CLSA-2024-1727352561

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1727352561.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2024-1727352561
Upstream
Published
2024-09-26T12:09:25Z
Modified
2026-05-29T01:37:52.317823790Z
Summary
kernel: Fix of 19 CVEs
Details
  • tipc: Return non-zero value from tipcudpaddr2str() on error {CVE-2024-42284}
  • dev/parport: fix the array out-of-bounds risk {CVE-2024-42301}
  • RDMA/iwcm: Fix a use-after-free related to destroying CM IDs {CVE-2024-42285}
  • scsi: aacraid: Fix double-free on probe failure {CVE-2024-46673}
  • ipv6: prevent UAF in ip6sendskb() {CVE-2024-44987}
  • block/ioctl: prefer different overflow check {CVE-2024-41000}
  • ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." {CVE-2024-40984}
  • net/sched: Fix UAF when resolving a clash {CVE-2024-41040}
  • nvme: avoid double free special payload {CVE-2024-41073}
  • x86/tdx: Allow 32-bit emulation by default {CVE-2024-25744}
  • x86/entry: Do not allow external 0x80 interrupts {CVE-2024-25742}
  • x86/entry: Convert INT 0x80 emulation to IDTENTRY {CVE-2024-25742}
  • x86/coco: Disable 32-bit emulation by default on TDX and SEV {CVE-2024-25742}
  • x86: Make IA32_EMULATION boot time configurable {CVE-2024-25744}
  • x86/entry: Make IA32 syscalls' availability depend on ia32_enabled() {CVE-2024-25744}
  • x86/elf: Make loading of 32bit processes depend on ia32_enabled() {CVE-2024-25744}
  • x86/entry: Compile entrySYSCALL32ignore() unconditionally {CVE-2024-25744}
  • x86/entry: Rename ignore_sysret() {CVE-2024-25744}
  • x86/cpu: Don't write CSTAR MSR on Intel CPUs {CVE-2024-25744}
  • x86: Introduce ia32_enabled() {CVE-2024-25742}
  • x86: Fix misspelled Kconfig symbols {CVE-2024-25744}
  • x86/sev: Harden #VC instruction emulation somewhat {CVE-2024-25742}
  • objtool: Add entry UNRET validation {CVE-2024-25744}
  • x86/cpu: Switch to archcpufinalize_init() {CVE-2022-40982}
  • init: Provide archcpufinalize_init() {CVE-2022-40982}
  • gfs2: Fix potential glock use-after-free on unmount {CVE-2024-38570}
  • gfs2: Rename sd_{ glock => kill }_wait {CVE-2024-38570}
  • gfs2: Remove ill-placed consistency check {CVE-2024-38570}
  • gfs2: simplify gdlmputlock with out_free label {CVE-2024-38570}
  • dmaengine: idxd: Fix possible Use-After-Free in irqprocesswork_list {CVE-2024-40956}
  • drm/amdgpu: add error handle to avoid out-of-bounds {CVE-2024-39471}
  • net/mlx5: Discard command completions in internal error {CVE-2024-38555}
  • net: bridge: xmit: make sure we have at least eth header len bytes {CVE-2024-38538}
  • netfilter: nftables: exthdr: fix 4-byte stack OOB write {CVE-2023-52628}
  • perf/core: Fix potential NULL deref {CVE-2023-5717}
  • perf: Disallow mis-matched inherited group reads {CVE-2023-5717}
References

Affected packages