CLSA-2023-1690287378

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1690287378.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2023-1690287378
Upstream
Published
2023-07-25T12:19:21Z
Modified
2026-05-29T01:35:27.933646291Z
Summary
kernel: Fix of 28 CVEs
Details
  • ALSA: pcm: Fix races among concurrent prealloc proc writes {CVE-2022-1048}
  • ALSA: pcm: Fix races among concurrent prepare and hwparams/hwfree calls {CVE-2022-1048}
  • ALSA: pcm: Fix races among concurrent read/write and buffer changes {CVE-2022-1048}
  • ALSA: pcm: Fix races among concurrent hwparams and hwfree calls {CVE-2022-1048}
  • x86/elf: Disable automatic READIMPLIESEXEC on 64-bit {CVE-2022-25265}
  • x86/elf: Split READIMPLIESEXEC from executable PTGNUSTACK {CVE-2022-25265}
  • x86/elf: Add table to document READIMPLIESEXEC {CVE-2022-25265}
  • drm/i915: fix TLB invalidation for Gen12 video and compute engines {CVE-2022-4139}
  • drm/i915: Flush TLBs before releasing backing store {CVE-2022-0330}
  • xfs: fix up non-directory creation in SGID directories {CVE-2021-4037}
  • tcp: Fix data races around icsk->icskafops. {CVE-2022-3566}
  • ipv6: Fix data races around sk->sk_prot. {CVE-2022-3567}
  • ipv6: annotate some data-races around sk->sk_prot {CVE-2022-3567}
  • ipv6: use indirect call wrappers for {tcp, udpv6}_{recv, send}msg() {CVE-2022-3567}
  • netfilter: nf_tables: deactivate anonymous set from preparation phase {CVE-2023-32233}
  • netfilter: nf_tables: bogus EBUSY when deleting set after flush
  • media: dmxdev: fix UAF when dvbregisterdevice() fails {CVE-2022-41218}
  • l2tp: Don't sleep and disable BH under writer-side skcallbacklock {CVE-2022-4129}
  • l2tp: Serialize access to skuserdata with skcallbacklock {CVE-2022-4129}
  • net: fix a concurrency bug in l2tptunnelregister() {CVE-2022-4129}
  • Bluetooth: L2CAP: Fix memory leak in vhci_write {CVE-2022-3619}
  • Bluetooth: L2CAP: Fix handling fragmented length
  • wifi: brcmfmac: Fix potential buffer overflow in brcmffwehevent_worker() {CVE-2022-3628}
  • wifi: cfg80211: avoid nontransmitted BSS list corruption {CVE-2022-42721}
  • cfg80211: scan: fix RCU in cfg80211addnontrans_list()
  • wifi: cfg80211: fix BSS refcounting bugs {CVE-2022-42720}
  • cfg80211: hold bsslock while updating nontranslist
  • ALSA: pcm: Move rwsem lock inside sndctlelem_read to prevent UAF {CVE-2023-0266}
  • ALSA: control: Drop superfluous sndpowerwait() calls
  • ALSA: control: Track in-flight control read/write/tlv accesses
  • ALSA: control - introduce sndctlnotify_one() helper
  • Bluetooth: L2CAP: Fix use-after-free caused by l2capreassemblesdu {CVE-2022-3564}
  • netfilter: nfconntrackirc: Tighten matching on DCC message {CVE-2022-2663}
  • netfilter: nfconntrackirc: Fix forged IP logic {CVE-2022-2663}
  • KVM: x86: Avoid theoretical NULL pointer dereference in kvmirqdeliverytoapic_fast() {CVE-2022-2153}
  • KVM: Add infrastructure and macro to mark VM as bugged
  • KVM: x86/mmu: fix NULL pointer dereference on guest INVPCID {CVE-2022-1789}
  • tcp/udp: Fix memory leak in ipv6renewoptions(). {CVE-2022-3524}
  • proc: procskipspaces() shouldn't think it is working on C strings {CVE-2022-4378}
  • proc: avoid integer type confusion in getproclong {CVE-2022-4378}
  • wifi: mac80211: fix crash in beacon protection for P2P-device {CVE-2022-42722}
  • net: sched: cbq: dont intepret cls results when asked to drop {CVE-2023-23454}
  • ipv6: raw: Deduct extension header length in rawv6pushpending_frames {CVE-2023-0394}
  • net: sched: disallow noqueue for qdisc classes {CVE-2022-47929}
  • wifi: cfg80211: fix u8 overflow in cfg80211updatenotlisted_nontrans() {CVE-2022-41674}
  • afkey: Do not call xfrmprobe_algs in parallel {CVE-2022-3028}
  • dm verity: set DMTARGETIMMUTABLE feature flag {CVE-2022-20572}
References

Affected packages