CLSA-2024:1711026398

[CLSA-2024:1711026398] kernel: Fix of 7 CVEs

Type:

security

Severity:

Important

Release date:

2024-03-21 13:09:26 UTC

Description:

- netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one {CVE-2023-39197}
- mtd: Fix gluebi NULL pointer dereference caused by ftl notifier {CVE-2023-52449}
- media: pvrusb2: fix use after free on context disconnection {CVE-2023-52445}
- net: prevent mss overflow in skb_segment() {CVE-2023-52435}
- RDMA/core: Update CMA destination address on rdma_resolve_addr {CVE-2023-2176}
- tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux {CVE-2023-6546}
- tty: n_gsm: fix restart handling via CLD command {CVE-2023-6546}
- tty: n_gsm: fix deadlock in gsmtty_open() {CVE-2023-6546}
- nvmet-tcp: Fix the H2C expected PDU len calculation {CVE-2023-6536}
- nvmet-tcp: remove boilerplate code {CVE-2023-6536}
- nvmet-tcp: add bounds check on Transfer Tag {CVE-2023-6536}
- nvmet-tcp: fix a crash in nvmet_req_complete() {CVE-2023-6536}
- nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length {CVE-2023-6536}

Updated packages:

bpftool-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:d0f0f0a77a0044667af8de25242f497a8cf6e3e9
kernel-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:a943920ea053ec6a73a97411d2019f4913a8b1b6
kernel-core-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:1b12fcbc4b30325c14d8ac38aaaf6fea1c7f5e40
kernel-cross-headers-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:4ce40f5dfe7658af2a6c5878bfce86a4a069ba78
kernel-debug-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:5c94d99ac7e164f70a2cbbf6bea2fd08f96a1457
kernel-debug-core-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:9696af05245adac07201cf7a29051b520d52e21c
kernel-debug-devel-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:6afd98a9f26757abbdb53e367529c7ead20aaa9a
kernel-debug-modules-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:8ef0c107f1c74714e5d670214983c74f7dac58be
kernel-debug-modules-extra-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:1c4592248a30e46233da3f048f25480d4dd7bd10
kernel-debug-modules-internal-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:ce928c819283671687e640ce6ebee660f6361988
kernel-devel-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:a54e69f2a5a963b0588d67d88d9a6cb82c289638
kernel-headers-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:ddc1cd9fc462dcbc6d3aac8a65e17bc9c49022a5
kernel-ipaclones-internal-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:41f92b73264527b535b79f601efc89404f96f2db
kernel-modules-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:607b819c97f7fecb86e3412ab6797065da67b9f6
kernel-modules-extra-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:65ede8dd7587574a30e3eff2ba88a7c4a8e2e64a
kernel-modules-internal-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:3d9ed0a7e278c783b94fea8137397a22885f3d50
kernel-selftests-internal-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:92df30c03661b7f823e57b8aa2e9db452904ebe8
kernel-tools-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:d32c3895af221306be4f1d1ce64a615d481219f2
kernel-tools-libs-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:2898ef843c0f8dda30fd759a40d3d7a6d8ede29d
kernel-tools-libs-devel-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:eca28c123685db489d9bd6f65c2a6d359d6bcede
perf-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:02b490924dd32fe6de46edf85c6b8bf1fb495033
python3-perf-4.18.0-305.25.1.el8_4.tuxcare.els15.x86_64.rpm
sha:b097e357889ce18c6180be5367dbe3dff8343691

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.