(RHSA-2024:5255) Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

• hw amd: Return Address Predictor vulnerability leading to information disclosure (AMD-SN-7005,CVE-2023-20569,RAS)

• kernel: tls: race between tx work scheduling and socket close (CVE-2024-26585)

• kernel: tls: handle backlogging of crypto requests (CVE-2024-26584)

• kernel: tls: race between async notify and socket close (CVE-2024-26583)

• kernel: gfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump (CVE-2023-52448)

• kernel: vt: fix memory overlapping when deleting chars in the buffer (CVE-2022-48627)

• kernel: net/sched: act_ct: fix skb leak and crash on ooo frags (CVE-2023-52610)

• kernel: tcp: add sanity checks to rx zerocopy (CVE-2024-26640)

• kernel: fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children stats (CVE-2024-26686)

• kernel: ext4: fix double-free of blocks due to wrong extents moved_len (CVE-2024-26704)

• kernel: ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found() (CVE-2024-26773)

• kernel: arp: Prevent overflow in arp_req_get(). (CVE-2024-26733)

• kernel: NFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102 (CVE-2024-26870)

• kernel: TIPC message reassembly use-after-free remote code execution vulnerability (CVE-2024-36886)

• kernel: Squashfs: check the inode number is not the invalid value of zero (CVE-2024-26982)

• kernel: mlxsw: spectrum_acl_tcam: Fix memory leak when canceling rehash work (CVE-2024-35852)

• kernel: tcp: properly terminate timers for kernel sockets (CVE-2024-35910)

• kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (CVE-2024-36000)

• kernel: i40e: fix vf may be used uninitialized in this function warning (CVE-2024-36020)

• kernel: net: CVE-2024-36971 kernel: UAF in network route management (CVE-2024-36971)

• kernel: net/mlx5: Discard command completions in internal error (CVE-2024-38555)

• kernel: net: bridge: xmit: make sure we have at least eth header len bytes (CVE-2024-38538)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.