{"id":"CLSA-2024-1707478061","summary":"kernel: Fix of 11 CVEs","details":"- netfilter: nf_tables: reject QUEUE/DROP verdict parameters {CVE-2024-1086}\n- RDMA/core: Refactor rdma_bind_addr {CVE-2023-2176}\n- RDMA/cma: Do not change route.addr.src_addr outside state checks\n- RDMA/cma: Ensure rdma_addr_cancel() happens before issuing more requests\n- drm/amdgpu: Fix potential fence use-after-free v2 {CVE-2023-51042}\n- drm/atomic: Fix potential use-after-free in nonblocking commits {CVE-2023-51043}\n- ext4: improve error recovery code paths in __ext4_remount() {CVE-2024-0775}\n- net: tls, update curr on splice as well {CVE-2024-0646}\n- writeback: avoid use-after-free after removing device {CVE-2024-0562}\n- smb: client: fix OOB in receive_encrypted_standard() {CVE-2024-0565}\n- netfilter: nf_tables: Reject tables of unsupported family {CVE-2023-6040}\n- ida: Fix crash in ida_free when the bitmap is empty {CVE-2023-6915}\n- atm: Fix Use-After-Free in do_vcc_ioctl {CVE-2023-51780}","modified":"2026-05-29T01:35:29.998460581Z","published":"2024-02-09T11:29:52Z","upstream":["CVE-2023-2176","CVE-2023-51042","CVE-2023-51043","CVE-2023-51780","CVE-2023-6040","CVE-2023-6915","CVE-2024-0562","CVE-2024-0565","CVE-2024-0646","CVE-2024-0775","CVE-2024-1086"],"references":[{"type":"ADVISORY","url":"https://errata.cloudlinux.com/centos8.4-els/CLSA-2024-1707478061.html"}],"schema_version":"1.7.5"}