Описание
ELSA-2024-1831: kernel security update (IMPORTANT)
[2.6.32-754.53.1.OL6]
- net/sched: sch_qfq: refactor parsing of netlink parameters [Orabug: 36517546]
- net/sched: sch_qfq: account for stab overhead in qfq_enqueue {CVE-2023-3611} [Orabug: 36517546]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free {CVE-2023-3776} [Orabug: 36517546]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() {CVE-2023-4921} [Orabug: 36517546]
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg {CVE-2023-31436} [Orabug: 36517546]
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
kernel
2.6.32-754.53.1.el6
kernel-abi-whitelists
2.6.32-754.53.1.el6
kernel-debug
2.6.32-754.53.1.el6
kernel-debug-devel
2.6.32-754.53.1.el6
kernel-devel
2.6.32-754.53.1.el6
kernel-doc
2.6.32-754.53.1.el6
kernel-firmware
2.6.32-754.53.1.el6
kernel-headers
2.6.32-754.53.1.el6
perf
2.6.32-754.53.1.el6
python-perf
2.6.32-754.53.1.el6
Oracle Linux i686
kernel
2.6.32-754.53.1.el6
kernel-abi-whitelists
2.6.32-754.53.1.el6
kernel-debug
2.6.32-754.53.1.el6
kernel-debug-devel
2.6.32-754.53.1.el6
kernel-devel
2.6.32-754.53.1.el6
kernel-doc
2.6.32-754.53.1.el6
kernel-firmware
2.6.32-754.53.1.el6
kernel-headers
2.6.32-754.53.1.el6
perf
2.6.32-754.53.1.el6
python-perf
2.6.32-754.53.1.el6
Связанные уязвимости
An out-of-bounds write vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. The qfq_change_agg() function in net/sched/sch_qfq.c allows an out-of-bounds write because lmax is updated according to packet sizes without bounds checks. We recommend upgrading past commit 3e337087c3b5805fe0b8a46ba622a962880b5d64.
An out-of-bounds write vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. The qfq_change_agg() function in net/sched/sch_qfq.c allows an out-of-bounds write because lmax is updated according to packet sizes without bounds checks. We recommend upgrading past commit 3e337087c3b5805fe0b8a46ba622a962880b5d64.
An out-of-bounds write vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. The qfq_change_agg() function in net/sched/sch_qfq.c allows an out-of-bounds write because lmax is updated according to packet sizes without bounds checks. We recommend upgrading past commit 3e337087c3b5805fe0b8a46ba622a962880b5d64.