CLSA-2024-1729874131

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1729874131.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2024-1729874131
Upstream
Published
2024-10-25T17:03:00Z
Modified
2026-05-29T01:35:49.947086865Z
Summary
kernel: Fix of 43 CVEs
Details
  • drm/amdgpu: Validate TA binary size {CVE-2024-44977}
  • drm/amd/display: Avoid overflow from uint32t to uint8t {CVE-2024-47661}
  • scsi: lpfc: Handle mailbox timeouts in lpfcgetsfp_info {CVE-2024-46842}
  • ALSA: line6: Fix racy access to midibuf {CVE-2024-44954}
  • exec: Fix ToCToU between perm check and set-uid/gid usage {CVE-2024-43882}
  • drm/amd/display: Check link_index before accessing dc->links[] {CVE-2024-46813}
  • drm/amdgpu/mes: fix mes ring buffer overflow {CVE-2024-46700}
  • RDMA/iwcm: Fix a use-after-free related to destroying CM IDs {CVE-2024-42285}
  • scsi: aacraid: Fix double-free on probe failure {CVE-2024-46673}
  • ipv6: prevent UAF in ip6sendskb() {CVE-2024-44987}
  • drm/amdgpu: fix mc_data out-of-bounds read warning {CVE-2024-46722}
  • ftrace: Fix possible use-after-free issue in ftrace_location() {CVE-2024-38588}
  • ftrace: Fix possible warning on checking all pages used in ftraceprocesslocs() {CVE-2024-38588}
  • ftrace: Store the order of pages allocated in ftrace_page {CVE-2024-38588}
  • ftrace: Check if pages were allocated before calling free_pages() {CVE-2024-38588}
  • x86/ibt,ftrace: Search for fentry location {CVE-2024-38588}
  • drm/amdgpu: fix ucode out-of-bounds read warning {CVE-2024-46723}
  • VMCI: Fix use-after-free when removing resource in vmciresourceremove() {CVE-2024-46738}
  • sch/netem: fix use after free in netem_dequeue {CVE-2024-46800}
  • drm/amdgpu: Fix out-of-bounds write warning {CVE-2024-46725}
  • drm/amdgpu: Fix out-of-bounds read of dfv17channelnumber {CVE-2024-46724}
  • Squashfs: sanity check symbolic link size {CVE-2024-46744}
  • drm/amd/pm: Fix negative array index read {CVE-2024-46821}
  • drm/amd/display: Check gpio_id before used as array index {CVE-2024-46818}
  • KVM: x86: do not set st->preempted when going back to user space {CVE-2022-39189}
  • net: Return errno in sk->skprot->getport(). {CVE-2023-0461}
  • drm/amd/display: Fix index may exceed array range within fpuupdatebwboundingbox {CVE-2024-46811}
  • ext4: do not create EA inode under buffer lock {CVE-2024-40972}
  • ext4: fold quota accounting into ext4xattrinodelookupcreate() {CVE-2024-40972}
  • ext4: check the return value of ext4xattrinodedecref() {CVE-2024-40972}
  • ext4: remove duplicate definition of ext4xattribodyinlineset() {CVE-2024-40972}
  • nvme: avoid double free special payload {CVE-2024-41073}
  • drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL {CVE-2023-52817}
  • wifi: mac80211: Avoid address calculations via out of bounds array indexing {CVE-2024-41071}
  • mISDN: Fix a use after free in hfcmulti_tx() {CVE-2024-42280}
  • tipc: Return non-zero value from tipcudpaddr2str() on error {CVE-2024-42284}
  • dev/parport: fix the array out-of-bounds risk {CVE-2024-42301}
  • parport: Standardize use of printmode {CVE-2024-42301}
  • parport: Convert printk(KERN<LEVEL> to pr<level> {CVE-2024-42301}
  • parport: parport_pc: Mark expected switch fall-through {CVE-2024-42301}
  • protect the fetch of ->fd[fd] in do_dup2() from mispredictions {CVE-2024-42265}
  • leds: trigger: Unregister sysfs attributes before calling deactivate() {CVE-2024-43830}
  • hwmon: (lm95234) Fix underflows seen when writing limit attributes {CVE-2024-46758}
  • HID: amdsfh: free driverdata after destroying hid device {CVE-2024-46746}
  • hwmon: (adc128d818) Fix underflows seen when writing limit attributes {CVE-2024-46759}
  • hwmon: (w83627ehf) Fix underflows seen when writing limit attributes {CVE-2024-46756}
  • netns: Make getnetns() handle zero refcount net {CVE-2024-40958}
  • net: make getnetns return error if NET_NS is disabled {CVE-2024-40958}
  • mm, slub: fix potential memoryleak in kmemcacheopen() {CVE-2021-47466}
  • slub: don't panic for memcg kmem cache creation failure {CVE-2021-47466}
  • tunnels: fix out of bounds access when building IPv6 PMTU error {CVE-2024-26665}
  • xfs: don't walk off the end of a directory data block {CVE-2024-42084}
  • firmware: cs_dsp: Fix overflow checking of wmfw header {CVE-2024-41039}
  • hwmon: (nct6775-core) Fix underflows seen when writing limit attributes {CVE-2024-46757}
  • drm/amd/pm: fix the Out-of-bounds read warning {CVE-2024-46731}
References

Affected packages