CLSA-2023-1695715460

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1695715460.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2023-1695715460
Upstream
  • CVE-2023-3117
  • CVE-2023-4128
Published
2023-09-26T08:15:54Z
Modified
2026-05-29T01:34:20.421350044Z
Summary
kernel: Fix of 24 CVEs
Details
  • xen/xenbus: don't let xenbusgrantring() remove grants in error case {CVE-2022-23040}
  • xen/xenbus: Fix granting of vmalloc'd memory
  • xen/blkfront: don't use gnttabqueryforeign_access() for mapped status {CVE-2022-23036}
  • xen/grant-table: add gnttabtryendforeignaccess() {CVE-2022-23036}
  • xen/blkfront: don't trust the backend response data blindly
  • xen/blkfront: don't take local copy of a request from the ring page
  • xen/blkfront: read response from backend only once
  • net/sched: clsroute: No longer copy tcfresult on update to avoid use-after-free {CVE-2023-4128}
  • net/sched: clsfw: No longer copy tcfresult on update to avoid use-after-free {CVE-2023-4128}
  • net/sched: clsu32: No longer copy tcfresult on update to avoid use-after-free {CVE-2023-4128}
  • media: dvb-core: Fix use-after-free due to race condition at dvbcaen50221 {CVE-2022-45919}
  • media: dvb-core: Fix use-after-free due on race condition at dvb_net {CVE-2022-45886}
  • vcscreen: move load of struct vcdata pointer in vcs_read() to avoid UAF {CVE-2023-3567}
  • Bluetooth: L2CAP: Fix use-after-free in l2capsockready_cb {CVE-2023-40283}
  • net: vmxnet3: fix possible use-after-free bugs in vmxnet3rqallocrxbuf() {CVE-2023-4387}
  • tty: use new ttyinsertflipstringandpushbuffer() in pty_write() {CVE-2022-1462}
  • tty: extract ttyflipbuffercommit() from ttyflipbufferpush()
  • mmugather: Force tlb-flush VMPFNMAP vmas {CVE-2022-39188}
  • net/sched: cls_u32: Fix reference counter leak leading to overflow {CVE-2023-3609}
  • netfilter: nftables: incorrect error path handling with NFTMSG_NEWRULE {CVE-2023-3117}
  • relayfs: fix out-of-bounds access in relayfileread {CVE-2023-3268}
  • xfs: verify buffer contents when we skip log replay {CVE-2023-2124}
  • netfilter: nf_tables: stricter validation of element data {CVE-2022-34918}
  • tpm: fix reference counting for struct tpm_chip {CVE-2022-2977}
  • drm/virtio: Fix compile warnings (ents/nents) {CVE-2023-22998}
  • drm/virtio: Correct drmgemshmemgetsg_table() error handling {CVE-2023-22998}
  • drm/virtio: Fix NULL vs ISERR checking in virtiogpuobjectshmem_init {CVE-2023-22998}
  • gfs2: Don't deref jdesc in evict {CVE-2023-3212}
  • drm/i915/gvt: fix double free bug in split2MBgtt_entry {CVE-2022-3707}
  • drm/amdkfd: Check for null pointer after calling kmemdup {CVE-2022-3108}
  • hvnetvsc: Add check for kvmallocarray {CVE-2022-3107}
  • sfc_ef100: potential dereference of null pointer {CVE-2022-3106}
  • RDMA/uverbs: Check for null return of kmalloc_array {CVE-2022-3105}
  • drm: use the lookup lock in drmiscurrent_master {CVE-2022-1280}
  • drm: add a locked version of drmiscurrent_master {CVE-2022-1280}
  • drm: serialize drm_file.master with a new spinlock {CVE-2022-1280}
  • drm/vmwgfx: fix potential UAF in vmwgfx_surface.c {CVE-2022-1280}
  • drm: protect drmmaster pointers in drmlease.c {CVE-2022-1280}
References

Affected packages