CLSA-2024-1715000325

IB/hfi1: Fix bugs with non-PAGE_SIZE-end multi-iovec user SDMA requests {CVE-2023-52474}
afunix: Fix null-ptr-deref in unixstream_sendpage(). {CVE-2023-4622}
sched/rt: picknextrtentity(): check listentry {CVE-2023-1077}
RDMA/irdma: Prevent zero-length STAG registration {CVE-2023-25775}
block: add check that partition length needs to be aligned with block size {CVE-2023-52458}
bpf: Reject variable offset alu on PTRTOFLOW_KEYS {CVE-2024-26589}
bpf: fix check for attempt to corrupt spilled pointer {CVE-2023-52462}
KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache {CVE-2024-26598}
ext4: regenerate buddy after block freeing failed if under fc replay {CVE-2024-26601}
ext4: allow ext4getgroup_info() to fail {CVE-2024-26601}
mlxsw: spectrumacltcam: Fix stack corruption {CVE-2024-26586}
EDAC/thunderx: Fix possible out-of-bounds string access {CVE-2023-52464}
drm/radeon: check the allocworkqueue return value in radeoncrtc_init() {CVE-2023-52470}
drivers/amd/pm: fix a use-after-free in kvparsepower_table {CVE-2023-52469}
md/raid5: fix atomicity violation in raid5cachecount {CVE-2024-23307}
igb: set max size RX buffer when store bad packet is enabled {CVE-2023-45871}
netfilter: nftsetrbtree: skip end interval element from gc {CVE-2024-26581}
netfilter: nf_tables: check if catch-all set element is active in next generation {CVE-2024-1085}
netfilter: nf_tables: skip set commit for deleted/destroyed sets {CVE-2024-0193}
netfilter: nftsetpipapo: skip inactive elements during set walk {CVE-2023-6817}
netfilter: nf_tables: split async and sync catchall in two functions {CVE-2023-4244}
netfilter: nf_tables: remove catchall element in GC sync path {CVE-2023-4244}
netfilter: nftables: expose opaque set element as struct nftelem_priv {CVE-2023-4244}
netfilter: nf_tables: set backend .flush always succeeds {CVE-2023-4244}
netfilter: nftsetpipapo: no need to call pipapo_deactivate() from flush {CVE-2023-4244}
netfilter: nf_tables: work around newrule after chain binding {CVE-2023-4244}
netfilter: nftables: nftset_rbtree: fix spurious insertion failure {CVE-2023-4244}
netfilter: nf_tables: fix memleak when more than 255 elements expired {CVE-2023-4244}
netfilter: nf_tables: disable toggling dormant table state more than once {CVE-2023-4244}
netfilter: nf_tables: disallow element removal on anonymous sets {CVE-2023-4244}
netfilter: nftsethash: try later when GC hits EAGAIN on iteration {CVE-2023-4244}
netfilter: nftsetpipapo: stop GC iteration if GC transaction allocation fails {CVE-2023-4244}
netfilter: nftsetrbtree: use read spinlock to avoid datapath contention {CVE-2023-4244}
netfilter: nftsetpipapo: call nfttransgcqueuesync() in catchall GC {CVE-2023-4244}
netfilter: nf_tables: disallow rule removal from chain binding {CVE-2023-4244}
netfilter: nftsetrbtree: skip sync GC for new elements in this transaction {CVE-2023-4244}
netfilter: nf_tables: defer gc run if previous batch is still pending {CVE-2023-4244}
netfilter: nf_tables: fix out of memory error handling {CVE-2023-4244}
netfilter: nftables: use correct lock to protect gclist {CVE-2023-4244}
netfilter: nf_tables: GC transaction race with abort path {CVE-2023-4244}
netfilter: nf_tables: flush pending destroy work before netlink notifier {CVE-2023-4244}
netfilter: nft_dynset: disallow object maps {CVE-2023-4244}
netfilter: nf_tables: GC transaction race with netns dismantle {CVE-2023-4244}
netfilter: nf_tables: fix GC transaction races with netns and netlink event exit path {CVE-2023-4244}
netfilter: nf_tables: don't fail inserts if duplicate has expired {CVE-2023-4244}
netfilter: nf_tables: deactivate catchall elements in next generation {CVE-2023-4244}
netfilter: nf_tables: fix kdoc warnings after gc rework {CVE-2023-4244}
netfilter: nf_tables: fix false-positive lockdep splat {CVE-2023-4244}
netfilter: nf_tables: remove busy mark and gc batch API {CVE-2023-4244}
netfilter: nftsethash: mark set element as dead when deleting from packet path {CVE-2023-4244}
netfilter: nf_tables: adapt set backend to use GC transaction API {CVE-2023-4244}
netfilter: nftsetrbtree: fix overlap expiration walk {CVE-2023-4244}
netfilter: nf_tables: GC transaction API to avoid race with control plane {CVE-2023-4244}
netfilter: nf_tables: don't skip expired elements during walk {CVE-2023-4244}
netfilter: nf_tables: skip bound chain in netns release path {CVE-2023-4244}
netfilter: nf_tables: fix spurious set element insertion failure {CVE-2023-4244}
netfilter: nf_tables: report use refcount overflow {CVE-2023-4244}
netfilter: nf_tables: fix underflow in chain reference counter {CVE-2023-4244}
netfilter: nf_tables: disallow timeout for anonymous sets {CVE-2023-4244}
netfilter: nf_tables: disallow updates of anonymous sets {CVE-2023-4244}
netfilter: nf_tables: reject unbound chain set before commit phase {CVE-2023-4244}
netfilter: nf_tables: reject unbound anonymous set before commit phase {CVE-2023-4244}
netfilter: nf_tables: disallow element updates of bound anonymous sets {CVE-2023-4244}
netfilter: nf_tables: fix underflow in object reference counter {CVE-2023-4244}
netfilter: nf_tables: drop map element references from preparation phase {CVE-2023-4244}
netfilter: nf_tables: validate variable length element extension {CVE-2023-4244}
netfilter: nftsetpipapo: .walk does not deal with generations {CVE-2023-4244}
netfilter: nf_tables: relax set/map validation checks {CVE-2023-4244}
netfilter: nf_tables: integrate pipapo into commit protocol {CVE-2023-4244}
netfilter: nftables: upfront validation of data via nftdata_init() {CVE-2023-4244}
netfilter: nftsetrbtree: fix null deref on element insertion
netfilter: nftsetrbtree: Switch to node list walk for overlap detection
netfilter: nftsetrbtree: skip elements in transaction from garbage collection
netfilter: nf_tables: skip immediate deactivate in PREPAREERROR {CVE-2023-4015}
netfilter: ctnetlink: fix possible refcount leak in ctnetlinkcreateconntrack() {CVE-2023-7192}
Documentation/hw-vuln: Fix rST warning {CVE-2022-27672}
Documentation/hw-vuln: Add documentation for Cross-Thread Return Predictions {CVE-2022-27672}
KVM: x86: Mitigate the cross-thread return address predictions bug {CVE-2022-27672}
x86/speculation: Identify processors vulnerable to SMT RSB predictions {CVE-2022-27672}
uio: Fix use-after-free in uio_open {CVE-2023-52439}
gfs2: Fix kernel NULL pointer dereference in gfs2rgrpdump {CVE-2023-52448}

References

https://errata.tuxcare.com/almalinux9.2-esu/CLSA-2024-1715000325.html

Affected packages

TuxCare:AlmaLinux:9.2

bpftool

Package

Name: bpftool
Purl: pkg:rpm/tuxcare/bpftool?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.0.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel

Package

Name: kernel
Purl: pkg:rpm/tuxcare/kernel?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-abi-stablelists

Package

Name: kernel-abi-stablelists
Purl: pkg:rpm/tuxcare/kernel-abi-stablelists?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-core

Package

Name: kernel-core
Purl: pkg:rpm/tuxcare/kernel-core?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-cross-headers

Package

Name: kernel-cross-headers
Purl: pkg:rpm/tuxcare/kernel-cross-headers?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-debug

Package

Name: kernel-debug
Purl: pkg:rpm/tuxcare/kernel-debug?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-debug-core

Package

Name: kernel-debug-core
Purl: pkg:rpm/tuxcare/kernel-debug-core?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-debug-devel

Package

Name: kernel-debug-devel
Purl: pkg:rpm/tuxcare/kernel-debug-devel?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-debug-devel-matched

Package

Name: kernel-debug-devel-matched
Purl: pkg:rpm/tuxcare/kernel-debug-devel-matched?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-debug-modules

Package

Name: kernel-debug-modules
Purl: pkg:rpm/tuxcare/kernel-debug-modules?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-debug-modules-core

Package

Name: kernel-debug-modules-core
Purl: pkg:rpm/tuxcare/kernel-debug-modules-core?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-debug-modules-extra

Package

Name: kernel-debug-modules-extra
Purl: pkg:rpm/tuxcare/kernel-debug-modules-extra?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-debug-modules-internal

Package

Name: kernel-debug-modules-internal
Purl: pkg:rpm/tuxcare/kernel-debug-modules-internal?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-debug-modules-partner

Package

Name: kernel-debug-modules-partner
Purl: pkg:rpm/tuxcare/kernel-debug-modules-partner?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-debug-uki-virt

Package

Name: kernel-debug-uki-virt
Purl: pkg:rpm/tuxcare/kernel-debug-uki-virt?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-devel

Package

Name: kernel-devel
Purl: pkg:rpm/tuxcare/kernel-devel?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-devel-matched

Package

Name: kernel-devel-matched
Purl: pkg:rpm/tuxcare/kernel-devel-matched?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-doc

Package

Name: kernel-doc
Purl: pkg:rpm/tuxcare/kernel-doc?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-headers

Package

Name: kernel-headers
Purl: pkg:rpm/tuxcare/kernel-headers?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-ipaclones-internal

Package

Name: kernel-ipaclones-internal
Purl: pkg:rpm/tuxcare/kernel-ipaclones-internal?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-modules

Package

Name: kernel-modules
Purl: pkg:rpm/tuxcare/kernel-modules?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-modules-core

Package

Name: kernel-modules-core
Purl: pkg:rpm/tuxcare/kernel-modules-core?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-modules-extra

Package

Name: kernel-modules-extra
Purl: pkg:rpm/tuxcare/kernel-modules-extra?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-modules-internal

Package

Name: kernel-modules-internal
Purl: pkg:rpm/tuxcare/kernel-modules-internal?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-modules-partner

Package

Name: kernel-modules-partner
Purl: pkg:rpm/tuxcare/kernel-modules-partner?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-selftests-internal

Package

Name: kernel-selftests-internal
Purl: pkg:rpm/tuxcare/kernel-selftests-internal?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-tools

Package

Name: kernel-tools
Purl: pkg:rpm/tuxcare/kernel-tools?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-tools-libs

Package

Name: kernel-tools-libs
Purl: pkg:rpm/tuxcare/kernel-tools-libs?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-tools-libs-devel

Package

Name: kernel-tools-libs-devel
Purl: pkg:rpm/tuxcare/kernel-tools-libs-devel?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

kernel-uki-virt

Package

Name: kernel-uki-virt
Purl: pkg:rpm/tuxcare/kernel-uki-virt?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

perf

Package

Name: perf
Purl: pkg:rpm/tuxcare/perf?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

python3-perf

Package

Name: python3-perf
Purl: pkg:rpm/tuxcare/python3-perf?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"

rtla

Package

Name: rtla
Purl: pkg:rpm/tuxcare/rtla?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.14.0-284.30.1.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1715000325.json"