[CLSA-2025:1742319747] Fix of 29 CVEs
Type:
security
Severity:
Important
Release date:
2025-03-18 17:42:33 UTC
Description:
* CVE-url: https://ubuntu.com/security/CVE-2024-50180 - fbdev: sisfb: Fix strbuf array overflow * CVE-url: https://ubuntu.com/security/CVE-2023-52522 - net: fix possible store tearing in neigh_periodic_work() * CVE-url: https://ubuntu.com/security/CVE-2024-40911 - wifi: cfg80211: Lock wiphy in cfg80211_get_station * CVE-url: https://ubuntu.com/security/CVE-2024-43863 - drm/vmwgfx: Fix a deadlock in dma buf fence polling * CVE-url: https://ubuntu.com/security/CVE-2024-44931 - gpio: prevent potential speculation leaks in gpio_device_get_desc() * CVE-url: https://ubuntu.com/security/CVE-2024-23848 - media: cec: cec-api: add locking in cec_release() - media: cec: core: avoid recursive cec_claim_log_addrs * CVE-url: https://ubuntu.com/security/CVE-2024-50229 - nilfs2: fix potential deadlock with newly created symlinks * CVE-url: https://ubuntu.com/security/CVE-2024-50171 - net: systemport: fix potential memory leak in bcm_sysport_xmit() * CVE-url: https://ubuntu.com/security/CVE-2024-50233 - staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() * CVE-url: https://ubuntu.com/security/CVE-2024-50134 - drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA * CVE-url: https://ubuntu.com/security/CVE-2024-44938 - jfs: Fix shift-out-of-bounds in dbDiscardAG * CVE-url: https://ubuntu.com/security/CVE-2024-50117 - drm/amd: Guard against bad data for ATIF ACPI method * CVE-url: https://ubuntu.com/security/CVE-2024-49902 - jfs: check if leafidx greater than num leaves per dmap tree * CVE-url: https://ubuntu.com/security/CVE-2023-52799 - jfs: fix array-index-out-of-bounds in dbFindLeaf * CVE-url: https://ubuntu.com/security/CVE-2024-49966 - ocfs2: cancel dqi_sync_work before freeing oinfo * CVE-url: https://ubuntu.com/security/CVE-2024-50267 - USB: serial: io_edgeport: fix use after free in debug printk * CVE-url: https://ubuntu.com/security/CVE-2024-50230 - nilfs2: fix kernel bug due to missing clearing of checked flag * CVE-url: https://ubuntu.com/security/CVE-2024-50302 - HID: core: zero-initialize the report buffer * CVE-url: https://ubuntu.com/security/CVE-2024-50278 - dm cache: fix out-of-bounds access to the dirty bitset when resizing - dm cache: fix potential out-of-bounds access on the first resume * CVE-url: https://ubuntu.com/security/CVE-2024-50234 - wifi: iwlegacy: Clear stale interrupts before resuming device * CVE-url: https://ubuntu.com/security/CVE-2024-50301 - security/keys: fix slab-out-of-bounds in key_task_permission * CVE-url: https://ubuntu.com/security/CVE-2024-50143 - overflow: Add __must_check attribute to check_*() helpers - compiler.h: drop fallback overflow checkers - overflow: Allow mixed type arguments - udf: fix uninit-value use in udf_get_fileshortad * CVE-url: https://ubuntu.com/security/CVE-2024-53061 - media: s5p-jpeg: prevent buffer overflows * CVE-url: https://ubuntu.com/security/CVE-2024-57798 - drm/dp-mst-helper: Remove hotplug callback - drm/dp_mst: Remove huge conditional in drm_dp_mst_handle_up_req() - drm/dp_mst: Refactor drm_dp_mst_handle_up_req() - drm/dp_mst: Rename drm_dp_add_port and drm_dp_update_port - drm/dp_mst: Handle UP requests asynchronously - drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() * CVE-url: https://ubuntu.com/security/CVE-2023-52854 - padata: make padata_do_parallel find alternate callback CPU - padata: allocate workqueue internally - crypto: pcrypt - remove padata cpumask notifier - padata, pcrypt: take CPU hotplug lock internally in padata_alloc_possible - padata: use separate workqueues for parallel and serial work - padata: unbind parallel jobs from specific CPUs - workqueue: Make alloc/apply/free_workqueue_attrs() static - workqueue: Remove GPF argument from alloc_workqueue_attrs() - workqueue: unconfine alloc/apply/free_workqueue_attrs() - crypto: pcrypt - Avoid deadlock by using per-instance padata queues - crypto: aead - pass instance to crypto_grab_aead() - crypto: pcrypt - simplify error handling in pcrypt_create_aead() - padata: Fix refcnt handling in padata_free_shell() * CVE-url: https://ubuntu.com/security/CVE-2024-53164 - net: sched: fix ordering of qlen adjustment * CVE-url: https://ubuntu.com/security/CVE-2024-47809 - dlm: fix possible lkb_resource null dereference * CVE-url: https://ubuntu.com/security/CVE-2021-47342 - ext4: fix memory leak in ext4_fill_super - ext4: fix possible UAF when remounting r/o a mmp-protected file system * CVE-url: https://ubuntu.com/security/CVE-2024-53179 - smb: client: fix use-after-free of signing key * Miscellaneous upstream changes - drm/amd/amdgpu: Fix GPR read from debugfs (v2)
Updated packages:
  • linux-buildinfo-4.15.0-245-tuxcare.els33-generic_4.15.0-245.256_amd64.deb
    sha:84920494875b2b9c49d618601d0a47c9edb5fc53
  • linux-buildinfo-4.15.0-245-tuxcare.els33-lowlatency_4.15.0-245.256_amd64.deb
    sha:3ee587367e6660ba5d8d1bda3c59aecc29c0a5ee
  • linux-cloud-tools-4.15.0-245-tuxcare.els33_4.15.0-245.256_amd64.deb
    sha:8a393acd73fd660ffcd85c6795806a9a8c33aef2
  • linux-cloud-tools-4.15.0-245-tuxcare.els33-generic_4.15.0-245.256_amd64.deb
    sha:3658182bba81f829f33a6fbbfd109b0cd07adf0a
  • linux-cloud-tools-4.15.0-245-tuxcare.els33-lowlatency_4.15.0-245.256_amd64.deb
    sha:a53588b3a5c44a5d9f9a7cc8ab53f911af45e99e
  • linux-cloud-tools-common_4.15.0-245.256_all.deb
    sha:856eb83b5c91513fcf16d710f0a51f3586257c62
  • linux-cloud-tools-generic_4.15.0.245.256_amd64.deb
    sha:316a79dc12a7dd1df4a0517ae3df071f9ad6e19a
  • linux-cloud-tools-lowlatency_4.15.0.245.256_amd64.deb
    sha:0575dd4ee717339fc2209030e26a639bb0b52661
  • linux-crashdump_4.15.0.245.256_amd64.deb
    sha:a5edb224f085c729100f5fc871f9b03c147437ea
  • linux-doc_4.15.0-245.256_all.deb
    sha:9c7923fabd8cb8331eac6dca86abdf6b4c7357c7
  • linux-generic_4.15.0.245.256_amd64.deb
    sha:560875d2283c05c25f20e70c1e7cdd8f0d1ab112
  • linux-headers-4.15.0-245-tuxcare.els33_4.15.0-245.256_all.deb
    sha:a59f0f587c4f4f4d9909ecdc69459b66337b4cde
  • linux-headers-4.15.0-245-tuxcare.els33-generic_4.15.0-245.256_amd64.deb
    sha:0a5a1a6c14a3e89b3d3b721d841f79675e22f2f0
  • linux-headers-4.15.0-245-tuxcare.els33-lowlatency_4.15.0-245.256_amd64.deb
    sha:08c727d15bf8cad929adab362bae782c6117932a
  • linux-headers-generic_4.15.0.245.256_amd64.deb
    sha:a123b0b402c99431d77d022b48ca01b5d1d8faf8
  • linux-headers-lowlatency_4.15.0.245.256_amd64.deb
    sha:32441d567691daac4a0bdfb8db9c3ed52c8d0042
  • linux-image-generic_4.15.0.245.256_amd64.deb
    sha:5a305f7f522e740318a813941f0c3f8fe9c9235f
  • linux-image-lowlatency_4.15.0.245.256_amd64.deb
    sha:111a5e292f5f8319dbdf7e4f58136b0f61ba031a
  • linux-image-unsigned-4.15.0-245-tuxcare.els33-generic_4.15.0-245.256_amd64.deb
    sha:2a56e985f01fa1be4baf2930ccaf5a363d627b29
  • linux-image-unsigned-4.15.0-245-tuxcare.els33-lowlatency_4.15.0-245.256_amd64.deb
    sha:12fad2eddb564c558e4a7085b0b27a03b6a6aa92
  • linux-libc-dev_4.15.0-245.256_amd64.deb
    sha:e20bcc243595652cfb67004efcbd135ec197aaee
  • linux-lowlatency_4.15.0.245.256_amd64.deb
    sha:7581080f0d6699cc6be599aaced304e368712eac
  • linux-modules-4.15.0-245-tuxcare.els33-generic_4.15.0-245.256_amd64.deb
    sha:3307fa61f197dda856c623efc5fa5e2c26ee93e7
  • linux-modules-4.15.0-245-tuxcare.els33-lowlatency_4.15.0-245.256_amd64.deb
    sha:b941d43db88413c4934c3bbd819a1fa89310f3bc
  • linux-modules-extra-4.15.0-245-tuxcare.els33-generic_4.15.0-245.256_amd64.deb
    sha:4ba91a7fd9aa5dbd1a1ec258ade773313e0ca98f
  • linux-source_4.15.0.245.256_all.deb
    sha:88853cdc8ff9a8526b1fd9d4cc311b3dd0573ea8
  • linux-source-4.15.0_4.15.0-245.256_all.deb
    sha:c36ee849c96459798f2135823676b1fbd87c52d8
  • linux-tools-4.15.0-245-tuxcare.els33_4.15.0-245.256_amd64.deb
    sha:ca19de8acc5c0fdc045153f2030ffeee199d0011
  • linux-tools-4.15.0-245-tuxcare.els33-generic_4.15.0-245.256_amd64.deb
    sha:8640c4e0c33e32c2548186c356aa7f7a32cf9bf9
  • linux-tools-4.15.0-245-tuxcare.els33-lowlatency_4.15.0-245.256_amd64.deb
    sha:28f74f089ddf84e843a90481a41413a66aa5fb3b
  • linux-tools-common_4.15.0-245.256_all.deb
    sha:5cec4e3080148a1c879f05a0f2968891f3707f24
  • linux-tools-generic_4.15.0.245.256_amd64.deb
    sha:4a9c57638c40ac4c8b7f60aeb080eb4d91d9eca0
  • linux-tools-host_4.15.0-245.256_all.deb
    sha:950215a3570721f0d85e56e88924ba082130977c
  • linux-tools-lowlatency_4.15.0.245.256_amd64.deb
    sha:dfff7abe17357193c0026ffa35685d711b38cb0d
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.