Lucene search

GoogleOSV:ALSA-2024:4352

HistoryJul 08, 2024 - 12:00 a.m.

Important: kernel-rt security and bug fix update

2024-07-0800:00:00

Google

osv.dev

kernel-rt

security

bug-fix

real-time-linux

high-determinism

cve-2024-26585

jira-almalinux-40882

CVSS2

4.8

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:L/Au:N/C:P/I:P/A:N

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

AI Score

7.3

Confidence

Low

EPSS

0.001

Percentile

26.2%

JSON

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

kernel: tls (CVE-2024-26585,CVE-2024-26584, CVE-2024-26583
kernel-rt: kernel: PCI interrupt mapping cause oops [almalinux-8] (CVE-2021-46909)
kernel: ipc/mqueue, msg, sem: avoid relying on a stack reference past its expiry (CVE-2021-47069)
kernel: hwrng: core - Fix page fault dead lock on mmap-ed hwrng (CVE-2023-52615)
kernel-rt: kernel: drm/amdgpu: use-after-free vulnerability (CVE-2024-26656)
kernel: Bluetooth: Avoid potential use-after-free in hci_error_reset CVE-2024-26801)
kernel: Squashfs: check the inode number is not the invalid value of zero (CVE-2024-26982)
kernel: netfilter: nf_tables: use timestamp to check for set element timeout (CVE-2024-27397)
kernel: wifi: mac80211: (CVE-2024-35789, CVE-2024-35838, CVE-2024-35845)
kernel: wifi: nl80211: reject iftype change with mesh ID change (CVE-2024-27410)
kernel: perf/core: Bail out early if the request AUX area is out of bound (CVE-2023-52835)
kernel:TCP-spoofed ghost ACKs and leak initial sequence number (CVE-2023-52881)
kernel: Bluetooth BR/EDR PIN Pairing procedure is vulnerable to an impersonation attack (CVE-2020-26555)
kernel: ovl: fix leaked dentry (CVE-2021-46972)
kernel: platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios (CVE-2021-47073)
kernel: mm/damon/vaddr-test: memory leak in damon_do_test_apply_three_regions() (CVE-2023-52560)
kernel: ppp_async: limit MRU to 64K (CVE-2024-26675)
kernel: mm/swap: fix race when skipping swapcache (CVE-2024-26759)
kernel: RDMA/mlx5: Fix fortify source warning while accessing Eth segment (CVE-2024-26907)
kernel: x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault() (CVE-2024-26906)
kernel: net: ip_tunnel: prevent perpetual headroom growth (CVE-2024-26804)
kernel: net/usb: kalmia: avoid printing uninitialized value on error path (CVE-2023-52703)
kernel: KVM: SVM: improper check in svm_set_x2apic_msr_interception allows direct access to host x2apic msrs (CVE-2023-5090)
kernel: EDAC/thunderx: Incorrect buffer size in drivers/edac/thunderx_edac.c (CVE-2023-52464)
kernel: ipv6: sr: fix possible use-after-free and null-ptr-deref (CVE-2024-26735)
kernel: mptcp: fix data re-injection from stale subflow (CVE-2024-26826)
kernel: net/bnx2x: Prevent access to a freed page in page_pool (CVE-2024-26859)
kernel: crypto: (CVE-2024-26974, CVE-2023-52813)
kernel: can: (CVE-2023-52878, CVE-2021-47456)
kernel: usb: (CVE-2023-52781, CVE-2023-52877)
kernel: net/mlx5e: fix a potential double-free in fs_any_create_groups (CVE-2023-52667)
kernel: usbnet: sanity check for maxpacket (CVE-2021-47495)
kernel: gro: fix ownership transfer (CVE-2024-35890)
kernel: erspan: make sure erspan_base_hdr is present in skb->head (CVE-2024-35888)
kernel: tipc: fix kernel warning when sending SYN message (CVE-2023-52700)
kernel: net/mlx5/mlxsw: (CVE-2024-35960, CVE-2024-36007, CVE-2024-35855)
kernel: net/mlx5e: (CVE-2024-35959, CVE-2023-52626, CVE-2024-35835)
kernel: mlxsw: (CVE-2024-35854, CVE-2024-35853, CVE-2024-35852)
kernel: net: (CVE-2024-35958, CVE-2021-47311, CVE-2021-47236, CVE-2021-47310)
kernel: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (CVE-2024-36004)
kernel: mISDN: fix possible use-after-free in HFC_cleanup() (CVE-2021-47356)
kernel: udf: Fix NULL pointer dereference in udf_symlink function (CVE-2021-47353)

Bug Fix(es):

kernel-rt: update RT source tree to the latest AlmaLinux-8.10.z kernel (JIRA:AlmaLinux-40882)
[almalinux8.9][cxgb4]BUG: using smp_processor_id() in preemptible [00000000] code: ethtool/54735 (JIRA:AlmaLinux-8779)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

access.redhat.com/errata/RHSA-2024:4352

access.redhat.com/security/cve/CVE-2020-26555

access.redhat.com/security/cve/CVE-2021-46909

access.redhat.com/security/cve/CVE-2021-46972

access.redhat.com/security/cve/CVE-2021-47069

access.redhat.com/security/cve/CVE-2021-47073

access.redhat.com/security/cve/CVE-2021-47236

access.redhat.com/security/cve/CVE-2021-47310

access.redhat.com/security/cve/CVE-2021-47311

access.redhat.com/security/cve/CVE-2021-47353

access.redhat.com/security/cve/CVE-2021-47356

access.redhat.com/security/cve/CVE-2021-47456

access.redhat.com/security/cve/CVE-2021-47495

access.redhat.com/security/cve/CVE-2023-5090

access.redhat.com/security/cve/CVE-2023-52464

access.redhat.com/security/cve/CVE-2023-52560

access.redhat.com/security/cve/CVE-2023-52615

access.redhat.com/security/cve/CVE-2023-52626

access.redhat.com/security/cve/CVE-2023-52667

access.redhat.com/security/cve/CVE-2023-52700

access.redhat.com/security/cve/CVE-2023-52703

access.redhat.com/security/cve/CVE-2023-52781

access.redhat.com/security/cve/CVE-2023-52813

access.redhat.com/security/cve/CVE-2023-52835

access.redhat.com/security/cve/CVE-2023-52877

access.redhat.com/security/cve/CVE-2023-52878

access.redhat.com/security/cve/CVE-2023-52881

access.redhat.com/security/cve/CVE-2024-26583

access.redhat.com/security/cve/CVE-2024-26584

access.redhat.com/security/cve/CVE-2024-26585

access.redhat.com/security/cve/CVE-2024-26656

access.redhat.com/security/cve/CVE-2024-26675

access.redhat.com/security/cve/CVE-2024-26735

access.redhat.com/security/cve/CVE-2024-26759

access.redhat.com/security/cve/CVE-2024-26801

access.redhat.com/security/cve/CVE-2024-26804

access.redhat.com/security/cve/CVE-2024-26826

access.redhat.com/security/cve/CVE-2024-26859

access.redhat.com/security/cve/CVE-2024-26906

access.redhat.com/security/cve/CVE-2024-26907

access.redhat.com/security/cve/CVE-2024-26974

access.redhat.com/security/cve/CVE-2024-26982

access.redhat.com/security/cve/CVE-2024-27397

access.redhat.com/security/cve/CVE-2024-27410

access.redhat.com/security/cve/CVE-2024-35789

access.redhat.com/security/cve/CVE-2024-35835

access.redhat.com/security/cve/CVE-2024-35838

access.redhat.com/security/cve/CVE-2024-35845

access.redhat.com/security/cve/CVE-2024-35852

access.redhat.com/security/cve/CVE-2024-35853

access.redhat.com/security/cve/CVE-2024-35854

access.redhat.com/security/cve/CVE-2024-35855

access.redhat.com/security/cve/CVE-2024-35888

access.redhat.com/security/cve/CVE-2024-35890

access.redhat.com/security/cve/CVE-2024-35958

access.redhat.com/security/cve/CVE-2024-35959

access.redhat.com/security/cve/CVE-2024-35960

access.redhat.com/security/cve/CVE-2024-36004

access.redhat.com/security/cve/CVE-2024-36007

bugzilla.redhat.com/1918601

bugzilla.redhat.com/2248122

bugzilla.redhat.com/2258875

bugzilla.redhat.com/2265517

bugzilla.redhat.com/2265519

bugzilla.redhat.com/2265520

bugzilla.redhat.com/2265800

bugzilla.redhat.com/2266408

bugzilla.redhat.com/2266831

bugzilla.redhat.com/2267513

bugzilla.redhat.com/2267518

bugzilla.redhat.com/2267730

bugzilla.redhat.com/2270093

bugzilla.redhat.com/2271680

bugzilla.redhat.com/2272692

bugzilla.redhat.com/2272829

bugzilla.redhat.com/2273204

bugzilla.redhat.com/2273278

bugzilla.redhat.com/2273423

bugzilla.redhat.com/2273429

bugzilla.redhat.com/2275604

bugzilla.redhat.com/2275633

bugzilla.redhat.com/2275635

bugzilla.redhat.com/2275733

bugzilla.redhat.com/2278337

bugzilla.redhat.com/2278354

bugzilla.redhat.com/2280434

bugzilla.redhat.com/2281057

bugzilla.redhat.com/2281113

bugzilla.redhat.com/2281157

bugzilla.redhat.com/2281165

bugzilla.redhat.com/2281251

bugzilla.redhat.com/2281253

bugzilla.redhat.com/2281255

bugzilla.redhat.com/2281257

bugzilla.redhat.com/2281272

bugzilla.redhat.com/2281350

bugzilla.redhat.com/2281689

bugzilla.redhat.com/2281693

bugzilla.redhat.com/2281920

bugzilla.redhat.com/2281923

bugzilla.redhat.com/2281925

bugzilla.redhat.com/2281953

bugzilla.redhat.com/2281986

bugzilla.redhat.com/2282394

bugzilla.redhat.com/2282400

bugzilla.redhat.com/2282471

bugzilla.redhat.com/2282472

bugzilla.redhat.com/2282581

bugzilla.redhat.com/2282609

bugzilla.redhat.com/2282612

bugzilla.redhat.com/2282653

bugzilla.redhat.com/2282680

bugzilla.redhat.com/2282698

bugzilla.redhat.com/2282712

bugzilla.redhat.com/2282735

bugzilla.redhat.com/2282902

bugzilla.redhat.com/2282920

errata.almalinux.org/8/ALSA-2024-4352.html

CVSS2

4.8

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:L/Au:N/C:P/I:P/A:N

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

AI Score

7.3

Confidence

Low

EPSS

0.001

Percentile

26.2%

JSON

Related for OSV:ALSA-2024:4352