[CLSA-2025:1739525795] kernel: Fix of 24 CVEs
Type:
security
Severity:
Important
Release date:
2025-02-14 09:36:40 UTC
Description:
- media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format {CVE-2024-53104} - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() {CVE-2024-53156} - xsk: fix OOB map writes when deleting elements {CVE-2024-56614} - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer {CVE-2024-53103} - net: inet: do not leave a dangling sk pointer in inet_create() {CVE-2024-56601} - scsi: sg: Fix slab-use-after-free read in sg_release() {CVE-2024-56631} - scsi: sg: Enable runtime power management {CVE-2024-56631} - scsi: sg: Avoid race in error handling & drop bogus warn {CVE-2024-56631} - scsi: sg: Avoid sg device teardown race {CVE-2024-56631} - initramfs: avoid filename buffer overrun {CVE-2024-53142} - Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() {CVE-2024-56604} - cifs: Fix use-after-free in rdata->read_into_pages() {CVE-2023-52741} - Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() {CVE-2024-56605} - af_packet: avoid erroring out after sock_init_data() in packet_create() {CVE-2024-56606} - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() {CVE-2024-56602} - net: inet6: do not leave a dangling sk pointer in inet6_create() {CVE-2024-56600} - NFSv4.0: Fix a use-after-free problem in the asynchronous open() {CVE-2024-53173} - net: af_can: do not leave a dangling sk pointer in can_create() {CVE-2024-56603} - drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7 {CVE-2023-52818} - rds: tcp: Fix use-after-free of net in reqsk_timer_handler(). {CVE-2024-26865} - tcp: Save unnecessary inet_twsk_purge() calls. {CVE-2024-26865} - ceph: prevent use-after-free in encode_cap_msg() {CVE-2024-26689} - drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create' {CVE-2024-56608} - bpf: Check validity of link->type in bpf_link_show_fdinfo() {CVE-2024-53099} - drm/amd/pm: fix a double-free in si_dpm_init {CVE-2023-52691} - netfilter: ipset: add missing range check in bitmap_ip_uadt {CVE-2024-53141} - tipc: fix NULL deref in cleanup_bearer() {CVE-2024-56661} - tipc: Fix use-after-free of kernel socket in cleanup_bearer(). {CVE-2024-56642}
Updated packages:
  • bpftool-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:8c1acde967a25fa66a69df3ac4bd5ac9982da1bcaee25c5f73f72c8acec53a21
  • kernel-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:c770fb917c321a082c1bff74c40ede674b9177011b1a3317208966015dfb1d95
  • kernel-core-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:e0d04ac5b16ad8866cd486f223b038d2b8fc26427c0902beef6d7ce1ff1c536f
  • kernel-cross-headers-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:440f1b73a8fd30ebb2ed23b0673a0d3fba08f097ccbb1aa47a88e068b7be8b32
  • kernel-debug-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:b4c3dbe7d879b82dc25149ba602951ef6bf4fbdf1044d0354b0bf94498c8dd17
  • kernel-debug-core-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:ad92d1c1072840af79c4da93b04680fc41aaef56949d196687ff4955036dd208
  • kernel-debug-devel-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:6f77e45e25d2b88169386acf2f1d25e3918762101e55162ba23660e8a39d3812
  • kernel-debug-modules-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:e97a2706be2dba6ff8f898665ed95a865e1da3127ece844757323ea1ebf29faf
  • kernel-debug-modules-extra-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:3ec84b7a7d5f2f7aa0ba55385b867cbeb26e7ef8128db9a23b1e7638045faa5e
  • kernel-debug-modules-internal-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:8089bdfec97d60ea019c67a369e08d7aedfb9e7073b946c2353633ba0fe1776a
  • kernel-devel-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:df0b27e102ab9ed58b8cc611b3da4a6077ede1a77c09cadbb78c38ced95c99e5
  • kernel-headers-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:133f1c3222fc7d3a73e97e2bcb9753f737a29cfdff4bd11076732e32285826f7
  • kernel-ipaclones-internal-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:c1613de32b2d21202ac47972ee8c055eb50d566f28bb0510c6a012cc6fe90b1f
  • kernel-modules-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:5580656617e86e5310579b73659bc5a1abf97c6bded9115548f120b9c0f829ef
  • kernel-modules-extra-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:6c6f91d93ec716bc614481ba4c78424d6bf4ab9333a1df75d6d10508eac90d30
  • kernel-modules-internal-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:bafbd8de7a2e47c6633e372c1658a78fdd00dc97286ed74a7af0fbdbc1461a5a
  • kernel-selftests-internal-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:8be25beb1c0f06c71325c6c7ff5125dbddd2607359f9c6f5d21c47770988b90c
  • kernel-tools-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:c5b3ed82490f2a74cea74dc6ba3c76b59b1edd801b777f83a1c599fab8e38ab8
  • kernel-tools-libs-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:6ad8f99e0ac9406c7bb649bfc44ee8c1d522fdd4dfb42e42d547f5073de357b8
  • kernel-tools-libs-devel-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:3ea3f66ed983bf567e0d32b6db41b0aab902588f3f8bd926885f9c7eb1a510cc
  • perf-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:274052c3d43ebdcc4fe10c2c511615957f5fc685dc06d715d1d82aeb487fbe5a
  • python3-perf-4.18.0-348.7.1.el8_5.tuxcare.els25.x86_64.rpm
    sha:983a84d915532a5162b0ed4fb6d0adcfe9ae634e156b0941eab36bb6338c83ba
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.