Low: bcc

2024-05-2322:04:00

alas.aws.amazon.com

bcc

kernel headers

unprivileged attacker

compromised linux headers

cve-2024-2314

yum update

2.8 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

JSON

Issue Overview:

If kernel headers need to be extracted, bcc will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default. (CVE-2024-2314)

Affected Packages:

bcc

Note:

This advisory is applicable to Amazon Linux 2 (AL2) Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories.

Issue Correction:
Run yum update bcc to update your system.

New Packages:

aarch64:  
    bcc-0.24.0-3.amzn2.0.5.aarch64  
    bcc-devel-0.24.0-3.amzn2.0.5.aarch64  
    bcc-tools-0.24.0-3.amzn2.0.5.aarch64  
    libbpf-tools-0.24.0-3.amzn2.0.5.aarch64  
    bcc-debuginfo-0.24.0-3.amzn2.0.5.aarch64  
  
noarch:  
    bcc-doc-0.24.0-3.amzn2.0.5.noarch  
    python3-bcc-0.24.0-3.amzn2.0.5.noarch  
  
src:  
    bcc-0.24.0-3.amzn2.0.5.src  
  
x86_64:  
    bcc-0.24.0-3.amzn2.0.5.x86_64  
    bcc-devel-0.24.0-3.amzn2.0.5.x86_64  
    bcc-tools-0.24.0-3.amzn2.0.5.x86_64  
    libbpf-tools-0.24.0-3.amzn2.0.5.x86_64  
    bcc-debuginfo-0.24.0-3.amzn2.0.5.x86_64

Additional References

Red Hat: CVE-2024-2314

Mitre: CVE-2024-2314

OSVersionArchitecturePackageVersionFilename
Amazon Linux2aarch64bcc< 0.24.0-3.amzn2.0.5bcc-0.24.0-3.amzn2.0.5.aarch64.rpm
Amazon Linux2aarch64bcc-devel< 0.24.0-3.amzn2.0.5bcc-devel-0.24.0-3.amzn2.0.5.aarch64.rpm
Amazon Linux2aarch64bcc-tools< 0.24.0-3.amzn2.0.5bcc-tools-0.24.0-3.amzn2.0.5.aarch64.rpm
Amazon Linux2aarch64libbpf-tools< 0.24.0-3.amzn2.0.5libbpf-tools-0.24.0-3.amzn2.0.5.aarch64.rpm
Amazon Linux2aarch64bcc-debuginfo< 0.24.0-3.amzn2.0.5bcc-debuginfo-0.24.0-3.amzn2.0.5.aarch64.rpm
Amazon Linux2noarchbcc-doc< 0.24.0-3.amzn2.0.5bcc-doc-0.24.0-3.amzn2.0.5.noarch.rpm
Amazon Linux2noarchpython3-bcc< 0.24.0-3.amzn2.0.5python3-bcc-0.24.0-3.amzn2.0.5.noarch.rpm
Amazon Linux2x86_64bcc< 0.24.0-3.amzn2.0.5bcc-0.24.0-3.amzn2.0.5.x86_64.rpm
Amazon Linux2x86_64bcc-devel< 0.24.0-3.amzn2.0.5bcc-devel-0.24.0-3.amzn2.0.5.x86_64.rpm
Amazon Linux2x86_64bcc-tools< 0.24.0-3.amzn2.0.5bcc-tools-0.24.0-3.amzn2.0.5.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
Amazon Linux	2	aarch64	bcc	< 0.24.0-3.amzn2.0.5	bcc-0.24.0-3.amzn2.0.5.aarch64.rpm
Amazon Linux	2	aarch64	bcc-devel	< 0.24.0-3.amzn2.0.5	bcc-devel-0.24.0-3.amzn2.0.5.aarch64.rpm
Amazon Linux	2	aarch64	bcc-tools	< 0.24.0-3.amzn2.0.5	bcc-tools-0.24.0-3.amzn2.0.5.aarch64.rpm
Amazon Linux	2	aarch64	libbpf-tools	< 0.24.0-3.amzn2.0.5	libbpf-tools-0.24.0-3.amzn2.0.5.aarch64.rpm
Amazon Linux	2	aarch64	bcc-debuginfo	< 0.24.0-3.amzn2.0.5	bcc-debuginfo-0.24.0-3.amzn2.0.5.aarch64.rpm
Amazon Linux	2	noarch	bcc-doc	< 0.24.0-3.amzn2.0.5	bcc-doc-0.24.0-3.amzn2.0.5.noarch.rpm
Amazon Linux	2	noarch	python3-bcc	< 0.24.0-3.amzn2.0.5	python3-bcc-0.24.0-3.amzn2.0.5.noarch.rpm
Amazon Linux	2	x86_64	bcc	< 0.24.0-3.amzn2.0.5	bcc-0.24.0-3.amzn2.0.5.x86_64.rpm
Amazon Linux	2	x86_64	bcc-devel	< 0.24.0-3.amzn2.0.5	bcc-devel-0.24.0-3.amzn2.0.5.x86_64.rpm
Amazon Linux	2	x86_64	bcc-tools	< 0.24.0-3.amzn2.0.5	bcc-tools-0.24.0-3.amzn2.0.5.x86_64.rpm