|
|
Subscribe / Log in / New account

Red Hat alert RHSA-2024:1268-01 (kernel)

An update for kernel is now available for Red Hat Enterprise Linux 8.2
Advanced Update Support, Red Hat Enterprise Linux 8.2 Update Services for SAP
Solutions, and Red Hat Enterprise Linux 8.2 Telecommunications Update
Service.

Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.

The kernel packages contain the Linux kernel, the core of any Linux operating
system.

Security Fix(es):

* kernel: nf_tables: stack-out-of-bounds-read in nft_byteorder_eval()
(CVE-2023-35001,ZDI-CAN-20721)

* hw: Intel: Gather Data Sampling (GDS) side channel vulnerability
(CVE-2022-40982,Downfall)

* kernel: net/sched: sch_qfq component can be exploited if in qfq_change_agg
function happens qfq_enqueue overhead (CVE-2023-3611)

* kernel: fbcon: out-of-sync arrays in fbcon_mode_deleted due to wrong
con2fb_map assignment (CVE-2023-38409)

* kernel: net/sched: sch_hfsc UAF (CVE-2023-4623)

* kernel: null-ptr-deref vulnerabilities in sl_tx_timeout in drivers/net/slip
(CVE-2022-41858)

* kernel: nfp: use-after-free in area_cache_get() (CVE-2022-3545)

* kernel: use-after-free in l2cap_sock_release in net/bluetooth/l2cap_sock.c
(CVE-2023-40283)

* kernel: use after free in nvmet_tcp_free_crypto in NVMe (CVE-2023-5178)

* kernel: IGB driver inadequate buffer size for frames larger than MTU
(CVE-2023-45871)

* kernel: out-of-bounds write in qfq_change_class function (CVE-2023-31436)

* kernel: inactive elements in nft_pipapo_walk (CVE-2023-6817)

* kernel: ktls overwrites readonly memory pages when using function splice
with a ktls socket as destination (CVE-2024-0646)

* kernel: UAF in nftables when nft_set_lookup_global triggered after handling
named and anonymous sets in batch requests (CVE-2023-3390)

* kernel: vmwgfx: NULL pointer dereference in vmw_cmd_dx_define_query
(CVE-2022-38096)

* kernel: use-after-free in sch_qfq network scheduler (CVE-2023-4921)

Bug Fix(es):

* kernel: fbcon: out-of-sync arrays in fbcon_mode_deleted due to wrong
con2fb_map assignment (JIRA:RHEL-1203)

* How to reduce or prevent thousands of
kworker/events_freezable_power_efficient threads being created every time
multipath -ll is run (JIRA:RHEL-15054)

* kernel: net/sched: sch_hfsc UAF (JIRA:RHEL-16461)

* [SanityOnly][kernel]BUG: sleeping function called from invalid context at
kernel/locking/spinlock_rt.c:35 at: sock_map_update_elem_sys+0x85/0x2a0
(JIRA:RHEL-6126)

* kernel: hw: Intel: Gather Data Sampling (GDS) side channel vulnerability
(JIRA:RHEL-9246)

* ipoib mcast lockup fix (JIRA:RHEL-19695)

This content is licensed under the Creative Commons Attribution 4.0
International License (https://creativecommons.org/licenses/by/4.0/). If you
distribute this content, or a modified version of it, you must provide
attribution to Red Hat Inc. and provide a link to the original.


Original: https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_1268.json
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds