- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1723567849.json
- JSON Data
-
https://api.osv.dev/v1/vulns/CLSA-2024-1723567849
- Upstream
- Published
- 2024-08-13T17:01:50Z
- Modified
- 2026-05-29T01:36:29.204124040Z
- Summary
-
kernel: Fix of 20 CVEs
- Details
-
- net: fix __dstnegativeadvice() race {CVE-2024-36971}
- spec: update shim Conflicts, Provides keys
- ipv6: fib6rules: avoid possible NULL dereference in fib6rule_action() {CVE-2024-36902}
- ipv6: prevent NULL dereference in ip6_output() {CVE-2024-36901}
- drm/amd/display: Atom Integrated System Info v2_2 for DCN35 {CVE-2024-36897}
- i2c: smbus: fix NULL function pointer dereference {CVE-2024-35984}
- Bluetooth: Fix memory leak in hcireqsync_complete() {CVE-2024-35978}
- net/mlx5: Properly link new fs rules into the tree {CVE-2024-35960}
- net: ena: Fix incorrect descriptor free behavior {CVE-2024-35958}
- tun: limit printing rate when illegal packet received by tun dev {CVE-2024-27013}
- Bluetooth: rfcomm: Fix null-ptr-deref in rfcommchecksecurity {CVE-2024-26903}
- bpf: Fix re-attachment branch in bpftracingprog_attach {CVE-2024-26591}
- ubi: Check for too small LEB size in VTBL code {CVE-2024-25739}
- Bluetooth: Fix atomicity violation in {min,max}keysize_set {CVE-2024-24860}
- dm: limit the number of targets and parameter size area {CVE-2024-23851}
- netfilter: nf_tables: Fix potential data-race in _nftexprtypeget() {CVE-2024-27020}
- netfilter: nf_tables: _nftexprtypeget() selects specific family type
- scsi: qla2xxx: Fix double free of the ha->vp_map pointer {CVE-2024-26930}
- scsi: qla2xxx: Fix double free of fcport {CVE-2024-26929}
- net: iptunnel: make sure to pull inner header in iptunnel_rcv() {CVE-2024-26882}
- ext4: improve error recovery code paths in _ext4remount() {CVE-2024-0775}
- netfilter: nf_tables: Reject tables of unsupported family {CVE-2023-6040}
- References
-
Affected packages
CLSA-2024-1723567849 - OSV
