.0-40", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-headers-5.3.0-40-generic", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-headers-5.3.0-40-generic-lpae", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-headers-5.3.0-40-lowlatency", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-hwe-cloud-tools-5.3.0-40", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-hwe-tools-5.3.0-40", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-hwe-udebs-generic", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-hwe-udebs-generic-lpae", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-image-5.3.0-40-generic", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-image-5.3.0-40-generic-dbgsym", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-image-5.3.0-40-generic-lpae", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-image-5.3.0-40-generic-lpae-dbgsym", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-image-5.3.0-40-lowlatency", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-image-5.3.0-40-lowlatency-dbgsym", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-image-unsigned-5.3.0-40-generic", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-image-unsigned-5.3.0-40-generic-dbgsym", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-image-unsigned-5.3.0-40-lowlatency", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-image-unsigned-5.3.0-40-lowlatency-dbgsym", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-modules-5.3.0-40-generic", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-modules-5.3.0-40-generic-lpae", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-modules-5.3.0-40-lowlatency", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-modules-extra-5.3.0-40-generic", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-source-5.3.0", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-tools-5.3.0-40-generic", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-tools-5.3.0-40-generic-lpae", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "linux-tools-5.3.0-40-lowlatency", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "md-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "md-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "message-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "mouse-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "mouse-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "multipath-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "multipath-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "nfs-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "nfs-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "nic-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "nic-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "nic-pcmcia-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "nic-shared-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "nic-shared-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "nic-usb-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "nic-usb-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "parport-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "parport-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "pata-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "pcmcia-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "pcmcia-storage-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "plip-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "plip-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "ppp-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "ppp-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "sata-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "sata-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "scsi-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "scsi-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "serial-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "storage-core-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "storage-core-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "usb-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "usb-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "virtio-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "vlan-modules-5.3.0-40-generic-di", "binary_version": "5.3.0-40.32~18.04.1" }, { "binary_name": "vlan-modules-5.3.0-40-generic-lpae-di", "binary_version": "5.3.0-40.32~18.04.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "linux-buildinfo-5.3.0-1018-raspi2", "binary_version": "5.3.0-1018.20~18.04.1" }, { "binary_name": "linux-headers-5.3.0-1018-raspi2", "binary_version": "5.3.0-1018.20~18.04.1" }, { "binary_name": "linux-image-5.3.0-1018-raspi2", "binary_version": "5.3.0-1018.20~18.04.1" }, { "binary_name": "linux-image-5.3.0-1018-raspi2-dbgsym", "binary_version": "5.3.0-1018.20~18.04.1" }, { "binary_name": "linux-modules-5.3.0-1018-raspi2", "binary_version": "5.3.0-1018.20~18.04.1" }, { "binary_name": "linux-raspi2-5.3-headers-5.3.0-1018", "binary_version": "5.3.0-1018.20~18.04.1" }, { "binary_name": "linux-raspi2-5.3-tools-5.3.0-1018", "binary_version": "5.3.0-1018.20~18.04.1" }, { "binary_name": "linux-tools-5.3.0-1018-raspi2", "binary_version": "5.3.0-1018.20~18.04.1" } ] }