This bug was fixed in the package linux-kvm - 5.4.0-1026.27
--------------- linux-kvm (5.4.0-1026.27) focal; urgency=medium
[ Ubuntu: 5.4.0-50.55 ]
* CVE-2020-16119 - SAUCE: dccp: avoid double free of ccid on child socket * CVE-2020-16120 - Revert "UBUNTU: SAUCE: overlayfs: ensure mounter privileges when reading directories" - ovl: pass correct flags for opening real directory - ovl: switch to mounter creds in readdir - ovl: verify permissions in ovl_path_open() - ovl: call secutiry hook in ovl_real_ioctl() - ovl: check permission to open real file
-- Thadeu Lima de Souza Cascardo <email address hidden> Wed, 30 Sep 2020 18:04:11 -0300
This bug was fixed in the package linux-kvm - 5.4.0-1026.27
---------------
linux-kvm (5.4.0-1026.27) focal; urgency=medium
[ Ubuntu: 5.4.0-50.55 ]
* CVE-2020-16119
- SAUCE: dccp: avoid double free of ccid on child socket
* CVE-2020-16120
- Revert "UBUNTU: SAUCE: overlayfs: ensure mounter privileges when reading
directories"
- ovl: pass correct flags for opening real directory
- ovl: switch to mounter creds in readdir
- ovl: verify permissions in ovl_path_open()
- ovl: call secutiry hook in ovl_real_ioctl()
- ovl: check permission to open real file
-- Thadeu Lima de Souza Cascardo <email address hidden> Wed, 30 Sep 2020 18:04:11 -0300