{"id":"CLSA-2023-1683229770","summary":"kernel: Fix of 22 CVEs","details":"- media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() {CVE-2023-1118}\n- net: mpls: fix stale pointer if allocation fails during device rename {CVE-2023-26545}\n- net/ulp: prevent ULP without clone op from entering the LISTEN status {CVE-2023-0461}\n- Bluetooth: L2CAP: Fix u8 overflow {CVE-2022-45934}\n- nfp: fix use-after-free in area_cache_get() {CVE-2022-3545}\n- Bluetooth: L2CAP: fix use-after-free in l2cap_conn_del() {CVE-2022-3640}\n- mISDN: fix use-after-free bugs in l1oip timer handlers {CVE-2022-3565}\n- usb: mon: make mmapped memory read only {CVE-2022-43750}\n- ath9k: fix use-after-free in ath9k_hif_usb_rx_cb {CVE-2022-1679}\n- netfilter: nf_queue: do not allow packet truncation below transport header offset {CVE-2022-36946}\n- netfilter: nf_tables: disallow non-stateful expression in sets earlier {CVE-2022-32250}\n- perf: Fix sys_perf_event_open() race against self {CVE-2022-1729}\n- openvswitch: fix OOB access in reserve_sfa_size() {CVE-2022-2639}\n- can: usb_8dev: usb_8dev_start_xmit(): fix double dev_kfree_skb() in error path {CVE-2022-28388}\n- drivers: net: slip: fix NPD bug in sl_tx_timeout() {CVE-2022-41858}\n- media: em28xx: initialize refcount before kref_get {CVE-2022-3239}\n- can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path {CVE-2022-28390}\n- ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE {CVE-2022-30594}\n- af_key: add __GFP_ZERO flag for compose_sadb_supported in function pfkey_register {CVE-2022-1353}\n- Bluetooth: sco: Fix lock_sock() blockage by memcpy_from_msg() {CVE-2021-3640}\n- igmp: Add ip_mc_list lock in ip_check_mc_rcu {CVE-2022-20141}\n- af_unix: fix garbage collect vs MSG_PEEK {CVE-2021-0920}","modified":"2026-06-01T00:33:20.410773963Z","published":"2023-05-04T19:49:36Z","upstream":["CVE-2023-1118","CVE-2023-26545","CVE-2023-0461","CVE-2022-45934","CVE-2022-3545","CVE-2022-3640","CVE-2022-3565","CVE-2022-43750","CVE-2022-1679","CVE-2022-36946","CVE-2022-32250","CVE-2022-1729","CVE-2022-2639","CVE-2022-28388","CVE-2022-41858","CVE-2022-3239","CVE-2022-28390","CVE-2022-30594","CVE-2022-1353","CVE-2021-3640","CVE-2022-20141","CVE-2021-0920"],"references":[{"type":"ADVISORY","url":"https://errata.cloudlinux.com/centos8.4-els/CLSA-2023-1683229770.html"}],"affected":[{"package":{"name":"bpftool","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/bpftool?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-core","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-core?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-cross-headers","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-cross-headers?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-debug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-debug-core","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-core?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-debug-devel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-devel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-debug-modules","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-modules?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-debug-modules-extra","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-modules-extra?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-debug-modules-internal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-modules-internal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-devel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-devel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-headers","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-headers?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-ipaclones-internal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-ipaclones-internal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-modules","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-modules?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-modules-extra","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-modules-extra?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-modules-internal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-modules-internal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-selftests-internal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-selftests-internal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-tools","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-tools?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-tools-libs","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-tools-libs?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"kernel-tools-libs-devel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-tools-libs-devel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"perf","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/perf?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}},{"package":{"name":"python3-perf","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/python3-perf?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els7"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1683229770.json"}}],"schema_version":"1.7.5"}