ALSA-2024:4211

See a problem?
Please try reporting it to the source first.
Source
https://errata.almalinux.org/8/ALSA-2024-4211.html
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:4211.json
JSON Data
https://api.osv.dev/v1/vulns/ALSA-2024:4211
Related
Published
2024-07-02T00:00:00Z
Modified
2024-07-02T15:12:03Z
Summary
Important: kernel security and bug fix update
Details

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: Bluetooth BR/EDR PIN Pairing procedure is vulnerable to an impersonation attack (CVE-2020-26555)
  • kernel:TCP-spoofed ghost ACKs and leak leak initial sequence number (CVE-2023-52881,RHV-2024-1001)
  • kernel: ovl: fix leaked dentry (CVE-2021-46972)
  • kernel: platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios (CVE-2021-47073)
  • kernel: mm/damon/vaddr-test: memory leak in damondotestapplythree_regions() (CVE-2023-52560)
  • kernel: ppp_async: limit MRU to 64K (CVE-2024-26675)
  • kernel: mm/swap: fix race when skipping swapcache (CVE-2024-26759)
  • kernel: net: ip_tunnel: prevent perpetual headroom growth (CVE-2024-26804)
  • kernel: RDMA/mlx5: Fix fortify source warning while accessing Eth segment (CVE-2024-26907)
  • kernel: x86/mm: Disallow vsyscall page read for copyfromkernel_nofault() (CVE-2024-26906)
  • kernel: powerpc/powernv: Add a null pointer check in opaleventinit() (CVE-2023-52686)
  • kernel: powerpc/imc-pmu: Add a null pointer check in updateeventsin_group() (CVE-2023-52675)
  • kernel: KVM: SVM: improper check in svmsetx2apicmsrinterception allows direct access to host x2apic msrs (CVE-2023-5090)
  • kernel: EDAC/thunderx: Incorrect buffer size in drivers/edac/thunderx_edac.c (CVE-2023-52464)
  • kernel: ipv6: sr: fix possible use-after-free and null-ptr-deref (CVE-2024-26735)
  • kernel: mptcp: fix data re-injection from stale subflow (CVE-2024-26826)
  • kernel: net/bnx2x: Prevent access to a freed page in page_pool (CVE-2024-26859)
  • kernel: crypto: qat - resolve race condition during AER recovery (CVE-2024-26974)
  • kernel: net/mlx5e: fix a potential double-free in fsanycreate_groups (CVE-2023-52667)
  • kernel: net/mlx5: Properly link new fs rules into the tree (CVE-2024-35960)
  • kernel: net/mlx5e: Fix mlx5eprivinit() cleanup flow (CVE-2024-35959)
  • kernel: net: ena: Fix incorrect descriptor free behavior (CVE-2024-35958)
  • kernel: i40e: Do not use WQMEMRECLAIM flag for workqueue (CVE-2024-36004)
  • kernel: mISDN: fix possible use-after-free in HFC_cleanup() (CVE-2021-47356)
  • kernel: udf: Fix NULL pointer dereference in udf_symlink function (CVE-2021-47353)
  • kernel: net: ti: fix UAF in tlanremoveone (CVE-2021-47310)

Bug Fix(es):

  • Kernel panic - kernel BUG at mm/slub.c:376! (JIRA:AlmaLinux-29783)
  • Temporary values in FIPS integrity test should be zeroized [almalinux-8.10.z] (JIRA:AlmaLinux-35361)
  • AlmaLinux8.6 - kernel: s390/cpum_cf: make crypto counters upward compatible (JIRA:AlmaLinux-36048)
  • [AlmaLinux8] blktests block/024 failed (JIRA:AlmaLinux-8130)
  • AlmaLinux8.9: EEH injections results Error: Power fault on Port 0 and other call traces(Everest/1050/Shiner) (JIRA:AlmaLinux-14195)
  • Latency spikes with Matrox G200 graphic cards (JIRA:AlmaLinux-36172)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:8 / bpftool

Package

Name
bpftool

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel

Package

Name
kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-abi-stablelists

Package

Name
kernel-abi-stablelists

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-core

Package

Name
kernel-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-cross-headers

Package

Name
kernel-cross-headers

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-debug

Package

Name
kernel-debug

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-debug-core

Package

Name
kernel-debug-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-debug-devel

Package

Name
kernel-debug-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-debug-modules

Package

Name
kernel-debug-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-debug-modules-extra

Package

Name
kernel-debug-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-devel

Package

Name
kernel-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-doc

Package

Name
kernel-doc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-headers

Package

Name
kernel-headers

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-modules

Package

Name
kernel-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-modules-extra

Package

Name
kernel-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-tools

Package

Name
kernel-tools

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-tools-libs

Package

Name
kernel-tools-libs

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-tools-libs-devel

Package

Name
kernel-tools-libs-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-zfcpdump

Package

Name
kernel-zfcpdump

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-zfcpdump-core

Package

Name
kernel-zfcpdump-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-zfcpdump-devel

Package

Name
kernel-zfcpdump-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-zfcpdump-modules

Package

Name
kernel-zfcpdump-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / kernel-zfcpdump-modules-extra

Package

Name
kernel-zfcpdump-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / perf

Package

Name
perf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10

AlmaLinux:8 / python3-perf

Package

Name
python3-perf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.8.1.el8_10