Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
almalinuxAlmaLinuxALSA-2023:7077
HistoryNov 14, 2023 - 12:00 a.m.

Important: kernel security, bug fix, and enhancement update

2023-11-1400:00:00
errata.almalinux.org
26
linux kernel
security fix
cve-2022-4744
cve-2023-3609
cve-2023-3611
cve-2023-4128
cve-2023-4206
cve-2023-4207
cve-2023-4208
cve-2023-31436
cve-2021-43975
cve-2022-3594
cve-2022-3640
cve-2022-28388
cve-2022-38457
cve-2022-40133
cve-2023-33951
cve-2023-33952
cve-2022-40982
cve-2022-42895
cve-2022-45869
cve-2023-4155
cve-2023-30456
cve-2022-45887
cve-2023-0458
cve-2023-0590
cve-2023-0597
cve-2023-1073
cve-2023-1074
cve-2023-1079
cve-2023-1118
cve-2023-1206
cve-2023-1252
cve-2023-1382
cve-2023-1989
cve-2023-1998
cve-2023-2513
cve-2023-3161
cve-2023-3268
cve-2023-3772
cve-2023-4132
cve-2023-4732
cve-2023-23455
cve-2023-26545
cve-2023-28328
cve-2023-28772
cve-2023-31084
cve-2023-33203
cve-2023-35823
cve-2023-35824
cve-2023-35825

8.8 High

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

5.8 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

76.1%

JSON

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: tun: avoid double free in tun_free_netdev (CVE-2022-4744)
  • kernel: net/sched: multiple vulnerabilities (CVE-2023-3609, CVE-2023-3611, CVE-2023-4128, CVE-2023-4206, CVE-2023-4207, CVE-2023-4208)
  • kernel: out-of-bounds write in qfq_change_class function (CVE-2023-31436)
  • kernel: out-of-bounds write in hw_atl_utils_fw_rpc_wait (CVE-2021-43975)
  • kernel: Rate limit overflow messages in r8152 in intr_callback (CVE-2022-3594)
  • kernel: use after free flaw in l2cap_conn_del (CVE-2022-3640)
  • kernel: double free in usb_8dev_start_xmit (CVE-2022-28388)
  • kernel: vmwgfx: multiple vulnerabilities (CVE-2022-38457, CVE-2022-40133, CVE-2023-33951, CVE-2023-33952)
  • hw: Intel: Gather Data Sampling (GDS) side channel vulnerability (CVE-2022-40982)
  • kernel: Information leak in l2cap_parse_conf_req (CVE-2022-42895)
  • kernel: KVM: multiple vulnerabilities (CVE-2022-45869, CVE-2023-4155, CVE-2023-30456)
  • kernel: memory leak in ttusb_dec_exit_dvb (CVE-2022-45887)
  • kernel: speculative pointer dereference in do_prlimit (CVE-2023-0458)
  • kernel: use-after-free due to race condition in qdisc_graft (CVE-2023-0590)
  • kernel: x86/mm: Randomize per-cpu entry area (CVE-2023-0597)
  • kernel: HID: check empty report_list in hid_validate_values (CVE-2023-1073)
  • kernel: sctp: fail if no bound addresses can be used for a given scope (CVE-2023-1074)
  • kernel: hid: Use After Free in asus_remove (CVE-2023-1079)
  • kernel: use-after-free in drivers/media/rc/ene_ir.c (CVE-2023-1118)
  • kernel: hash collisions in the IPv6 connection lookup table (CVE-2023-1206)
  • kernel: ovl: fix use after free in struct ovl_aio_req (CVE-2023-1252)
  • kernel: denial of service in tipc_conn_close (CVE-2023-1382)
  • kernel: Use after free bug in btsdio_remove due to race condition (CVE-2023-1989)
  • kernel: Spectre v2 SMT mitigations problem (CVE-2023-1998)
  • kernel: ext4: use-after-free in ext4_xattr_set_entry (CVE-2023-2513)
  • kernel: fbcon: shift-out-of-bounds in fbcon_set_font (CVE-2023-3161)
  • kernel: out-of-bounds access in relay_file_read (CVE-2023-3268)
  • kernel: xfrm: NULL pointer dereference in xfrm_update_ae_params (CVE-2023-3772)
  • kernel: smsusb: use-after-free caused by do_submit_urb (CVE-2023-4132)
  • kernel: Race between task migrating pages and another task calling exit_mmap (CVE-2023-4732)
  • Kernel: denial of service in atm_tc_enqueue due to type confusion (CVE-2023-23455)
  • kernel: mpls: double free on sysctl allocation failure (CVE-2023-26545)
  • kernel: Denial of service issue in az6027 driver (CVE-2023-28328)
  • kernel: lib/seq_buf.c has a seq_buf_putmem_hex buffer overflow (CVE-2023-28772)
  • kernel: blocking operation in dvb_frontend_get_event and wait_event_interruptible (CVE-2023-31084)
  • kernel: net: qcom/emac: race condition leading to use-after-free in emac_remove (CVE-2023-33203)
  • kernel: saa7134: race condition leading to use-after-free in saa7134_finidev (CVE-2023-35823)
  • kernel: dm1105: race condition leading to use-after-free in dm1105_remove.c (CVE-2023-35824)
  • kernel: r592: race condition leading to use-after-free in r592_remove (CVE-2023-35825)
  • kernel: net/tls: tls_is_tx_ready() checked list_entry (CVE-2023-1075)
  • kernel: use-after-free bug in remove function xgene_hwmon_remove (CVE-2023-1855)
  • kernel: Use after free bug in r592_remove (CVE-2023-3141)
  • kernel: gfs2: NULL pointer dereference in gfs2_evict_inode (CVE-2023-3212)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
almalinux8noarchkernel-doc< 4.18.0-513.5.1.el8_9kernel-doc-4.18.0-513.5.1.el8_9.noarch.rpm
almalinux8noarchkernel-abi-stablelists< 4.18.0-513.5.1.el8_9kernel-abi-stablelists-4.18.0-513.5.1.el8_9.noarch.rpm
almalinux8x86_64kernel-debug< 4.18.0-513.5.1.el8_9kernel-debug-4.18.0-513.5.1.el8_9.x86_64.rpm
almalinux8x86_64bpftool< 4.18.0-513.5.1.el8_9bpftool-4.18.0-513.5.1.el8_9.x86_64.rpm
almalinux8x86_64kernel-modules< 4.18.0-513.5.1.el8_9kernel-modules-4.18.0-513.5.1.el8_9.x86_64.rpm
almalinux8x86_64kernel-devel< 4.18.0-513.5.1.el8_9kernel-devel-4.18.0-513.5.1.el8_9.x86_64.rpm
almalinux8x86_64kernel-tools-libs< 4.18.0-513.5.1.el8_9kernel-tools-libs-4.18.0-513.5.1.el8_9.x86_64.rpm
almalinux8x86_64kernel-tools< 4.18.0-513.5.1.el8_9kernel-tools-4.18.0-513.5.1.el8_9.x86_64.rpm
almalinux8x86_64kernel-debug-devel< 4.18.0-513.5.1.el8_9kernel-debug-devel-4.18.0-513.5.1.el8_9.x86_64.rpm
almalinux8x86_64kernel-modules-extra< 4.18.0-513.5.1.el8_9kernel-modules-extra-4.18.0-513.5.1.el8_9.x86_64.rpm
Rows per page:
1-10 of 771

References

Related

nessus 72
osv 15
oraclelinux 5
redhat 22
ibm 6
openvas 33
centos 1
redhatcve 5
ubuntucve 6
cve 3
virtuozzo 2
f5 1
ubuntu 14
amazon 5
photon 1
prion 1
debiancve 1
rocky 1
almalinux 2
mageia 2
debian 1
nessus
nessus
RHEL 8 : kernel-rt (RHSA-2023:6901)
2023-11-14 00:00:00
Oracle Linux 8 : kernel (ELSA-2023-7077)
2023-11-21 00:00:00
RHEL 8 : kernel (RHSA-2023:7077)
2023-11-14 00:00:00
osv
osv
Important: kernel security, bug fix, and enhancement update
2023-11-14 00:00:00
linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities
2023-06-08 14:43:55
linux-ibm, linux-ibm-5.4 vulnerabilities
2023-09-11 14:24:02
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2023-11-17 00:00:00
kernel security, bug fix, and enhancement update
2023-11-12 00:00:00
kernel security update
2023-11-22 00:00:00
redhat
redhat
(RHSA-2023:6901) Important: kernel-rt security, bug fix, and enhancement update
2023-11-14 08:39:55
(RHSA-2023:7077) Important: kernel security, bug fix, and enhancement update
2023-11-14 08:44:34
(RHSA-2024:0268) Low: Logging Subsystem 5.7.10 - Red Hat OpenShift security update
2024-01-17 10:27:53
ibm
ibm
Security Bulletin: Vulnerabilities in Linux Kernel might affect IBM Spectrum Copy Data Management
2024-01-12 16:32:54
Security Bulletin: Vulnerabilities in Linux Kernel and Apache Axis can affect IBM Storage Protect Plus
2024-01-31 12:00:02
Security Bulletin: Vulnerabilities in Linux Kernel might affect IBM Spectrum Copy Data Management
2024-01-12 16:31:57
openvas
openvas
CentOS: Security Advisory for bpftool (CESA-2023:7423)
2024-03-05 00:00:00
Ubuntu: Security Advisory (USN-6149-1)
2023-06-09 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2935)
2023-10-10 00:00:00
centos
centos
bpftool, kernel, perf, python security update
2024-01-12 19:36:38
redhatcve
redhatcve
CVE-2023-4208
2023-09-07 20:40:36
CVE-2023-4128
2024-01-30 18:52:38
CVE-2023-4206
2023-09-07 20:40:17
ubuntucve
ubuntucve
CVE-2023-4128
2023-08-10 00:00:00
CVE-2023-4207
2023-09-06 00:00:00
CVE-2023-5633
2023-10-23 00:00:00
cve
cve
CVE-2023-4128
2023-08-10 17:15:12
CVE-2023-35825
2023-06-18 22:15:09
CVE-2023-5633
2023-10-23 22:15:09
virtuozzo
virtuozzo
[Important] [Security] Virtuozzo ReadyKernel Patch 157.3 for Virtuozzo Hybrid Server 7.5
2023-07-06 00:00:00
[Important] [Security] Virtuozzo ReadyKernel Patch 159.0 for Virtuozzo Hybrid Server 7.5
2023-08-21 00:00:00
f5
f5
K000138693 : Linux kernel vulnerabilities CVE-2023-4206, CVE-2023-4207, and CVE-2023-4208
2024-02-23 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-06-08 00:00:00
Linux kernel (BlueField) vulnerabilities
2023-09-26 00:00:00
Linux kernel (IBM) vulnerabilities
2023-09-11 00:00:00
amazon
amazon
Medium: kernel
2023-05-11 17:49:00
Medium: kernel
2023-05-11 18:00:00
Important: kernel
2023-09-27 22:48:00
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0585
2023-05-24 00:00:00
prion
prion
Double free
2023-10-23 22:15:00
debiancve
debiancve
CVE-2023-5633
2023-10-23 22:15:09
rocky
rocky
kernel-rt security and bug fix update
2023-08-08 12:34:53
almalinux
almalinux
Important: kernel security, bug fix, and enhancement update
2023-08-01 00:00:00
Important: kernel-rt security and bug fix update
2023-08-01 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2023-06-19 19:29:01
Updated kernel-linus packages fix security vulnerabilities
2023-06-19 19:29:01
debian
debian
[SECURITY] [DSA 5492-1] linux security update
2023-09-09 21:40:04

8.8 High

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

5.8 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

76.1%

JSON
Related for ALSA-2023:7077
nessus72osv15oraclelinux5redhat22ibm6openvas33centos1redhatcve5ubuntucve6cve3virtuozzo2f51ubuntu14amazon5photon1prion1debiancve1rocky1almalinux2mageia2debian1