It was discovered that the Traffic-Control Index (TCINDEX) implementation in the Linux kernel did not properly perform filter deactivation in some situations. A local attacker could possibly use this to gain elevated privileges. Please note that with the fix for this CVE, kernel support for the TCINDEX classifier has been removed.
{ "availability": "No subscription required", "binaries": [ { "linux-buildinfo-5.4.0-1084-raspi": "5.4.0-1084.95~18.04.1", "linux-raspi-5.4-headers-5.4.0-1084": "5.4.0-1084.95~18.04.1", "linux-tools-5.4.0-1084-raspi": "5.4.0-1084.95~18.04.1", "linux-image-5.4.0-1084-raspi": "5.4.0-1084.95~18.04.1", "linux-raspi-5.4-tools-5.4.0-1084": "5.4.0-1084.95~18.04.1", "linux-headers-5.4.0-1084-raspi": "5.4.0-1084.95~18.04.1", "linux-modules-5.4.0-1084-raspi": "5.4.0-1084.95~18.04.1", "linux-image-5.4.0-1084-raspi-dbgsym": "5.4.0-1084.95~18.04.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "linux-modules-4.15.0-1131-raspi2": "4.15.0-1131.139", "linux-image-4.15.0-1131-raspi2-dbgsym": "4.15.0-1131.139", "linux-buildinfo-4.15.0-1131-raspi2": "4.15.0-1131.139", "linux-tools-4.15.0-1131-raspi2": "4.15.0-1131.139", "linux-headers-4.15.0-1131-raspi2": "4.15.0-1131.139", "linux-raspi2-headers-4.15.0-1131": "4.15.0-1131.139", "linux-image-4.15.0-1131-raspi2": "4.15.0-1131.139", "linux-raspi2-tools-4.15.0-1131": "4.15.0-1131.139" } ] }
{ "availability": "No subscription required", "binaries": [ { "linux-buildinfo-5.4.0-1084-raspi": "5.4.0-1084.95", "linux-headers-5.4.0-1084-raspi": "5.4.0-1084.95", "linux-tools-5.4.0-1084-raspi": "5.4.0-1084.95", "linux-raspi-tools-5.4.0-1084": "5.4.0-1084.95", "linux-image-5.4.0-1084-raspi": "5.4.0-1084.95", "linux-raspi-headers-5.4.0-1084": "5.4.0-1084.95", "linux-modules-5.4.0-1084-raspi": "5.4.0-1084.95", "linux-image-5.4.0-1084-raspi-dbgsym": "5.4.0-1084.95" } ] }