ELSA-2025-3026

Опубликовано: 19 мар. 2025

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2025-3026: kernel security update (IMPORTANT)

[4.18.0-553.45.1_10.OL8]

Update Oracle Linux certificates (Kevin Lyons)
Disable signing for aarch64 (Ilya Okomin)
Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
Update x509.genkey [Orabug: 24817676]
Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.3
Remove upstream reference during boot (Kevin Lyons) [Orabug: 34750652]

[4.18.0-553.45.1_10]

gve: trigger RX NAPI instead of TX NAPI in gve_xsk_wakeup (Joshua Washington) [RHEL-73269]
gve: process XSK TX descriptors as part of RX NAPI (Joshua Washington) [RHEL-73269]
gve: guard XSK operations on the existence of queues (Joshua Washington) [RHEL-73269]
gve: Fix an edge case for TSO skb validity check (Joshua Washington) [RHEL-73269]
gve: Fix XDP TX completion handling when counters overflow (Joshua Washington) [RHEL-73269]
gve: Clear napi->skb before dev_kfree_skb_any() (Joshua Washington) [RHEL-73269] {CVE-2024-40937}
gve: ignore nonrelevant GSO type bits when processing TSO headers (Joshua Washington) [RHEL-73269]
can: bcm: Fix UAF in bcm_proc_show() (CKI Backport Bot) [RHEL-80733] {CVE-2023-52922}
gfs2: glock holder GL_NOPID fix (Andreas Gruenbacher) [RHEL-80694]
gfs2: Decode missing glock flags in tracepoints (Andreas Gruenbacher) [RHEL-80694]
net/smc: support ipv4 mapped ipv6 addr client for smc-r v2 (Mete Durlu) [RHEL-79810]
net: smc: fix spurious error message from __sock_release() (Mete Durlu) [RHEL-79812]

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

kernel-tools-libs-devel

4.18.0-553.45.1.el8_10

bpftool

4.18.0-553.45.1.el8_10

kernel-cross-headers

4.18.0-553.45.1.el8_10

kernel-headers

4.18.0-553.45.1.el8_10

kernel-tools

4.18.0-553.45.1.el8_10

kernel-tools-libs

4.18.0-553.45.1.el8_10

perf

4.18.0-553.45.1.el8_10

python3-perf

4.18.0-553.45.1.el8_10

Oracle Linux x86_64

kernel-tools-libs-devel

4.18.0-553.45.1.el8_10

bpftool

4.18.0-553.45.1.el8_10

kernel

4.18.0-553.45.1.el8_10

kernel-abi-stablelists

4.18.0-553.45.1.el8_10

kernel-core

4.18.0-553.45.1.el8_10

kernel-cross-headers

4.18.0-553.45.1.el8_10

kernel-debug

4.18.0-553.45.1.el8_10

kernel-debug-core

4.18.0-553.45.1.el8_10

kernel-debug-devel

4.18.0-553.45.1.el8_10

kernel-debug-modules

4.18.0-553.45.1.el8_10

kernel-debug-modules-extra

4.18.0-553.45.1.el8_10

kernel-devel

4.18.0-553.45.1.el8_10

kernel-doc

4.18.0-553.45.1.el8_10

kernel-headers

4.18.0-553.45.1.el8_10

kernel-modules

4.18.0-553.45.1.el8_10

kernel-modules-extra

4.18.0-553.45.1.el8_10

kernel-tools

4.18.0-553.45.1.el8_10

kernel-tools-libs

4.18.0-553.45.1.el8_10

perf

4.18.0-553.45.1.el8_10

python3-perf

4.18.0-553.45.1.el8_10

Связанные CVE

CVE-2023-52922

Ссылки на источники

Связанные уязвимости

CVE-2023-52922

CVSS3: 7.8

ubuntu

7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: can: bcm: Fix UAF in bcm_proc_show() BUG: KASAN: slab-use-after-free in bcm_proc_show+0x969/0xa80 Read of size 8 at addr ffff888155846230 by task cat/7862 CPU: 1 PID: 7862 Comm: cat Not tainted 6.5.0-rc1-00153-gc8746099c197 #230 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014 Call Trace: <TASK> dump_stack_lvl+0xd5/0x150 print_report+0xc1/0x5e0 kasan_report+0xba/0xf0 bcm_proc_show+0x969/0xa80 seq_read_iter+0x4f6/0x1260 seq_read+0x165/0x210 proc_reg_read+0x227/0x300 vfs_read+0x1d5/0x8d0 ksys_read+0x11e/0x240 do_syscall_64+0x35/0xb0 entry_SYSCALL_64_after_hwframe+0x63/0xcd Allocated by task 7846: kasan_save_stack+0x1e/0x40 kasan_set_track+0x21/0x30 __kasan_kmalloc+0x9e/0xa0 bcm_sendmsg+0x264b/0x44e0 sock_sendmsg+0xda/0x180 ____sys_sendmsg+0x735/0x920 ___sys_sendmsg+0x11d/0x1b0 __sys_sendmsg+0xfa/0x1d0 do_syscall_64+0x35/0xb0 entry_SYSCALL_64_after_hwframe+0x63/0xcd Freed by task 784...