{"id":"MGASA-2024-0032","summary":"Updated kernel-linus fixes security vulnerabilities and many bugs","details":"Upstream version 6.6.14 with many bugfixes and at least the following\nsecurity fixes:\nAn out-of-bounds read vulnerability was found in smb2_dump_detail in\nfs/smb/client/smb2ops.c in the Linux Kernel. This issue could allow a\nlocal attacker to crash the system or leak internal kernel information.\n(CVE-2023-6610)\nAn unprivileged guest can cause Denial of Service (DoS) of the host by\nsending network packets to the backend, causing the backend to crash.\nData corruption or privilege escalation have not been ruled out.\nhttps://xenbits.xen.org/xsa/advisory-448.html (CVE-2023-46838)\n","modified":"2026-04-16T04:42:13.569021686Z","published":"2024-02-09T01:34:03Z","upstream":["CVE-2023-46838","CVE-2023-6610"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2024-0032.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=32792"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.1"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.2"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.3"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.4"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.5"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.6"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.7"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.8"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.9"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.10"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.11"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.12"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.13"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.14"},{"type":"ADVISORY","url":"https://xenbits.xen.org/xsa/advisory-448.html"}],"affected":[{"package":{"name":"kernel-linus","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/kernel-linus?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.6.14-1.mga9"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2024-0032.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}