kernel security update

2024-04-2200:00:00

linux.oracle.com

netlink parsing qfq_enqueue use-after-free slab-out-of-bounds

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:S/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.2%

JSON

[2.6.32-754.53.1.OL6]

net/sched: sch_qfq: refactor parsing of netlink parameters [Orabug: 36517546]
net/sched: sch_qfq: account for stab overhead in qfq_enqueue {CVE-2023-3611} [Orabug: 36517546]
net/sched: cls_fw: Fix improper refcount update leads to use-after-free {CVE-2023-3776} [Orabug: 36517546]
net: sched: sch_qfq: Fix UAF in qfq_dequeue() {CVE-2023-4921} [Orabug: 36517546]
net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg {CVE-2023-31436} [Orabug: 36517546]

OSVersionArchitecturePackageVersionFilename
oracle linux6srckernel< 2.6.32-754.53.1.el6kernel-2.6.32-754.53.1.el6.src.rpm
oracle linux6i686kernel< 2.6.32-754.53.1.el6kernel-2.6.32-754.53.1.el6.i686.rpm
oracle linux6noarchkernel-abi-whitelists< 2.6.32-754.53.1.el6kernel-abi-whitelists-2.6.32-754.53.1.el6.noarch.rpm
oracle linux6i686kernel-debug< 2.6.32-754.53.1.el6kernel-debug-2.6.32-754.53.1.el6.i686.rpm
oracle linux6i686kernel-debug-devel< 2.6.32-754.53.1.el6kernel-debug-devel-2.6.32-754.53.1.el6.i686.rpm
oracle linux6i686kernel-devel< 2.6.32-754.53.1.el6kernel-devel-2.6.32-754.53.1.el6.i686.rpm
oracle linux6noarchkernel-doc< 2.6.32-754.53.1.el6kernel-doc-2.6.32-754.53.1.el6.noarch.rpm
oracle linux6noarchkernel-firmware< 2.6.32-754.53.1.el6kernel-firmware-2.6.32-754.53.1.el6.noarch.rpm
oracle linux6i686kernel-headers< 2.6.32-754.53.1.el6kernel-headers-2.6.32-754.53.1.el6.i686.rpm
oracle linux6i686perf< 2.6.32-754.53.1.el6perf-2.6.32-754.53.1.el6.i686.rpm

OS	Version	Architecture	Package	Version	Filename
oracle linux	6	src	kernel	< 2.6.32-754.53.1.el6	kernel-2.6.32-754.53.1.el6.src.rpm
oracle linux	6	i686	kernel	< 2.6.32-754.53.1.el6	kernel-2.6.32-754.53.1.el6.i686.rpm
oracle linux	6	noarch	kernel-abi-whitelists	< 2.6.32-754.53.1.el6	kernel-abi-whitelists-2.6.32-754.53.1.el6.noarch.rpm
oracle linux	6	i686	kernel-debug	< 2.6.32-754.53.1.el6	kernel-debug-2.6.32-754.53.1.el6.i686.rpm
oracle linux	6	i686	kernel-debug-devel	< 2.6.32-754.53.1.el6	kernel-debug-devel-2.6.32-754.53.1.el6.i686.rpm
oracle linux	6	i686	kernel-devel	< 2.6.32-754.53.1.el6	kernel-devel-2.6.32-754.53.1.el6.i686.rpm
oracle linux	6	noarch	kernel-doc	< 2.6.32-754.53.1.el6	kernel-doc-2.6.32-754.53.1.el6.noarch.rpm
oracle linux	6	noarch	kernel-firmware	< 2.6.32-754.53.1.el6	kernel-firmware-2.6.32-754.53.1.el6.noarch.rpm
oracle linux	6	i686	kernel-headers	< 2.6.32-754.53.1.el6	kernel-headers-2.6.32-754.53.1.el6.i686.rpm
oracle linux	6	i686	perf	< 2.6.32-754.53.1.el6	perf-2.6.32-754.53.1.el6.i686.rpm