[CLSA-2023:1682711481] kernel: Fix of 7 CVEs
Type:
security
Severity:
None
Release date:
2023-04-28
Description:
- mISDN: fix use-after-free bugs in l1oip timer handlers {CVE-2022-3565} - media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() {CVE-2023-1118} - Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work {CVE-2023-1989} - proc: proc_skip_spaces() shouldn't think it is working on C strings {CVE-2022-4378} - proc: avoid integer type confusion in get_proc_long {CVE-2022-4378} - floppy: use a statically allocated error counter {CVE-2022-1652} - af_key: add __GFP_ZERO flag for compose_sadb_supported in function pfkey_register {CVE-2022-1353} - usb: mon: make mmapped memory read only {CVE-2022-43750}
Updated packages:
  • kernel-abi-whitelists-2.6.32-754.35.8.el6.tuxcare.els12.noarch.rpm
    sha:299302d885f8c88721b8ec6a680c163360417fdc
  • kernel-doc-2.6.32-754.35.8.el6.tuxcare.els12.noarch.rpm
    sha:5011ab81a7cb9e0be4a0e12268bb4ea3c3f0659e
  • kernel-firmware-2.6.32-754.35.8.el6.tuxcare.els12.noarch.rpm
    sha:0ce4d3163bd05ccadd1302363bc46f797afb31f5
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.