[CLSA-2025:1738671431] kernel: Fix of 43 CVEs
Type:
security
Severity:
Important
Release date:
2025-02-04 12:17:17 UTC
Description:
- smb: client: fix use-after-free of signing key {CVE-2024-53179} - smb: client: stop flooding dmesg in smb2_calc_signature() {CVE-2024-53179} - smb3: fix oops in calculating shash_setkey {CVE-2024-53179} - cifs: return correct error in ->calc_signature() {CVE-2024-53179} - cifs: secmech: use shash_desc directly, remove sdesc {CVE-2024-53179} - cifs: replace kfree() with kfree_sensitive() for sensitive data {CVE-2024-53179} - xsk: fix OOB map writes when deleting elements {CVE-2024-56614} - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer {CVE-2024-53103} - scsi: sg: Fix slab-use-after-free read in sg_release() {CVE-2024-56631} - EDAC/igen6: Avoid segmentation fault on module unload {CVE-2024-56708} - acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl {CVE-2024-56662} - net: inet: do not leave a dangling sk pointer in inet_create() {CVE-2024-56601} - initramfs: avoid filename buffer overrun {CVE-2024-53142} - ALSA: usb-audio: Fix out of bounds reads when finding clock sources {CVE-2024-53150} - Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() {CVE-2024-56604} - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() {CVE-2024-53156} - Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() {CVE-2024-56605} - Bluetooth: msft: fix slab-use-after-free in msft_do_close() {CVE-2024-36012} - Bluetooth: Fix support for Read Local Supported Codecs V2 {CVE-2024-36012} - Bluetooth: hci_codec: Fix leaking content of local_codecs {CVE-2024-36012} - blk-cgroup: Fix UAF in blkcg_unpin_online() {CVE-2024-56672} - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() {CVE-2024-56602} - net: inet6: do not leave a dangling sk pointer in inet6_create() {CVE-2024-56600} - NFSv4.0: Fix a use-after-free problem in the asynchronous open() {CVE-2024-53173} - net: af_can: do not leave a dangling sk pointer in can_create() {CVE-2024-56603} - drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7 {CVE-2023-52818} - bpf, sockmap: Fix race between element replace and close() {CVE-2024-56664} - ceph: prevent use-after-free in encode_cap_msg() {CVE-2024-26689} - drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create' {CVE-2024-56608} - netfilter: ipset: add missing range check in bitmap_ip_uadt {CVE-2024-53141} - HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit {CVE-2023-52519} - tipc: Fix use-after-free of kernel socket in cleanup_bearer(). {CVE-2024-56642} - cifs: Fix buffer overflow when parsing NFS reparse points {CVE-2024-49996} - Input: powermate - fix use-after-free in powermate_config_complete {CVE-2023-52475} - PM / devfreq: Fix buffer overflow in trans_stat_show {CVE-2023-52614} - PM / devfreq: Rework freq_table to be local to devfreq struct {CVE-2023-52614} - cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie() {CVE-2024-41057} - cachefiles: fix slab-use-after-free in fscache_withdraw_volume() {CVE-2024-41058} - [ELSCVE-37480] netfs, fscache: export fscache_put_volume() and add fscache_try_get_volume() {CVE-2024-41058} - memcg: fix possible use-after-free in memcg_write_event_control() {CVE-2022-48988} - Bluetooth: ISO: Fix UAF on iso_sock_timeout {CVE-2024-50124} - Bluetooth: SCO: Fix UAF on sco_sock_timeout {CVE-2024-50125} - Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout {CVE-2024-50125} - Bluetooth: Consolidate code around sk_alloc into a helper function {CVE-2024-50125} - smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect() {CVE-2024-35861} - gtp: fix use-after-free and null-ptr-deref in gtp_genl_dump_pdp() {CVE-2024-26754} - smb: client: fix potential UAF in cifs_stats_proc_write() {CVE-2024-35868} - smb: client: fix potential UAF in cifs_debug_files_proc_show() {CVE-2024-35868} - vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans {CVE-2024-50264} - net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT {CVE-2024-53057} - wifi: iwlwifi: mvm: Fix a memory corruption issue {CVE-2023-52531} - x86/alternatives: Disable KASAN in apply_alternatives() {CVE-2023-52504} - bpf: Fix out-of-bounds write in trie_get_next_key() {CVE-2024-50262} - KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory {CVE-2024-50115} - media: edia: dvbdev: fix a use-after-free {CVE-2024-27043} - media: dvb-core: Fix use-after-free due to race at dvb_register_device() {CVE-2024-27043} - media: dvbdev: fix build warning due to comments {CVE-2024-27043} - media: dvbdev: adopts refcnt to avoid UAF {CVE-2024-27043} - spec: '--with lts' to create packages with '-lts' suffix ('kernel-lts')
Updated packages:
  • bpftool-7.0.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:aea27d47fc938e4cb36cb5120235662e80a59f3446806896eba8eed4aca7b1f6
  • kernel-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:c9592a084393654a6f1dd63c66d9a8e659bce2b63399e684d00814a80bed659e
  • kernel-abi-stablelists-5.14.0-284.30.1.el9_2.tuxcare.els10.noarch.rpm
    sha:8f42c4b842ecb9e3d1508583a22c2d817924aec3eb7d1b152113dad595bf6813
  • kernel-core-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:8d9820d3fb3005406fb7f63fe417e7d299e6912405a16ac315f8594b1d722c80
  • kernel-cross-headers-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:1934cfea8f380c2019bec41f282f6489ac7821beb7a015063cdb7bee35ddb32a
  • kernel-debug-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:079b3f52beff837aeaec1319c127ad49f8b3ddd6269cc76c0ea661a7a75e4404
  • kernel-debug-core-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:5dfbffd05eb5b1153d3b98f37080fcbe648c61744015b0c3cadd7252e7964200
  • kernel-debug-devel-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:555e5fad4727df033f8887518ccb1330ddb05aef4d08262b70f301af3587fb69
  • kernel-debug-devel-matched-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:8078d5a15c4923cab196099a2881b1e3ec698481e55ea272098f91ed4c4f373e
  • kernel-debug-modules-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:c098fed1c020585ab4760915123399e00a0f6cd0a93668fd0c89a9d54d3d64f8
  • kernel-debug-modules-core-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:67831ff485e3cdd38c5d5c5244646e837450f84c78a94911352faddc5b285818
  • kernel-debug-modules-extra-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:a098362fa90a9d64787b8cbd4c0fbd1e706e389c1911f0fd8f115e9c268006c8
  • kernel-debug-modules-internal-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:c35ccf9b8ae10ba201650a4352a0876c42ddfa2f271bb3d3e5efb7e8615ac2c9
  • kernel-debug-modules-partner-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:ed0b4f30791cba72bc7443d840f7271412253263204da6cf80e21929dcb5e145
  • kernel-debug-uki-virt-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:72a2e4d4c50519974cbc8e50f39d053c7726fbedee64dd955f603097324c9b49
  • kernel-devel-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:cd677924f4584c7a3b8e6fc01816bcaa4fad90928cbd1f26310b63ba332cda3b
  • kernel-devel-matched-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:40896c8a316c86ecc3188c7f3458d2a9982452dba31f52d28ff0f23fd75ec2ae
  • kernel-doc-5.14.0-284.30.1.el9_2.tuxcare.els10.noarch.rpm
    sha:71824c3bbbc492b28fb81b21fd59eee431f4e5652c320b0e82f50e9142d618d4
  • kernel-headers-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:595530823651fea07dd11ea7eae3b9fdc2580f52aebcc1c1e1ddb77daead8a52
  • kernel-ipaclones-internal-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:ba819adf90a52c79bf1afb1ebc0b7474941c8bb722c3fc8e7dc8a0808c0714b1
  • kernel-modules-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:9f245b3b617f5b1954d1be390f429e3d6fa721d352f9bd420c1b8e70fb3e81f7
  • kernel-modules-core-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:f994895a72a9ff58818a09a012aa410f367a11d8106c54891003ad7c559f1fb2
  • kernel-modules-extra-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:387d78f3979a35002a3fdfb3f5c2f06891de52dc19b4e163ac1bf6aa54eb66a7
  • kernel-modules-internal-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:5f5549ee4c52068f186ebd1a5bbcb5980412704ec7bea63b63e0d9567d86fd89
  • kernel-modules-partner-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:baec887f21780ab04669f4fdb00ce464e060d898bbb72b39ec086fa6db73db75
  • kernel-selftests-internal-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:990da76bc2df6e6deca5f5452e39539bf60ae1df20f557be2be09097215bcfc3
  • kernel-tools-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:8354659b9b9a4f0f634bc28949ebbac6051c3a36b4556db8ce0c680046665e55
  • kernel-tools-libs-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:a8531a996c82fda7ee27fe66735c22bc3f6b897715d72665bc9195334cca4c56
  • kernel-tools-libs-devel-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:ac8d0a8d41169e7965a0002c5ff520bb6e275b84250b81271081e692069c34e3
  • kernel-uki-virt-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:077c9d98c9dfe4478c7beaba9bd7c03dc104ffcf3c7e4ad90abb09dd070bcb23
  • perf-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:3bd40d2972be728839d3c4984b033e3af55f2e6da8f158028c0cb848adff9476
  • python3-perf-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:bb83aa88a41650ffdfc8128a477ce5a7babdefe36134601cf0d328502eef3627
  • rtla-5.14.0-284.30.1.el9_2.tuxcare.els10.x86_64.rpm
    sha:f0ed041e39aea77ac0e81c090eb1342af8586a411a4a58e661f61645045cb6db
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.