{"id":"CLSA-2024-1725876080","summary":"kernel: Fix of 44 CVEs","details":"- dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list {CVE-2024-40956}\n- userfaultfd: fix a race between writeprotect and exit_mmap() {CVE-2021-47461}\n- netfilter: nf_tables: use timestamp to check for set element timeout {CVE-2024-27397}\n- x86/sev: Harden #VC instruction emulation somewhat {CVE-2024-25742}\n- bpf: Avoid uninitialized value in BPF_CORE_READ_BITFIELD {CVE-2024-42161}\n- selftests/bpf: Fix BPF_CORE_READ_BITFIELD() macro {CVE-2024-42161}\n- pinctrl: core: delete incorrect free in pinctrl_enable() {CVE-2024-36940}\n- pinctrl: core: fix possible memory leak in pinctrl_enable() {CVE-2024-36940}\n- net: fix information leakage in /proc/net/ptype {CVE-2022-48757}\n- wifi: mt76: replace skb_put with skb_put_zero {CVE-2024-42225}\n- ata: libata-core: Fix double free on error {CVE-2024-41087}\n- drm/amdgpu: add error handle to avoid out-of-bounds {CVE-2024-39471}\n- drm/amd/display: Fix potential index out of bounds in color transformation function {CVE-2024-38552}\n- net: sched: sch_multiq: fix possible OOB write in multiq_tune() {CVE-2024-36978}\n- drm/vmwgfx: Fix invalid reads in fence signaled events {CVE-2024-36960}\n- net/sched: flower: Fix chain template offload {CVE-2024-26669}\n- ipv6: Remove extra counter pull before gc {CVE-2023-52340}\n- ipv6: remove max_size check inline with ipv4 {CVE-2023-52340}\n- net/dst: use a smaller percpu_counter batch for dst entries accounting {CVE-2023-52340}\n- net: add a route cache full diagnostic message {CVE-2023-52340}\n- Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg {CVE-2023-51779}\n- tcp_metrics: validate source addr length {CVE-2024-42154}\n- net: fix out-of-bounds access in ops_init {CVE-2024-36883}\n- tap: add missing verification for short frame {CVE-2024-41090}\n- tun: add missing verification for short frame {CVE-2024-41091}\n- iommu: Fix potential use-after-free during probe {CVE-2022-48796}\n- nvme: fix a possible use-after-free in controller reset during load {CVE-2022-48790}\n- nvme-tcp: fix possible use-after-free in transport error_recovery work {CVE-2022-48789}\n- nvme-rdma: fix possible use-after-free in transport error_recovery work {CVE-2022-48788}\n- ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found() {CVE-2024-26773}\n- ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() {CVE-2024-26772}\n- ext4: fix double-free of blocks due to wrong extents moved_len {CVE-2024-26704}\n- hv_netvsc: Fix race condition between netvsc_probe and netvsc_remove {CVE-2024-26698}\n- ubi: Check for too small LEB size in VTBL code {CVE-2024-25739}\n- scsi: ibmvfc: Remove BUG_ON in the case of an empty event pool {CVE-2023-52811}\n- arp: Prevent overflow in arp_req_get(). {CVE-2024-26733}\n- SUNRPC: Fix a suspicious RCU usage warning {CVE-2023-52623}\n- ext4: avoid online resizing failures due to oversized flex bg {CVE-2023-52622}\n- pstore/ram: Fix crash when setting number of cpus to an odd number {CVE-2023-52619}\n- wifi: mac80211: fix potential key use-after-free {CVE-2023-52530}\n- drm: Don't unref the same fb many times by mistake due to deadlock handling {CVE-2023-52486}\n- net: amd-xgbe: Fix skb data length underflow {CVE-2022-48743}\n- tracing: Restructure trace_clock_global() to never block {CVE-2021-46939}\n- tcp: make sure init the accept_queue's spinlocks once {CVE-2024-26614}\n- drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc {CVE-2024-42228}\n- gfs2: Fix potential glock use-after-free on unmount {CVE-2024-38570}\n- gfs2: Rename sd_{ glock =\u003e kill }_wait {CVE-2024-38570}\n- gfs2: Use container_of() for gfs2_glock(aspace) {CVE-2024-38570}\n- gfs2: Remove ill-placed consistency check {CVE-2024-38570}\n- gfs2: introduce new gfs2_glock_assert_withdraw {CVE-2024-38570}\n- gfs2: simplify gdlm_put_lock with out_free label {CVE-2024-38570}\n- gfs2: Expect -EBUSY after canceling dlm locking requests {CVE-2024-38570}\n- netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path {CVE-2024-26925}\n- netfilter: nft_limit: reject configurations that cause integer overflow {CVE-2024-26668}\n- sched/psi: Fix use-after-free in ep_remove_wait_queue() {CVE-2023-52707}\n- wait: add wake_up_pollfree() {CVE-2023-52707}","modified":"2026-06-01T00:33:22.694921257Z","published":"2024-09-09T10:01:23Z","upstream":["CVE-2024-40956","CVE-2021-47461","CVE-2024-27397","CVE-2024-25742","CVE-2024-42161","CVE-2024-36940","CVE-2022-48757","CVE-2024-42225","CVE-2024-41087","CVE-2024-39471","CVE-2024-38552","CVE-2024-36978","CVE-2024-36960","CVE-2024-26669","CVE-2023-52340","CVE-2023-51779","CVE-2024-42154","CVE-2024-36883","CVE-2024-41090","CVE-2024-41091","CVE-2022-48796","CVE-2022-48790","CVE-2022-48789","CVE-2022-48788","CVE-2024-26773","CVE-2024-26772","CVE-2024-26704","CVE-2024-26698","CVE-2024-25739","CVE-2023-52811","CVE-2024-26733","CVE-2023-52623","CVE-2023-52622","CVE-2023-52619","CVE-2023-52530","CVE-2023-52486","CVE-2022-48743","CVE-2021-46939","CVE-2024-26614","CVE-2024-42228","CVE-2024-38570","CVE-2024-26925","CVE-2024-26668","CVE-2023-52707"],"references":[{"type":"ADVISORY","url":"https://errata.cloudlinux.com/centos8.5-els/CLSA-2024-1725876080.html"}],"affected":[{"package":{"name":"bpftool","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/bpftool?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-core","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-core?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-cross-headers","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-cross-headers?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-debug","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-debug?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-debug-core","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-debug-core?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-debug-devel","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-debug-devel?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-debug-modules","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-debug-modules?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-debug-modules-extra","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-debug-modules-extra?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-debug-modules-internal","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-debug-modules-internal?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-devel","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-devel?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-headers","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-headers?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-ipaclones-internal","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-ipaclones-internal?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-modules","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-modules?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-modules-extra","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-modules-extra?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-modules-internal","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-modules-internal?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-selftests-internal","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-selftests-internal?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-tools","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-tools?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-tools-libs","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-tools-libs?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"kernel-tools-libs-devel","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/kernel-tools-libs-devel?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"perf","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/perf?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}},{"package":{"name":"python3-perf","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/python3-perf?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-348.7.1.el8_5.tuxcare.els19"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1725876080.json"}}],"schema_version":"1.7.5"}