Lucene search

K
redhatRedHatRHSA-2024:6206
HistorySep 03, 2024 - 7:15 a.m.

(RHSA-2024:6206) Important: kernel security update

2024-09-0307:15:08
CWE-20
access.redhat.com
11
kernel packages
linux operating system
tcp-spoofed
ghost acks
initial sequence number
ipc/mqueue
deadlock handling
divide-by-zero
hardware erratum
direct access
vlan changes
vlan use-after-free
information leakage
memory leak
denial of service
cve page

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

AI Score

8.2

Confidence

High

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel:TCP-spoofed ghost ACKs and leak leak initial sequence number (CVE-2023-52881,RHV-2024-1001)

  • kernel: ipc/mqueue, msg, sem: avoid relying on a stack reference past its expiry (CVE-2021-47069)

  • kernel: drm: Don’t unref the same fb many times by mistake due to deadlock handling (CVE-2023-52486)

  • kernel: pstore/ram: Fix crash when setting number of cpus to an odd number (CVE-2023-52619)

  • kernel: mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again (CVE-2024-26720)

  • kernel: vfio/pci: Lock external INTx masking ops (CVE-2024-26810)

  • kernel: igc: avoid returning frame twice in XDP_REDIRECT (CVE-2024-26853)

  • kernel: net/ipv6: avoid possible UAF in ip6_route_mpath_notify() (CVE-2024-26852)

  • kernel: fs: sysfs: Fix reference leak in sysfs_break_active_protection() (CVE-2024-26993)

  • kernel: crypto: qat - resolve race condition during AER recovery (CVE-2024-26974)

  • kernel: dmaengine/idxd: hardware erratum allows potential security problem with direct access by untrusted application (CVE-2024-21823)

  • kernel: wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes (CVE-2024-35789)

  • kernel: wifi: iwlwifi: dbg-tlv: ensure NUL termination (CVE-2024-35845)

  • kernel: hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field (CVE-2021-47385)

  • kernel: net: fix out-of-bounds access in ops_init (CVE-2024-36883)

  • kernel: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation (CVE-2024-36017)

  • kernel: wifi: nl80211: don't free NULL coalescing rule (CVE-2024-36941)

  • kernel: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique(). (CVE-2024-36904)

  • kernel: net: bridge: mst: fix vlan use-after-free (CVE-2024-36979)

  • kernel: drm/amdgpu: Fix possible null pointer dereference (CVE-2023-52883)

  • kernel: phylib: fix potential use-after-free (CVE-2022-48754)

  • kernel: net: amd-xgbe: Fix skb data length underflow (CVE-2022-48743)

  • kernel: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (CVE-2024-38596)

  • kernel: net: fix information leakage in /proc/net/ptype (CVE-2022-48757)

  • kernel: r8169: Fix possible ring buffer corruption on fragmented Tx packets. (CVE-2024-38586)

  • kernel: gfs2: Fix potential glock use-after-free on unmount (CVE-2024-38570)

  • kernel: bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq (CVE-2024-38540)

  • kernel: ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound (CVE-2024-33621)

  • kernel: tcp: Fix shift-out-of-bounds in dctcp_update_alpha(). (CVE-2024-37356)

  • kernel: tls: fix missing memory barrier in tls_init (CVE-2024-36489)

  • kernel: ionic: fix use after netif_napi_del() (CVE-2024-39502)

  • kernel: virtio-net: tap: mlx5_core short frame denial of service (CVE-2024-41090)

  • kernel: virtio-net: tun: mlx5_core short frame denial of service (CVE-2024-41091)

  • kernel: NFSv4: Fix memory leak in nfs4_set_security_label (CVE-2024-41076)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected configurations

Vulners
Node
redhatkernel-rtRange4.18.0-553.16.1.rt7.357.el8_10
OR
redhatkernelRange4.18.0-553.16.1.el8_10
OR
redhatkernelRange4.18.0-372.115.1.el8_6
OR
redhatkernelRange4.18.0-477.70.1.el8_8
OR
redhatkernelRange5.14.0-427.31.1.el9_4
OR
redhatkernelRange5.14.0-284.77.1.el9_2
OR
redhatkernel-rtRange5.14.0-284.77.1.rt14.362.el9_2
OR
redhatkernel-rtRange4.18.0-553.22.1.rt7.363.el8_10
OR
redhatkernelRange4.18.0-553.22.1.el8_10
OR
redhatkernelRange5.14.0-427.33.1.el9_4
OR
redhatkernelRange5.14.0-284.80.1.el9_2
OR
redhatkernel-rtRange5.14.0-284.80.1.rt14.365.el9_2
OR
redhatkernelRange4.18.0-372.118.1.el8_6
OR
redhatkernel-rtRange4.18.0-553.27.1.rt7.368.el8_10
OR
redhatkernelRange4.18.0-553.27.1.el8_10
OR
redhatkernelRange4.18.0-372.121.1.el8_6
OR
redhatkernelRange5.14.0-427.26.1.el9_4
OR
redhatkernelRange5.14.0-284.79.1.el9_2
OR
redhatkernel-rtRange5.14.0-284.79.1.rt14.364.el9_2
OR
redhatkernelRange5.14.0-427.40.1.el9_4
OR
redhatkernelRange5.14.0-284.88.1.el9_2
OR
redhatkernel-rtRange5.14.0-284.88.1.rt14.373.el9_2
OR
redhatkernelRange4.18.0-372.113.1.el8_6
OR
redhatkernelRange5.14.0-427.28.1.el9_4
OR
redhatkernelRange5.14.0-284.75.1.el9_2
OR
redhatkernel-rtRange5.14.0-284.75.1.rt14.360.el9_2
OR
redhatkernelRange5.14.0-284.82.1.el9_2
OR
redhatkernel-rtRange5.14.0-284.82.1.rt14.367.el9_2
OR
redhatkernelRange5.14.0-503.11.1.el9_5
OR
redhatkernelRange5.14.0-427.44.1.el9_4
OR
redhatkernel-rtRange4.18.0-553.8.1.rt7.349.el8_10
OR
redhatkernelRange4.18.0-553.8.1.el8_10
OR
redhatkernelRange4.18.0-372.119.1.el8_6
OR
redhatkernelRange5.14.0-427.35.1.el9_4
OR
redhatkernelRange5.14.0-284.73.1.el9_2
OR
redhatkernel-rtRange5.14.0-284.73.1.rt14.358.el9_2
OR
redhatkernel-rtRange4.18.0-553.5.1.rt7.346.el8_10
OR
redhatkernelRange4.18.0-553.5.1.el8_10
OR
redhatkernelRange4.18.0-305.141.1.el8_4
OR
redhatkernel-rtRange4.18.0-305.141.1.rt7.217.el8_4
OR
redhatkernelRange4.18.0-372.109.1.el8_6
OR
redhatkernelRange5.14.0-427.20.1.el9_4
OR
redhatkernelRange5.14.0-70.112.1.el9_0
OR
redhatkernel-rtRange5.14.0-70.112.1.rt21.184.el9_0
OR
redhatkernelRange5.14.0-284.67.1.el9_2
OR
redhatkernel-rtRange5.14.0-284.67.1.rt14.352.el9_2
OR
redhatkernelRange5.14.0-427.24.1.el9_4
OR
redhatkernelRange5.14.0-284.84.1.el9_2
OR
redhatkernel-rtRange5.14.0-284.84.1.rt14.369.el9_2
OR
redhatkernelRange5.14.0-427.37.1.el9_4
OR
redhatkernelRange4.18.0-305.134.1.el8_4
OR
redhatkernel-rtRange4.18.0-305.134.1.rt7.210.el8_4
OR
redhatkernelRange5.14.0-284.86.1.el9_2
OR
redhatkernel-rtRange5.14.0-284.86.1.rt14.371.el9_2
OR
redhatkernelRange4.18.0-305.138.1.el8_4
OR
redhatkernel-rtRange4.18.0-305.138.1.rt7.214.el8_4
OR
redhatkernelRange4.18.0-193.141.1.el8_2
OR
redhatkernelRange4.18.0-305.139.1.el8_4
OR
redhatkernel-rtRange4.18.0-305.139.1.rt7.215.el8_4
AND
redhatenterprise_linuxMatchnfv
OR
redhatenterprise_linuxMatch8
OR
redhatenterprise_linuxMatch9
VendorProductVersionCPE
redhatkernel-rt*cpe:2.3:o:redhat:kernel-rt:*:*:*:*:*:*:*:*
redhatkernel*cpe:2.3:a:redhat:kernel:*:*:*:*:*:*:*:*
redhatenterprise_linuxnfvcpe:2.3:o:redhat:enterprise_linux:nfv:*:*:*:*:*:*:*
redhatenterprise_linux8cpe:2.3:o:redhat:enterprise_linux:8:*:*:*:*:*:*:*
redhatenterprise_linux9cpe:2.3:o:redhat:enterprise_linux:9:*:*:*:*:*:*:*

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

AI Score

8.2

Confidence

High