USN-5267-1 fixed vulnerabilities in the Linux kernel. This update provides the corresponding updates for the Linux kernel for Raspberry Pi devices.
Original advisory details:
It was discovered that the Bluetooth subsystem in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-3640)
Likang Luo discovered that a race condition existed in the Bluetooth subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-3752)
Luo Likang discovered that the FireDTV Firewire driver in the Linux kernel did not properly perform bounds checking in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-42739)
{ "availability": "No subscription required", "binaries": [ { "linux-image-5.4.0-1052-raspi": "5.4.0-1052.58~18.04.1", "linux-tools-5.4.0-1052-raspi": "5.4.0-1052.58~18.04.1", "linux-raspi-5.4-headers-5.4.0-1052": "5.4.0-1052.58~18.04.1", "linux-modules-5.4.0-1052-raspi": "5.4.0-1052.58~18.04.1", "linux-raspi-5.4-tools-5.4.0-1052": "5.4.0-1052.58~18.04.1", "linux-image-5.4.0-1052-raspi-dbgsym": "5.4.0-1052.58~18.04.1", "linux-headers-5.4.0-1052-raspi": "5.4.0-1052.58~18.04.1", "linux-buildinfo-5.4.0-1052-raspi": "5.4.0-1052.58~18.04.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "linux-image-5.4.0-1052-raspi": "5.4.0-1052.58", "linux-raspi-tools-5.4.0-1052": "5.4.0-1052.58", "linux-raspi-headers-5.4.0-1052": "5.4.0-1052.58", "linux-tools-5.4.0-1052-raspi": "5.4.0-1052.58", "linux-modules-5.4.0-1052-raspi": "5.4.0-1052.58", "linux-image-5.4.0-1052-raspi-dbgsym": "5.4.0-1052.58", "linux-headers-5.4.0-1052-raspi": "5.4.0-1052.58", "linux-buildinfo-5.4.0-1052-raspi": "5.4.0-1052.58" } ] }