13 matches found
RLSA-2025:4341 Important: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: kobjectuevent: Fix OOB access within zapmodaliasenv CVE-2024-42292 kernel: ipvs: properly dereference pe in ipvsaddservice CVE-2024-42322 kernel: bonding: fix null pointer deref in...
TencentOS Server 3: kernel (TSSA-2024:0719)
"The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0719 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilitie...
TencentOS Server 2: kernel (TSSA-2024:0720)
"The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0720 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilitie...
Linux Distros Unpatched Vulnerability : CVE-2024-42292
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kobjectuevent: Fix OOB access within zapmodaliasenv zapmodaliasenv wrongly calculates size of memory block to move, so will cause OOB memory access issue if...
RHEL 9 : kernel (RHSA-2025:2270)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:2270 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use after free in i2c...
Unbreakable Enterprise kernel security update
5.15.0-300.163.18.7 - Revert 'net/mlx5: disable the 'fast unload' feature on Exadata systems' Qing Huang Orabug: 37285705 - Revert 'net/mlx5: pretend 'fast unload' succeeded on Exadata systems' Qing Huang Orabug: 37285705 5.15.0-300.163.18.6 - x86/fpu: Keep xfdstate in sync with MSRIA32XFD Adamos...
RLSA-2024:8856 Moderate: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/bluetooth: race condition in conninfomin,maxageset CVE-2024-24857 kernel: dmaengine: fix NULL pointer in channel unregistration function CVE-2023-52492 kernel: netfilter:...
Oracle Linux 8 : kernel (ELSA-2024-8856)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8856 advisory. - lib/generic-radix-tree.c: Fix rare race in genradixptralloc Waiman Long RHEL-62139 CVE-2024-47668 - bonding: fix xfrm realdev null pointer dereferenc...
Moderate: kernel-rt security update
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: net/bluetooth: race condition in conninfomin,maxageset CVE-2024-24857 kernel: dmaengine: fix NULL pointer in channel unregistratio...
ALSA-2024:8856 Moderate: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/bluetooth: race condition in conninfomin,maxageset CVE-2024-24857 kernel: dmaengine: fix NULL pointer in channel unregistration function CVE-2023-52492 kernel: netfilter:...
CVE-2024-42292
In the Linux kernel, the following vulnerability has been resolved: kobjectuevent: Fix OOB access within zapmodaliasenv zapmodaliasenv wrongly calculates size of memory block to move, so will cause OOB memory access issue if variable MODALIAS is not the last one within its @env parameter, fixed b...
CVE-2024-42292 kobject_uevent: Fix OOB access within zap_modalias_env()
In the Linux kernel, the following vulnerability has been resolved: kobjectuevent: Fix OOB access within zapmodaliasenv zapmodaliasenv wrongly calculates size of memory block to move, so will cause OOB memory access issue if variable MODALIAS is not the last one within its @env parameter, fixed b...
CVE-2024-42292
The CVE-2024-42292 entry is active and has concrete technical details: in the Linux kernel, kobject_uevent had an OOB memory access due to incorrect size calculation in zap_modalias_env(); the fix corrects the size used by memmove. The vulnerability affects kernel code path handling MODALIAS with...