Описание
ELSA-2024-12094: kernel security update (IMPORTANT)
- [5.14.0-362.18.0.1_3.OL9]
- nfp: fix use-after-free in area_cache_get() (Jialiang Wang) {CVE-2022-3545}
- drivers: net: slip: fix NPD bug in sl_tx_timeout() (Duoming Zhou) {CVE-2022-41858}
- can: af_can: fix NULL pointer dereference in can_rcv_filter (Oliver Hartkopp) {CVE-2023-2166}
- RDMA/core: Fix resolve_prepare_src error cleanup (Patrisious Haddad) {CVE-2023-2176}
- netfilter: nf_tables: skip bound chain on rule flush (Pablo Neira Ayuso} {CVE-2023-3777}
- net: tun: fix bugs for oversize packet when napi frags enabled (Ziyang Xuan) {CVE-2023-3812}
- netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR (Pablo Neira Ayuso) {CVE-2023-4015}
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Kuniyuki Iwashima) {CVE-2023-4622}
- nvmet-tcp: Fix a possible UAF in queue intialization setup (Sagi Grimberg) {CVE-2023-5178}
- fbcon: set_con2fb_map needs to set con2fb_map! (Daniel Vetter) {CVE-2023-38409}
- fbcon: Fix error paths in set_con2fb_map (Daniel Vetter) {CVE-2023-38409}
- Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb (Sungwoo Kim) {CVE-2023-40283)
- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Kyle Zeng) {CVE-2023-42753}
- x86/sev: Check IOBM for IOIO exceptions from user-space (Joerg Roedel) {CVE-2023-46813}
- x86/sev: Disable MMIO emulation from user mode (Borislav Petkov) {CVE-2023-46813}
- x86/sev: Check for user-space IOIO pointing to kernel space (Joerg Roedel) {CVE-2023-46813}
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
bpftool
7.2.0-362.18.0.1.el9_3
kernel-cross-headers
5.14.0-362.18.0.1.el9_3
kernel-headers
5.14.0-362.18.0.1.el9_3
kernel-tools
5.14.0-362.18.0.1.el9_3
kernel-tools-libs
5.14.0-362.18.0.1.el9_3
kernel-tools-libs-devel
5.14.0-362.18.0.1.el9_3
perf
5.14.0-362.18.0.1.el9_3
python3-perf
5.14.0-362.18.0.1.el9_3
Oracle Linux x86_64
bpftool
7.2.0-362.18.0.1.el9_3
kernel
5.14.0-362.18.0.1.el9_3
kernel-abi-stablelists
5.14.0-362.18.0.1.el9_3
kernel-core
5.14.0-362.18.0.1.el9_3
kernel-cross-headers
5.14.0-362.18.0.1.el9_3
kernel-debug
5.14.0-362.18.0.1.el9_3
kernel-debug-core
5.14.0-362.18.0.1.el9_3
kernel-debug-devel
5.14.0-362.18.0.1.el9_3
kernel-debug-devel-matched
5.14.0-362.18.0.1.el9_3
kernel-debug-modules
5.14.0-362.18.0.1.el9_3
kernel-debug-modules-core
5.14.0-362.18.0.1.el9_3
kernel-debug-modules-extra
5.14.0-362.18.0.1.el9_3
kernel-devel
5.14.0-362.18.0.1.el9_3
kernel-devel-matched
5.14.0-362.18.0.1.el9_3
kernel-doc
5.14.0-362.18.0.1.el9_3
kernel-headers
5.14.0-362.18.0.1.el9_3
kernel-modules
5.14.0-362.18.0.1.el9_3
kernel-modules-core
5.14.0-362.18.0.1.el9_3
kernel-modules-extra
5.14.0-362.18.0.1.el9_3
kernel-tools
5.14.0-362.18.0.1.el9_3
kernel-tools-libs
5.14.0-362.18.0.1.el9_3
kernel-tools-libs-devel
5.14.0-362.18.0.1.el9_3
libperf
5.14.0-362.18.0.1.el9_3
perf
5.14.0-362.18.0.1.el9_3
python3-perf
5.14.0-362.18.0.1.el9_3
rtla
5.14.0-362.18.0.1.el9_3
rv
5.14.0-362.18.0.1.el9_3
Ссылки на источники
Связанные уязвимости
An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.
An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.
An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.
An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_s ...