[CLSA-2023:1688072342] Fix of 5 CVEs
Type:
security
Severity:
Important
Release date:
2023-06-29 20:59:07 UTC
Description:
* CVE-2023-32233 // CVE-url: https://ubuntu.com/security/CVE-2023-32233 - netfilter: nf_tables: add nft_set_is_anonymous() helper - netfilter: nf_tables: split set destruction in deactivate and destroy phase - netfilter: nf_tables: unbind set in rule from commit path - netfilter: nf_tables: fix set double-free in abort path - netfilter: nf_tables: bogus EBUSY when deleting set after flush - netfilter: nf_tables: use-after-free in failing rule with bound set - netfilter: nf_tables: deactivate anonymous set from preparation phase * Bionic update: upstream stable patchset 2018-12-12 (LP: #1808185) // CVE- url: https://ubuntu.com/security/CVE-2023-32233 - netfilter: nf_tables: bogus EBUSY in chain deletions * CVE-url: https://ubuntu.com/security/CVE-2023-32233 - netfilter: nf_tables: release objects on netns destruction - netfilter: nf_tables: destroy basechain and rules on netdevice removal - netfilter: nft_hash: support deletion of inactive elements - netfilter: nf_tables: remove check against removal of inactive objects - netfilter: nfnetlink: pass down netns pointer to call() and call_rcu() - netfilter: nf_tables: introduce nft_setelem_parse_flags() helper - netfilter: nft_rbtree: introduce nft_rbtree_interval_end() helper - netfilter: nft_rbtree: allow adjacent intervals with dynamic updates - netfilter: nf_tables: parse element flags from nft_del_setelem() - netfilter: nf_tables: reject loops from set element jump to chain - netfilter: nf_tables: fix wrong destroy anonymous sets if binding fails - netfilter: nf_tables: add generic macros to check for generation mask - netfilter: nf_tables: add generation mask to tables - netfilter: nf_tables: add generation mask to chains - netfilter: nf_tables: add generation mask to sets - netfilter: nf_tables: get rid of NFT_BASECHAIN_DISABLED - netlink: add NLM_F_NONREC flag for deletion requests - netfilter: nf_tables: add support for inverted logic in nft_lookup - netfilter: nf_tables: get rid of possible_net_t from set and basechain - netfilter: nf_tables: simplify the basic expressions' init routine - netfilter: nf_tables: fix *leak* when expr clone fail - netfilter: nf_tables: missing sanitization in data from userspace - netfilter: nf_tables: revisit chain/object refcounting from elements * CVE-2023-1380 // CVE-url: https://ubuntu.com/security/CVE-2023-1380 - wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() * CVE-url: https://ubuntu.com/security/CVE-2023-2124 - xfs: verify buffer contents when we skip log replay * Bionic update: upstream stable patchset 2023-04-05 (LP: #2015399) // CVE- url: https://ubuntu.com/security/CVE-2023-32269 - netrom: Fix use-after-free caused by accept on already connected socket * Bionic update: upstream stable patchset 2023-04-05 (LP: #2015399) // CVE- url: https://ubuntu.com/security/CVE-2023-2162 - scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress
Updated packages:
  • linux-buildinfo-4.4.0-241-tuxcare.els12-generic_4.4.0-241.275_amd64.deb
    sha:7a177a183ae345416e8e6453be3a4f63322b10ff
  • linux-buildinfo-4.4.0-241-tuxcare.els12-lowlatency_4.4.0-241.275_amd64.deb
    sha:f3af331b8ab2d98fecf8875e2966ebfabdcf414d
  • linux-cloud-tools-4.4.0-241-tuxcare.els12_4.4.0-241.275_amd64.deb
    sha:18d9449de115eb5e59d41ad057fc776872818f4b
  • linux-cloud-tools-4.4.0-241-tuxcare.els12-generic_4.4.0-241.275_amd64.deb
    sha:c0d8bf0749ff368bf6e358894fc17384231f3c80
  • linux-cloud-tools-4.4.0-241-tuxcare.els12-lowlatency_4.4.0-241.275_amd64.deb
    sha:708a92a09ab26c22af8a4d641fb188c9a57a9e2f
  • linux-cloud-tools-common_4.4.0-241.275_all.deb
    sha:6d2db085c0e1af28e8e92da89d1c49878efed229
  • linux-cloud-tools-generic_4.4.0.241.275_amd64.deb
    sha:de069c025740a8ed1fbb34881b05cf7c6eabd4d4
  • linux-cloud-tools-lowlatency_4.4.0.241.275_amd64.deb
    sha:6e1bf197f4640d24569c886a5fc6fcff3f395281
  • linux-crashdump_4.4.0.241.275_amd64.deb
    sha:ccb70a93241da5895940140b49d45203442af48a
  • linux-doc_4.4.0-241.275_all.deb
    sha:a93a91c150e725d4dc71ba7f1120144e76f110e1
  • linux-generic_4.4.0.241.275_amd64.deb
    sha:0c07a66fa300e9fb1c6703c02a3754154c33dea1
  • linux-headers-4.4.0-241-tuxcare.els12_4.4.0-241.275_all.deb
    sha:c895aeac657c6a0d03c66eafb85095e1ce3825f3
  • linux-headers-4.4.0-241-tuxcare.els12-generic_4.4.0-241.275_amd64.deb
    sha:372bc9ac2d46f17b6cfe304203d13ba3def68afb
  • linux-headers-4.4.0-241-tuxcare.els12-lowlatency_4.4.0-241.275_amd64.deb
    sha:be5d9993dd6cc0ceaad3a337a531a7221ad84de5
  • linux-headers-generic_4.4.0.241.275_amd64.deb
    sha:7e1cf4dfa2b3c475361d4e209a65b62135b60133
  • linux-headers-lowlatency_4.4.0.241.275_amd64.deb
    sha:4f81e05cbd3d0f2f3d456053afe500903d934a97
  • linux-image-generic_4.4.0.241.275_amd64.deb
    sha:8256704cdc06f1118db62980ae9ac2f2cffdd965
  • linux-image-lowlatency_4.4.0.241.275_amd64.deb
    sha:e9941c657e5da682bb0caeea8a1bc47644652290
  • linux-image-unsigned-4.4.0-241-tuxcare.els12-generic_4.4.0-241.275_amd64.deb
    sha:3cc027153b17a047e89ddfeedb3543b21053b9bc
  • linux-image-unsigned-4.4.0-241-tuxcare.els12-lowlatency_4.4.0-241.275_amd64.deb
    sha:075b6cdc81a69bd5016ac849cfd2a8ff78e607f9
  • linux-libc-dev_4.4.0-241.275_amd64.deb
    sha:fd9318e438650b3253122a025e36e8f8ac3d11ea
  • linux-lowlatency_4.4.0.241.275_amd64.deb
    sha:e9ce3e7c5ee15758c7f9721b8f43cc9df9a3dd60
  • linux-modules-4.4.0-241-tuxcare.els12-generic_4.4.0-241.275_amd64.deb
    sha:2a98dd73e7e921bbde9d337670a176999b959f55
  • linux-modules-4.4.0-241-tuxcare.els12-lowlatency_4.4.0-241.275_amd64.deb
    sha:e9cda23df5461d544a6ad03b047dc5737f85ce08
  • linux-modules-extra-4.4.0-241-tuxcare.els12-generic_4.4.0-241.275_amd64.deb
    sha:12be87b42387db61964e68dbe36f346300ad87dd
  • linux-source_4.4.0.241.275_all.deb
    sha:6d85b5e4446cd88546c6ebade4d9531fad2b83cc
  • linux-source-4.4.0_4.4.0-241.275_all.deb
    sha:f4f8e11def091a5748881060400f8e8d8d4d7a3a
  • linux-tools-4.4.0-241-tuxcare.els12_4.4.0-241.275_amd64.deb
    sha:8efd70ba35d7e3d37088e0f603047ade2d3f528f
  • linux-tools-4.4.0-241-tuxcare.els12-generic_4.4.0-241.275_amd64.deb
    sha:2711410e4e8e4300726bbfd5472a5ec255e9719f
  • linux-tools-4.4.0-241-tuxcare.els12-lowlatency_4.4.0-241.275_amd64.deb
    sha:9854f3aa1bb8e734c388aa2dbd4f369dcb0e05ee
  • linux-tools-common_4.4.0-241.275_all.deb
    sha:245f026a11245447fdcbadffd430355bab88d28d
  • linux-tools-generic_4.4.0.241.275_amd64.deb
    sha:b014c0cddde2f4f5d6fa378a86e575637c0797c4
  • linux-tools-host_4.4.0-241.275_all.deb
    sha:b0e60f515aee8dce0e1b42761d859dfac3a3a89a
  • linux-tools-lowlatency_4.4.0.241.275_amd64.deb
    sha:07c6037839a1e7cbaafc1b863ba45eaa027689d0
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.