[CLSA-2025:1738670922] kernel: Fix of 43 CVEs
Type:
security
Severity:
Important
Release date:
2025-02-04 12:08:48 UTC
Description:
- smb: client: fix use-after-free of signing key {CVE-2024-53179} - smb: client: stop flooding dmesg in smb2_calc_signature() {CVE-2024-53179} - smb3: fix oops in calculating shash_setkey {CVE-2024-53179} - cifs: return correct error in ->calc_signature() {CVE-2024-53179} - cifs: secmech: use shash_desc directly, remove sdesc {CVE-2024-53179} - cifs: replace kfree() with kfree_sensitive() for sensitive data {CVE-2024-53179} - xsk: fix OOB map writes when deleting elements {CVE-2024-56614} - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer {CVE-2024-53103} - scsi: sg: Fix slab-use-after-free read in sg_release() {CVE-2024-56631} - EDAC/igen6: Avoid segmentation fault on module unload {CVE-2024-56708} - acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl {CVE-2024-56662} - net: inet: do not leave a dangling sk pointer in inet_create() {CVE-2024-56601} - initramfs: avoid filename buffer overrun {CVE-2024-53142} - ALSA: usb-audio: Fix out of bounds reads when finding clock sources {CVE-2024-53150} - Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() {CVE-2024-56604} - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() {CVE-2024-53156} - Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() {CVE-2024-56605} - Bluetooth: msft: fix slab-use-after-free in msft_do_close() {CVE-2024-36012} - Bluetooth: Fix support for Read Local Supported Codecs V2 {CVE-2024-36012} - Bluetooth: hci_codec: Fix leaking content of local_codecs {CVE-2024-36012} - blk-cgroup: Fix UAF in blkcg_unpin_online() {CVE-2024-56672} - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() {CVE-2024-56602} - net: inet6: do not leave a dangling sk pointer in inet6_create() {CVE-2024-56600} - NFSv4.0: Fix a use-after-free problem in the asynchronous open() {CVE-2024-53173} - net: af_can: do not leave a dangling sk pointer in can_create() {CVE-2024-56603} - drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7 {CVE-2023-52818} - bpf, sockmap: Fix race between element replace and close() {CVE-2024-56664} - ceph: prevent use-after-free in encode_cap_msg() {CVE-2024-26689} - drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create' {CVE-2024-56608} - netfilter: ipset: add missing range check in bitmap_ip_uadt {CVE-2024-53141} - HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit {CVE-2023-52519} - tipc: Fix use-after-free of kernel socket in cleanup_bearer(). {CVE-2024-56642} - cifs: Fix buffer overflow when parsing NFS reparse points {CVE-2024-49996} - Input: powermate - fix use-after-free in powermate_config_complete {CVE-2023-52475} - PM / devfreq: Fix buffer overflow in trans_stat_show {CVE-2023-52614} - PM / devfreq: Rework freq_table to be local to devfreq struct {CVE-2023-52614} - cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie() {CVE-2024-41057} - cachefiles: fix slab-use-after-free in fscache_withdraw_volume() {CVE-2024-41058} - netfs, fscache: export fscache_put_volume() and add fscache_try_get_volume() {CVE-2024-41058} - memcg: fix possible use-after-free in memcg_write_event_control() {CVE-2022-48988} - Bluetooth: ISO: Fix UAF on iso_sock_timeout {CVE-2024-50124} - Bluetooth: SCO: Fix UAF on sco_sock_timeout {CVE-2024-50125} - Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout {CVE-2024-50125} - Bluetooth: Consolidate code around sk_alloc into a helper function {CVE-2024-50125} - smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect() {CVE-2024-35861} - gtp: fix use-after-free and null-ptr-deref in gtp_genl_dump_pdp() {CVE-2024-26754} - smb: client: fix potential UAF in cifs_stats_proc_write() {CVE-2024-35868} - smb: client: fix potential UAF in cifs_debug_files_proc_show() {CVE-2024-35868} - vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans {CVE-2024-50264} - net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT {CVE-2024-53057} - wifi: iwlwifi: mvm: Fix a memory corruption issue {CVE-2023-52531} - x86/alternatives: Disable KASAN in apply_alternatives() {CVE-2023-52504} - bpf: Fix out-of-bounds write in trie_get_next_key() {CVE-2024-50262} - KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory {CVE-2024-50115} - media: edia: dvbdev: fix a use-after-free {CVE-2024-27043} - media: dvb-core: Fix use-after-free due to race at dvb_register_device() {CVE-2024-27043} - media: dvbdev: fix build warning due to comments {CVE-2024-27043} - media: dvbdev: adopts refcnt to avoid UAF {CVE-2024-27043}
Updated packages:
  • bpftool-7.0.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:f13bcb5ab20a6394de210ccec6f39f5dda53f1e05bc2b7b46162ccab7efd791c
  • kernel-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:081209db387f46386b641d184f17752c4e9e4d7127148aa48150ff3cb71e422e
  • kernel-abi-stablelists-5.14.0-284.11.1.el9_2.tuxcare.6.els10.noarch.rpm
    sha:199be0ed5a5fae6c8c6494dc9a1b982313bdbef2b843337516068006d217ae8d
  • kernel-core-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:efecdcc9f9d765cc48e315515dc6289063aed707c0a87b2aaae941ad6728d22b
  • kernel-cross-headers-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:18292424ece050e03906bfa44e25db495402dcd35c38084eb3130a3d655196e9
  • kernel-debug-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:668a718b868e97b472aef36a1b1837cbad45082731d8ca33bbdacbc4b9111ca5
  • kernel-debug-core-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:5bffb980451409c55b474feff6fcd24e0296119b75b0a350423b018494a406d3
  • kernel-debug-devel-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:b4683c4b5cf30a0d5841326393f2417892ddc33020c8ab114bc7466e420b46eb
  • kernel-debug-devel-matched-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:a71a263b33f908047e1c817a3d1136cf099b8e5bff62de0141cb19f7b6a279df
  • kernel-debug-modules-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:6f4b57d1f2b70e692cb494c286433a5f5611bc473a1351265545c7badb28206b
  • kernel-debug-modules-core-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:563bc9dbf02eb617e280a2923c23df5512a386880057e4ab3ea30b50271529ef
  • kernel-debug-modules-extra-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:17abc65e94be7116850fc95f1ff06eb84980d3ded40cf3b94522a737fd139946
  • kernel-debug-modules-internal-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:2678568a47c50846004e23b6336ca611855e98d03d74d2e964c7790879c04708
  • kernel-debug-modules-partner-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:c956c87d1f29552000f51e67c5d05e5a2ac1c4e2b0dbe6d4850387f14a9ea305
  • kernel-debug-uki-virt-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:a448546cb5b335e857874649c6a4e81fcd09be51f5abfa53b1f8e9f9fe09a048
  • kernel-devel-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:73ba2290a590b89ddba796feabef09551d593291dcf428b0b53d6ee0f2693c0d
  • kernel-devel-matched-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:0afa0454f4febe127f05b03fe13f20ca57f5903d8160e4d74a61e6618578ba5d
  • kernel-doc-5.14.0-284.11.1.el9_2.tuxcare.6.els10.noarch.rpm
    sha:7afccbe462061279b9192b514c10bbc960df9a299c22e8f0c1fbdb0d6d769963
  • kernel-headers-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:28a80897e886a3dc50bb63af09128ec9a813eddf2c74a6252f28fcb23a636997
  • kernel-ipaclones-internal-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:240b939ba93fcd3925816179f3b775e73aac8dbd16539ca27b90ba213ffe62bd
  • kernel-modules-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:60214925fd78691043545e509cb7b496909dfe1895c5868c3859d4c0fac36fa1
  • kernel-modules-core-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:89b09a026816e134fcfeeffc7c96c24d6b1164e2b47ff75e1ed9e157c652b933
  • kernel-modules-extra-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:6bd569795316016bfb0853e93bf198b05cf5c1d0307238a524eaa0c1aa7e2423
  • kernel-modules-internal-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:c402cfeaf5a464f684aabed328c99948d35b17633cbd1de62edbf74eb942b95c
  • kernel-modules-partner-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:1355006999f65e57bc010f61476c9457ec6e36b8cc25fed81cbea118626ddfcb
  • kernel-selftests-internal-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:448608acd961b71b3e8cd916a495850624f8064efdceefe1f4f26fb51c80f21f
  • kernel-tools-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:93e09d866c1bc9139be44ca65a3962d47150d1f0c3697546b198263270b49f00
  • kernel-tools-libs-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:a922de99e037f51974d18be7b26c613216c36f4b7db4fa2da0b01c41f3f524d4
  • kernel-tools-libs-devel-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:f7c6cfab4e886f698ba5b6f341edb1a020f200866424f5819c4901eebb9a4fd1
  • kernel-uki-virt-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:aaf915ba24682212e08701d5c1106564a19af29fd993b16adb61421919274a42
  • perf-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:534b7b8ba782e8d92253281847fb6f02898b4d4962ce4e50591d00ab32eead88
  • python3-perf-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:4fe228efb84bc97c8d192740929ea508a3b82f9a909a42637892c85682ca2c74
  • rtla-5.14.0-284.11.1.el9_2.tuxcare.6.els10.x86_64.rpm
    sha:513238d3badcf793e98f1bb7d1dc58bb4fb912e0996ba1c3a244355b0b8640c7
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.