Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
almalinuxAlmaLinuxALSA-2024:4211
HistoryJul 02, 2024 - 12:00 a.m.

Important: kernel security and bug fix update

2024-07-0200:00:00
errata.almalinux.org
linux kernel
security fix
bug fix
bluetooth vulnerability
tcp spoofing
memory leak
null pointer check
improper check
use-after-free
kernel panic
fips integrity test
crypto counters
latency spikes

4.8 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:L/Au:N/C:P/I:P/A:N

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

7.4 High

AI Score

Confidence

Low

JSON

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: Bluetooth BR/EDR PIN Pairing procedure is vulnerable to an impersonation attack (CVE-2020-26555)
  • kernel:TCP-spoofed ghost ACKs and leak leak initial sequence number (CVE-2023-52881,RHV-2024-1001)
  • kernel: ovl: fix leaked dentry (CVE-2021-46972)
  • kernel: platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios (CVE-2021-47073)
  • kernel: mm/damon/vaddr-test: memory leak in damon_do_test_apply_three_regions() (CVE-2023-52560)
  • kernel: ppp_async: limit MRU to 64K (CVE-2024-26675)
  • kernel: mm/swap: fix race when skipping swapcache (CVE-2024-26759)
  • kernel: net: ip_tunnel: prevent perpetual headroom growth (CVE-2024-26804)
  • kernel: RDMA/mlx5: Fix fortify source warning while accessing Eth segment (CVE-2024-26907)
  • kernel: x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault() (CVE-2024-26906)
  • kernel: powerpc/powernv: Add a null pointer check in opal_event_init() (CVE-2023-52686)
  • kernel: powerpc/imc-pmu: Add a null pointer check in update_events_in_group() (CVE-2023-52675)
  • kernel: KVM: SVM: improper check in svm_set_x2apic_msr_interception allows direct access to host x2apic msrs (CVE-2023-5090)
  • kernel: EDAC/thunderx: Incorrect buffer size in drivers/edac/thunderx_edac.c (CVE-2023-52464)
  • kernel: ipv6: sr: fix possible use-after-free and null-ptr-deref (CVE-2024-26735)
  • kernel: mptcp: fix data re-injection from stale subflow (CVE-2024-26826)
  • kernel: net/bnx2x: Prevent access to a freed page in page_pool (CVE-2024-26859)
  • kernel: crypto: qat - resolve race condition during AER recovery (CVE-2024-26974)
  • kernel: net/mlx5e: fix a potential double-free in fs_any_create_groups (CVE-2023-52667)
  • kernel: net/mlx5: Properly link new fs rules into the tree (CVE-2024-35960)
  • kernel: net/mlx5e: Fix mlx5e_priv_init() cleanup flow (CVE-2024-35959)
  • kernel: net: ena: Fix incorrect descriptor free behavior (CVE-2024-35958)
  • kernel: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (CVE-2024-36004)
  • kernel: mISDN: fix possible use-after-free in HFC_cleanup() (CVE-2021-47356)
  • kernel: udf: Fix NULL pointer dereference in udf_symlink function (CVE-2021-47353)
  • kernel: net: ti: fix UAF in tlan_remove_one (CVE-2021-47310)

Bug Fix(es):

  • Kernel panic - kernel BUG at mm/slub.c:376! (JIRA:AlmaLinux-29783)
  • Temporary values in FIPS integrity test should be zeroized [almalinux-8.10.z] (JIRA:AlmaLinux-35361)
  • AlmaLinux8.6 - kernel: s390/cpum_cf: make crypto counters upward compatible (JIRA:AlmaLinux-36048)
  • [AlmaLinux8] blktests block/024 failed (JIRA:AlmaLinux-8130)
  • AlmaLinux8.9: EEH injections results Error: Power fault on Port 0 and other call traces(Everest/1050/Shiner) (JIRA:AlmaLinux-14195)
  • Latency spikes with Matrox G200 graphic cards (JIRA:AlmaLinux-36172)

For more details about the security issue(s), including the impact,
a CVSS score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.

OSVersionArchitecturePackageVersionFilename
almalinux8noarchkernel-abi-stablelists< 4.18.0-553.8.1.el8_10kernel-abi-stablelists-4.18.0-553.8.1.el8_10.noarch.rpm
almalinux8noarchkernel-doc< 4.18.0-553.8.1.el8_10kernel-doc-4.18.0-553.8.1.el8_10.noarch.rpm
almalinux8x86_64kernel-debug-core< 4.18.0-553.8.1.el8_10kernel-debug-core-4.18.0-553.8.1.el8_10.x86_64.rpm
almalinux8x86_64kernel< 4.18.0-553.8.1.el8_10kernel-4.18.0-553.8.1.el8_10.x86_64.rpm
almalinux8x86_64python3-perf< 4.18.0-553.8.1.el8_10python3-perf-4.18.0-553.8.1.el8_10.x86_64.rpm
almalinux8x86_64kernel-debug-modules-extra< 4.18.0-553.8.1.el8_10kernel-debug-modules-extra-4.18.0-553.8.1.el8_10.x86_64.rpm
almalinux8x86_64kernel-tools< 4.18.0-553.8.1.el8_10kernel-tools-4.18.0-553.8.1.el8_10.x86_64.rpm
almalinux8x86_64kernel-modules< 4.18.0-553.8.1.el8_10kernel-modules-4.18.0-553.8.1.el8_10.x86_64.rpm
almalinux8x86_64kernel-debug< 4.18.0-553.8.1.el8_10kernel-debug-4.18.0-553.8.1.el8_10.x86_64.rpm
almalinux8x86_64kernel-devel< 4.18.0-553.8.1.el8_10kernel-devel-4.18.0-553.8.1.el8_10.x86_64.rpm
Rows per page:
1-10 of 771

References

Related

oraclelinux 2
nessus 11
osv 3
cvelist 26
cve 26
ubuntucve 26
prion 6
debiancve 26
redhatcve 26
vulnrichment 13
nvd 26
cbl_mariner 2
openvas 1
redhat 2
intel 1
rocky 1
fedora 1
oraclelinux
oraclelinux
kernel security and bug fix update
2024-07-02 00:00:00
kernel security and bug fix update
2024-06-06 00:00:00
nessus
nessus
RHEL 8 : kernel (RHSA-2024:4211)
2024-07-02 00:00:00
Oracle Linux 8 : kernel (ELSA-2024-4211)
2024-07-03 00:00:00
AlmaLinux 8 : kernel (ALSA-2024:4211)
2024-07-02 00:00:00
osv
osv
Important: kernel security and bug fix update
2024-07-02 00:00:00
Bluetooth security notice (VU#799380.7 TLP:AMBER)
2021-06-01 00:00:00
Moderate: kernel security and bug fix update
2024-06-14 14:00:29
cvelist
cvelist
CVE-2021-47356 mISDN: fix possible use-after-free in HFC_cleanup()
2024-05-21 14:35:59
CVE-2024-26759 mm/swap: fix race when skipping swapcache
2024-04-03 17:00:43
CVE-2023-52560 mm/damon/vaddr-test: fix memory leak in damon_do_test_apply_three_regions()
2024-03-02 21:59:34
cve
cve
CVE-2023-52560
2024-03-02 22:15:48
CVE-2021-47310
2024-05-21 15:15:18
CVE-2024-26759
2024-04-03 17:15:52
ubuntucve
ubuntucve
CVE-2023-52881
2024-05-29 00:00:00
CVE-2021-47310
2024-05-21 00:00:00
CVE-2024-35958
2024-05-20 00:00:00
prion
prion
Design/Logic Flaw
2024-03-02 22:15:00
Spoofing
2024-02-27 19:04:00
Design/Logic Flaw
2024-03-01 22:15:00
debiancve
debiancve
CVE-2021-46972
2024-02-27 19:04:07
CVE-2024-26759
2024-04-03 17:15:52
CVE-2024-26906
2024-04-17 11:15:11
redhatcve
redhatcve
CVE-2021-47353
2024-05-22 11:26:41
CVE-2024-26759
2024-04-04 00:33:26
CVE-2021-47310
2024-05-28 11:03:51
vulnrichment
vulnrichment
CVE-2023-52560 mm/damon/vaddr-test: fix memory leak in damon_do_test_apply_three_regions()
2024-03-02 21:59:34
CVE-2024-35958 net: ena: Fix incorrect descriptor free behavior
2024-05-20 09:41:50
CVE-2024-35960 net/mlx5: Properly link new fs rules into the tree
2024-05-20 09:41:51
nvd
nvd
CVE-2021-47310
2024-05-21 15:15:18
CVE-2024-26759
2024-04-03 17:15:52
CVE-2021-47356
2024-05-21 15:15:21
cbl_mariner
cbl_mariner
CVE-2024-26907 affecting package kernel for versions less than 6.6.29.1-3
2024-05-17 21:38:35
CVE-2023-5090 affecting package kernel for versions less than 5.15.153.1-1
2024-04-09 20:48:36
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1487)
2023-03-09 00:00:00
redhat
redhat
(RHSA-2024:3460) Moderate: kernel-rt security and bug fix update
2024-05-29 07:38:15
(RHSA-2024:3461) Moderate: kernel security and bug fix update
2024-05-29 07:38:15
intel
intel
Intel® Wireless Bluetooth® and Killer™ Bluetooth® Advisory
2021-06-08 00:00:00
rocky
rocky
kernel security and bug fix update
2024-06-14 14:00:29
fedora
fedora
[SECURITY] Fedora 34 Update: kernel-5.12.7-300.fc34
2021-05-28 01:01:35

4.8 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:L/Au:N/C:P/I:P/A:N

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

7.4 High

AI Score

Confidence

Low

JSON
Related for ALSA-2024:4211
oraclelinux2nessus11osv3cvelist26cve26ubuntucve26prion6debiancve26redhatcve26vulnrichment13nvd26cbl_mariner2openvas1redhat2intel1rocky1fedora1