[CLSA-2024:1723809128] Fix of 39 CVEs

Type:

security

Severity:

Important

Release date:

2024-08-16 11:52:11 UTC

Description:

   * CVE-url: https://ubuntu.com/security/CVE-2024-36939
     - NFS: Cleanup - add nfs_clients_exit to mirror nfs_clients_init
     - nfs: expose /proc/net/sunrpc/nfs in net namespaces
     - sunrpc: add a struct rpc_stats arg to rpc_create_args
     - nfs: make the rpc_stat per net namespace
     - nfs: Handle error of rpc_proc_register() in nfs_net_init().
   * CVE-url: https://ubuntu.com/security/CVE-2024-38600
     - ALSA: Fix deadlocks with kctl removals at disconnection
   * CVE-url: https://ubuntu.com/security/CVE-2024-36270
     - netfilter: tproxy: bail out if IP has been disabled on the device
   * CVE-url: https://ubuntu.com/security/CVE-2024-38659
     - enic: Validate length of nl attributes in enic_set_vf_port
   * CVE-url: https://ubuntu.com/security/CVE-2024-38560
     - scsi: bfa: Ensure the copied buf is NUL terminated
   * CVE-url: https://ubuntu.com/security/CVE-2024-36941
     - wifi: nl80211: don't free NULL coalescing rule
   * CVE-url: https://ubuntu.com/security/CVE-2024-27401
     - firewire: nosy: ensure user_length is taken into account when fetching
       packet contents
   * CVE-url: https://ubuntu.com/security/CVE-2024-36964
     - fs/9p: only translate RWX permissions for plain 9P2000
   * CVE-url: https://ubuntu.com/security/CVE-2024-38601
     - ring-buffer: Fix a race between readers and resize checks
   * CVE-url: https://ubuntu.com/security/CVE-2024-39475
     - fbdev: savage: Handle err return when savagefb_check_var failed
   * CVE-url: https://ubuntu.com/security/CVE-2024-38578
     - ecryptfs: Fix buffer size for tag 66 packet
   * CVE-url: https://ubuntu.com/security/CVE-2024-36950
     - firewire: ohci: mask bus reset interrupts between ISR and bottom half
   * CVE-url: https://ubuntu.com/security/CVE-2024-38589
     - netrom: fix possible dead-lock in nr_rt_ioctl()
   * CVE-url: https://ubuntu.com/security/CVE-2024-38627
     - stm class: Fix a double free in stm_register_device()
   * CVE-url: https://ubuntu.com/security/CVE-2024-36905
     - tcp: suppress too verbose messages in tcp_send_ack()
     - tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets
   * CVE-url: https://ubuntu.com/security/CVE-2024-33621
     - ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound
   * CVE-url: https://ubuntu.com/security/CVE-2024-38567
     - wifi: carl9170: add a proper sanity check for endpoints
   * CVE-url: https://ubuntu.com/security/CVE-2024-39301
     - net/9p: fix uninit-value in p9_client_rpc()
   * CVE-url: https://ubuntu.com/security/CVE-2024-36919
     - scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload
   * CVE-url: https://ubuntu.com/security/CVE-2024-36934
     - new helper: memdup_user_nul()
     - bna: ensure the copied buf is NUL terminated
   * CVE-url: https://ubuntu.com/security/CVE-2024-38558
     - net: openvswitch: fix overwriting ct original tuple for ICMPv6
   * CVE-url: https://ubuntu.com/security/CVE-2024-38565
     - USB: core: Add routines for endpoint checks in old drivers
     - wifi: ar5523: enable proper endpoint verification
   * CVE-url: https://ubuntu.com/security/CVE-2024-38621
     - media: stk1160: fix bounds checking in stk1160_copy_video()
   * CVE-url: https://ubuntu.com/security/CVE-2024-35947
     - dyndbg: fix old BUG_ON in >control parser
   * CVE-url: https://ubuntu.com/security/CVE-2024-27399
     - Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout
   * CVE-url: https://ubuntu.com/security/CVE-2024-38618
     - ALSA: timer: Simplify timer hw resolution calls
     - ALSA: timer: Set lower bound of start tick time
   * CVE-url: https://ubuntu.com/security/CVE-2024-36286
     - netfilter: nfnetlink_queue: acquire rcu_read_lock() in
       instance_destroy_rcu()
   * CVE-url: https://ubuntu.com/security/CVE-2024-38607
     - macintosh/via-macii: Fix "BUG: sleeping function called from invalid
       context"
   * CVE-url: https://ubuntu.com/security/CVE-2024-37356
     - params: lift param_set_uint_minmax to common code
     - tcp: Fix shift-out-of-bounds in dctcp_update_alpha().
   * CVE-url: https://ubuntu.com/security/CVE-2024-36886
     - tipc: fix UAF in error path
   * CVE-url: https://ubuntu.com/security/CVE-2024-38613
     - m68k: Fix spinlock race in kernel thread creation
   * CVE-url: https://ubuntu.com/security/CVE-2024-38599
     - jffs2: prevent xattr node from overflowing the eraseblock
   * CVE-url: https://ubuntu.com/security/CVE-2024-38633
     - serial: core: Provide port lock wrappers
     - serial: max3100: Update uart_driver_registered on driver removal
   * CVE-url: https://ubuntu.com/security/CVE-2024-39292
     - um: Add winch to winch_handlers before registering winch IRQ
   * CVE-url: https://ubuntu.com/security/CVE-2024-38634
     - serial: max3100: Lock port->lock when calling uart_handle_cts_change()
   * CVE-url: https://ubuntu.com/security/CVE-2024-36883
     - net: fix out-of-bounds access in ops_init
   * CVE-url: https://ubuntu.com/security/CVE-2024-39480
     - kdb: Fix buffer overflow during tab-complete
   * CVE-url: https://ubuntu.com/security/CVE-2024-36960
     - drm/vmwgfx: Fix invalid reads in fence signaled events
   * CVE-url: https://ubuntu.com/security/CVE-2024-36946
     - phonet: fix rtm_phonet_notify() skb allocation

Updated packages:

linux-buildinfo-4.4.0-263-tuxcare.els34-generic_4.4.0-263.297_amd64.deb
sha:8eeb807f4964d8883ff45682340739dd472996c6
linux-buildinfo-4.4.0-263-tuxcare.els34-lowlatency_4.4.0-263.297_amd64.deb
sha:f681e2dd7f92b807dd0dda66ea9c827bb5e4de13
linux-cloud-tools-4.4.0-263-tuxcare.els34_4.4.0-263.297_amd64.deb
sha:11c3d9c3b68c55d6e912b25726eb01102d247147
linux-cloud-tools-4.4.0-263-tuxcare.els34-generic_4.4.0-263.297_amd64.deb
sha:6eb5c091119c58915276e8dfdf142f4f009c4f61
linux-cloud-tools-4.4.0-263-tuxcare.els34-lowlatency_4.4.0-263.297_amd64.deb
sha:7318cd97b3c675206eb018a7c6cb11c8dd325c1d
linux-cloud-tools-common_4.4.0-263.297_all.deb
sha:7a2a6aa9b63baf4d06d52518d8591594f1e9b196
linux-cloud-tools-generic_4.4.0.263.297_amd64.deb
sha:5a61b956caee886aec893fd211741e337e7fb3ae
linux-cloud-tools-lowlatency_4.4.0.263.297_amd64.deb
sha:5b07ce355c73a997763b593da47cd8ae92f88691
linux-crashdump_4.4.0.263.297_amd64.deb
sha:34621b3f026cb9ebeb58f5b2beb9e96f3492fdcf
linux-doc_4.4.0-263.297_all.deb
sha:e4a58ed3bdb142a90d811beeaf669a42da036fab
linux-generic_4.4.0.263.297_amd64.deb
sha:d5bba6b9449a81b1a593eb33b143c454544129e3
linux-headers-4.4.0-263-tuxcare.els34_4.4.0-263.297_all.deb
sha:f16f13be350efe5c9643ffaf99e8e7b2f446116e
linux-headers-4.4.0-263-tuxcare.els34-generic_4.4.0-263.297_amd64.deb
sha:19612fd60b9c50030629ded4c37c4d7709f57494
linux-headers-4.4.0-263-tuxcare.els34-lowlatency_4.4.0-263.297_amd64.deb
sha:73f23293f5e830b42d75461cceace03b5f5ecf24
linux-headers-generic_4.4.0.263.297_amd64.deb
sha:edd70eefb4052806c0144598a06a4094a8f36a1e
linux-headers-lowlatency_4.4.0.263.297_amd64.deb
sha:2a6ddf315e9890577a90b00d0db0f5d68b6d69b0
linux-image-generic_4.4.0.263.297_amd64.deb
sha:44d03325a6b95fbe638a27e8c464d8277d7dabf4
linux-image-lowlatency_4.4.0.263.297_amd64.deb
sha:4aede97441e491026d4d51945f305f4c0a838e8c
linux-image-unsigned-4.4.0-263-tuxcare.els34-generic_4.4.0-263.297_amd64.deb
sha:66401ad247065adbc38547dc4d58f8407607b7c7
linux-image-unsigned-4.4.0-263-tuxcare.els34-lowlatency_4.4.0-263.297_amd64.deb
sha:fbd477c2194cff6091878888fa8d1119f108fba6
linux-libc-dev_4.4.0-263.297_amd64.deb
sha:64fb60fded47500cdc759a4af45bbcac65ce3263
linux-lowlatency_4.4.0.263.297_amd64.deb
sha:bed4296d0005dabf689262840c024ccc6a323db7
linux-modules-4.4.0-263-tuxcare.els34-generic_4.4.0-263.297_amd64.deb
sha:a48959449c1a471966a2a62b0bb6c7a6ce6f5889
linux-modules-4.4.0-263-tuxcare.els34-lowlatency_4.4.0-263.297_amd64.deb
sha:cb9aff16eb047cf84dce3957f149366f2cf1f77d
linux-modules-extra-4.4.0-263-tuxcare.els34-generic_4.4.0-263.297_amd64.deb
sha:fe82474a3ec147d3c82b31b594c7a304b55f7a74
linux-source_4.4.0.263.297_all.deb
sha:730e15eca0aabd30c90f7871af1fd545dc5d5e56
linux-source-4.4.0_4.4.0-263.297_all.deb
sha:4090e0a5d87cedadd06e87ea8ea89f84c4de887f
linux-tools-4.4.0-263-tuxcare.els34_4.4.0-263.297_amd64.deb
sha:732b363b447694cd1fa191ccaa493d1271dd166f
linux-tools-4.4.0-263-tuxcare.els34-generic_4.4.0-263.297_amd64.deb
sha:bd61403185f162936187b21c265daa849cca4a62
linux-tools-4.4.0-263-tuxcare.els34-lowlatency_4.4.0-263.297_amd64.deb
sha:ab4102c34faf5e385aa24e614ce0b8f667d59d69
linux-tools-common_4.4.0-263.297_all.deb
sha:b990aea0ab4a9cf21aa4d13b35cd3720418bbfe2
linux-tools-generic_4.4.0.263.297_amd64.deb
sha:16f1ee54976f1223df20e5cba723f03949edc5c2
linux-tools-host_4.4.0-263.297_all.deb
sha:204e852e4bf1a05d116e7fd038a2c4367ac8a19b
linux-tools-lowlatency_4.4.0.263.297_amd64.deb
sha:e48facb0081ea49d2664a9cd4771e752f4cf51a8

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.