[CLSA-2023:1682712108] kernel: Fix of 7 CVEs
Type:
security
Severity:
None
Release date:
2023-04-28
Description:
- mISDN: fix use-after-free bugs in l1oip timer handlers {CVE-2022-3565} - media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() {CVE-2023-1118} - Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work {CVE-2023-1989} - proc: proc_skip_spaces() shouldn't think it is working on C strings {CVE-2022-4378} - proc: avoid integer type confusion in get_proc_long {CVE-2022-4378} - floppy: use a statically allocated error counter {CVE-2022-1652} - af_key: add __GFP_ZERO flag for compose_sadb_supported in function pfkey_register {CVE-2022-1353} - usb: mon: make mmapped memory read only {CVE-2022-43750}
Updated packages:
  • kernel-abi-whitelists-2.6.32-754.35.8.el6.tuxcare.els12.noarch.rpm
    sha:1715980000f7c66b679d43c62528178be9d9d6a0
  • kernel-doc-2.6.32-754.35.8.el6.tuxcare.els12.noarch.rpm
    sha:7db2551149696753970cceeafd9b47e2e5e16f4e
  • kernel-firmware-2.6.32-754.35.8.el6.tuxcare.els12.noarch.rpm
    sha:e6da93f59ba57372487febac921a04d272560123
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.