Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2025-7898

Опубликовано: 17 июн. 2025
Источник: oracle-oval
Платформа: Oracle Linux 7

Описание

ELSA-2025-7898: kernel security update (IMPORTANT)

[3.10.0-1160.119.1.0.9.el7.OL7]

  • netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park) {CVE-2024-53141} [Orabug: 37964173]
  • Update OL SB certificates
  • Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985797]

Обновленные пакеты

Oracle Linux 7

Oracle Linux x86_64

bpftool

3.10.0-1160.119.1.0.9.el7

kernel

3.10.0-1160.119.1.0.9.el7

kernel-abi-whitelists

3.10.0-1160.119.1.0.9.el7

kernel-debug

3.10.0-1160.119.1.0.9.el7

kernel-debug-devel

3.10.0-1160.119.1.0.9.el7

kernel-devel

3.10.0-1160.119.1.0.9.el7

kernel-doc

3.10.0-1160.119.1.0.9.el7

kernel-headers

3.10.0-1160.119.1.0.9.el7

kernel-tools

3.10.0-1160.119.1.0.9.el7

kernel-tools-libs

3.10.0-1160.119.1.0.9.el7

kernel-tools-libs-devel

3.10.0-1160.119.1.0.9.el7

perf

3.10.0-1160.119.1.0.9.el7

python-perf

3.10.0-1160.119.1.0.9.el7

Связанные CVE

CVE-2024-53141

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2024-53141

CVSS3: 7.8
ubuntu
7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add missing range check in bitmap_ip_uadt When tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists, the values of ip and ip_to are slightly swapped. Therefore, the range check for ip should be done later, but this part is missing and it seems that the vulnerability occurs. So we should add missing range checks and remove unnecessary range checks.

redhat логотип

CVE-2024-53141

CVSS3: 7
redhat
7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add missing range check in bitmap_ip_uadt When tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists, the values of ip and ip_to are slightly swapped. Therefore, the range check for ip should be done later, but this part is missing and it seems that the vulnerability occurs. So we should add missing range checks and remove unnecessary range checks.

nvd логотип

CVE-2024-53141

CVSS3: 7.8
nvd
7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add missing range check in bitmap_ip_uadt When tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists, the values of ip and ip_to are slightly swapped. Therefore, the range check for ip should be done later, but this part is missing and it seems that the vulnerability occurs. So we should add missing range checks and remove unnecessary range checks.

msrc логотип

CVE-2024-53141

CVSS3: 7.8
msrc
5 месяцев назад

Описание отсутствует

debian логотип

CVE-2024-53141

CVSS3: 7.8
debian
7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: n ...