Ubuntu: (Multiple Advisories) (CVE-2024-44982): Linux kernel vulnerabilities
Description
In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails If the dpu_format_populate_layout() fails, then FB is prepared, but not cleaned up. This ends up leaking the pin_count on the GEM object and causes a splat during DRM file closure: msm_obj->pin_count WARNING: CPU: 2 PID: 569 at drivers/gpu/drm/msm/msm_gem.c:121 update_lru_locked+0xc4/0xcc [...] Call trace: update_lru_locked+0xc4/0xcc put_pages+0xac/0x100 msm_gem_free_object+0x138/0x180 drm_gem_object_free+0x1c/0x30 drm_gem_object_handle_put_unlocked+0x108/0x10c drm_gem_object_release_handle+0x58/0x70 idr_for_each+0x68/0xec drm_gem_release+0x28/0x40 drm_file_free+0x174/0x234 drm_release+0xb0/0x160 __fput+0xc0/0x2c8 __fput_sync+0x50/0x5c __arm64_sys_close+0x38/0x7c invoke_syscall+0x48/0x118 el0_svc_common.constprop.0+0x40/0xe0 do_el0_svc+0x1c/0x28 el0_svc+0x4c/0x120 el0t_64_sync_handler+0x100/0x12c el0t_64_sync+0x190/0x194 irq event stamp: 129818 hardirqs last enabled at (129817): [<ffffa5f6d953fcc0>] console_unlock+0x118/0x124 hardirqs last disabled at (129818): [<ffffa5f6da7dcf04>] el1_dbg+0x24/0x8c softirqs last enabled at (129808): [<ffffa5f6d94afc18>] handle_softirqs+0x4c8/0x4e8 softirqs last disabled at (129785): [<ffffa5f6d94105e4>] __do_softirq+0x14/0x20 Patchwork: https://patchwork.freedesktop.org/patch/600714/
Solution(s)
- ubuntu-upgrade-linux-image-5-15-0-1038-xilinx-zynqmp
- ubuntu-upgrade-linux-image-5-15-0-1055-gkeop
- ubuntu-upgrade-linux-image-5-15-0-1065-ibm
- ubuntu-upgrade-linux-image-5-15-0-1065-raspi
- ubuntu-upgrade-linux-image-5-15-0-1067-intel-iotg
- ubuntu-upgrade-linux-image-5-15-0-1067-nvidia
- ubuntu-upgrade-linux-image-5-15-0-1067-nvidia-lowlatency
- ubuntu-upgrade-linux-image-5-15-0-1069-gke
- ubuntu-upgrade-linux-image-5-15-0-1069-kvm
- ubuntu-upgrade-linux-image-5-15-0-1070-oracle
- ubuntu-upgrade-linux-image-5-15-0-1071-gcp
- ubuntu-upgrade-linux-image-5-15-0-1072-aws
- ubuntu-upgrade-linux-image-5-15-0-1075-azure
- ubuntu-upgrade-linux-image-5-15-0-125-generic
- ubuntu-upgrade-linux-image-5-15-0-125-generic-64k
- ubuntu-upgrade-linux-image-5-15-0-125-generic-lpae
- ubuntu-upgrade-linux-image-5-15-0-125-lowlatency
- ubuntu-upgrade-linux-image-5-15-0-125-lowlatency-64k
- ubuntu-upgrade-linux-image-6-8-0-1002-gkeop
- ubuntu-upgrade-linux-image-6-8-0-1015-gke
- ubuntu-upgrade-linux-image-6-8-0-1016-raspi
- ubuntu-upgrade-linux-image-6-8-0-1017-ibm
- ubuntu-upgrade-linux-image-6-8-0-1017-oracle
- ubuntu-upgrade-linux-image-6-8-0-1017-oracle-64k
- ubuntu-upgrade-linux-image-6-8-0-1018-oem
- ubuntu-upgrade-linux-image-6-8-0-1019-gcp
- ubuntu-upgrade-linux-image-6-8-0-1019-nvidia
- ubuntu-upgrade-linux-image-6-8-0-1019-nvidia-64k
- ubuntu-upgrade-linux-image-6-8-0-1019-nvidia-lowlatency
- ubuntu-upgrade-linux-image-6-8-0-1019-nvidia-lowlatency-64k
- ubuntu-upgrade-linux-image-6-8-0-1020-aws
- ubuntu-upgrade-linux-image-6-8-0-50-generic
- ubuntu-upgrade-linux-image-6-8-0-50-generic-64k
- ubuntu-upgrade-linux-image-6-8-0-50-lowlatency
- ubuntu-upgrade-linux-image-6-8-0-50-lowlatency-64k
- ubuntu-upgrade-linux-image-aws
- ubuntu-upgrade-linux-image-aws-lts-22-04
- ubuntu-upgrade-linux-image-azure-lts-22-04
- ubuntu-upgrade-linux-image-gcp
- ubuntu-upgrade-linux-image-gcp-lts-22-04
- ubuntu-upgrade-linux-image-generic
- ubuntu-upgrade-linux-image-generic-64k
- ubuntu-upgrade-linux-image-generic-64k-hwe-20-04
- ubuntu-upgrade-linux-image-generic-64k-hwe-24-04
- ubuntu-upgrade-linux-image-generic-hwe-20-04
- ubuntu-upgrade-linux-image-generic-hwe-24-04
- ubuntu-upgrade-linux-image-generic-lpae
- ubuntu-upgrade-linux-image-generic-lpae-hwe-20-04
- ubuntu-upgrade-linux-image-gke
- ubuntu-upgrade-linux-image-gke-5-15
- ubuntu-upgrade-linux-image-gkeop
- ubuntu-upgrade-linux-image-gkeop-5-15
- ubuntu-upgrade-linux-image-gkeop-6-8
- ubuntu-upgrade-linux-image-ibm
- ubuntu-upgrade-linux-image-ibm-classic
- ubuntu-upgrade-linux-image-ibm-lts-24-04
- ubuntu-upgrade-linux-image-intel
- ubuntu-upgrade-linux-image-intel-iotg
- ubuntu-upgrade-linux-image-kvm
- ubuntu-upgrade-linux-image-lowlatency
- ubuntu-upgrade-linux-image-lowlatency-64k
- ubuntu-upgrade-linux-image-lowlatency-64k-hwe-20-04
- ubuntu-upgrade-linux-image-lowlatency-64k-hwe-22-04
- ubuntu-upgrade-linux-image-lowlatency-64k-hwe-24-04
- ubuntu-upgrade-linux-image-lowlatency-hwe-20-04
- ubuntu-upgrade-linux-image-lowlatency-hwe-22-04
- ubuntu-upgrade-linux-image-lowlatency-hwe-24-04
- ubuntu-upgrade-linux-image-nvidia
- ubuntu-upgrade-linux-image-nvidia-6-8
- ubuntu-upgrade-linux-image-nvidia-64k
- ubuntu-upgrade-linux-image-nvidia-64k-6-8
- ubuntu-upgrade-linux-image-nvidia-64k-hwe-22-04
- ubuntu-upgrade-linux-image-nvidia-hwe-22-04
- ubuntu-upgrade-linux-image-nvidia-lowlatency
- ubuntu-upgrade-linux-image-nvidia-lowlatency-64k
- ubuntu-upgrade-linux-image-oem-20-04
- ubuntu-upgrade-linux-image-oem-20-04b
- ubuntu-upgrade-linux-image-oem-20-04c
- ubuntu-upgrade-linux-image-oem-20-04d
- ubuntu-upgrade-linux-image-oem-24-04
- ubuntu-upgrade-linux-image-oem-24-04a
- ubuntu-upgrade-linux-image-oracle
- ubuntu-upgrade-linux-image-oracle-64k
- ubuntu-upgrade-linux-image-oracle-lts-22-04
- ubuntu-upgrade-linux-image-raspi
- ubuntu-upgrade-linux-image-raspi-nolpae
- ubuntu-upgrade-linux-image-virtual
- ubuntu-upgrade-linux-image-virtual-hwe-20-04
- ubuntu-upgrade-linux-image-virtual-hwe-24-04
- ubuntu-upgrade-linux-image-xilinx-zynqmp
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center