ALSA-2024:6997

Source
https://errata.almalinux.org/9/ALSA-2024-6997.html
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2024:6997.json
JSON Data
https://api.osv.dev/v1/vulns/ALSA-2024:6997
Related
Published
2024-09-24T00:00:00Z
Modified
2024-11-03T22:34:52Z
Summary
Important: kernel security update
Details

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: uio: Fix use-after-free in uio_open (CVE-2023-52439)
  • kernel: net/sched: act_mirred: don't override retval if we already lost the skb (CVE-2024-26739)
  • kernel: ARM: 9359/1: flush: check if the folio is reserved for no-mapping addresses (CVE-2024-26947)
  • kernel: scsi: qla2xxx: Fix command flush on cable pull (CVE-2024-26931)
  • kernel: scsi: qla2xxx: Fix double free of the ha->vp_map pointer (CVE-2024-26930)
  • kernel: scsi: qla2xxx: Fix double free of fcport (CVE-2024-26929)
  • kernel: fork: defer linking file vma until vma is fully initialized (CVE-2024-27022)
  • kernel: KVM: x86/mmu: x86: Don't overflow lpage_info when checking attributes (CVE-2024-26991)
  • kernel: bpf, sockmap: Prevent lock inversion deadlock in map delete elem (CVE-2024-35895)
  • kernel: tty: ngsm: fix possible out-of-bounds in gsm0receive() (CVE-2024-36016)
  • kernel: gpiolib: cdev: Fix use after free in lineinfochangednotify (CVE-2024-36899)
  • kernel: cpufreq: exit() callback is optional (CVE-2024-38615)
  • kernel: ring-buffer: Fix a race between readers and resize checks (CVE-2024-38601)
  • kernel: cppc_cpufreq: Fix possible null pointer dereference (CVE-2024-38573)
  • kernel: gfs2: Fix potential glock use-after-free on unmount (CVE-2024-38570)
  • kernel: wifi: nl80211: Avoid address calculations via out of bounds array indexing (CVE-2024-38562)
  • kernel: Input: cyapa - add missing input core locking to suspend/resume functions (CVE-2023-52884)
  • kernel: ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." (CVE-2024-40984)
  • kernel: wifi: mac80211: Avoid address calculations via out of bounds array indexing (CVE-2024-41071)
  • kernel: wifi: mt76: replace skbput with skbput_zero (CVE-2024-42225)
  • kernel: net, sunrpc: Remap EPERM in case of connection failure in xstcpsetup_socket (CVE-2024-42246)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:9 / bpftool

Package

Name
bpftool

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.3.0-427.37.1.el9_4

AlmaLinux:9 / kernel

Package

Name
kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k

Package

Name
kernel-64k

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-core

Package

Name
kernel-64k-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-debug

Package

Name
kernel-64k-debug

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-debug-core

Package

Name
kernel-64k-debug-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-debug-devel

Package

Name
kernel-64k-debug-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-debug-devel-matched

Package

Name
kernel-64k-debug-devel-matched

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-debug-modules

Package

Name
kernel-64k-debug-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-debug-modules-core

Package

Name
kernel-64k-debug-modules-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-debug-modules-extra

Package

Name
kernel-64k-debug-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-devel

Package

Name
kernel-64k-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-devel-matched

Package

Name
kernel-64k-devel-matched

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-modules

Package

Name
kernel-64k-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-modules-core

Package

Name
kernel-64k-modules-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-64k-modules-extra

Package

Name
kernel-64k-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-abi-stablelists

Package

Name
kernel-abi-stablelists

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-core

Package

Name
kernel-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-cross-headers

Package

Name
kernel-cross-headers

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-debug

Package

Name
kernel-debug

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-debug-core

Package

Name
kernel-debug-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-debug-devel

Package

Name
kernel-debug-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-debug-devel-matched

Package

Name
kernel-debug-devel-matched

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-debug-modules

Package

Name
kernel-debug-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-debug-modules-core

Package

Name
kernel-debug-modules-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-debug-modules-extra

Package

Name
kernel-debug-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-debug-uki-virt

Package

Name
kernel-debug-uki-virt

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-devel

Package

Name
kernel-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-devel-matched

Package

Name
kernel-devel-matched

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-doc

Package

Name
kernel-doc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-headers

Package

Name
kernel-headers

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-modules

Package

Name
kernel-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-modules-core

Package

Name
kernel-modules-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-modules-extra

Package

Name
kernel-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-rt

Package

Name
kernel-rt

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-rt-core

Package

Name
kernel-rt-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-rt-debug

Package

Name
kernel-rt-debug

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-rt-debug-core

Package

Name
kernel-rt-debug-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-rt-debug-devel

Package

Name
kernel-rt-debug-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-rt-debug-modules

Package

Name
kernel-rt-debug-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-rt-debug-modules-core

Package

Name
kernel-rt-debug-modules-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-rt-debug-modules-extra

Package

Name
kernel-rt-debug-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-rt-devel

Package

Name
kernel-rt-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-rt-modules

Package

Name
kernel-rt-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-rt-modules-core

Package

Name
kernel-rt-modules-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-rt-modules-extra

Package

Name
kernel-rt-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-tools

Package

Name
kernel-tools

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-tools-libs

Package

Name
kernel-tools-libs

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-tools-libs-devel

Package

Name
kernel-tools-libs-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-uki-virt

Package

Name
kernel-uki-virt

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-zfcpdump

Package

Name
kernel-zfcpdump

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-zfcpdump-core

Package

Name
kernel-zfcpdump-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-zfcpdump-devel

Package

Name
kernel-zfcpdump-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-zfcpdump-devel-matched

Package

Name
kernel-zfcpdump-devel-matched

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-zfcpdump-modules

Package

Name
kernel-zfcpdump-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-zfcpdump-modules-core

Package

Name
kernel-zfcpdump-modules-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / kernel-zfcpdump-modules-extra

Package

Name
kernel-zfcpdump-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / libperf

Package

Name
libperf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / perf

Package

Name
perf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / python3-perf

Package

Name
python3-perf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / rtla

Package

Name
rtla

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4

AlmaLinux:9 / rv

Package

Name
rv

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-427.37.1.el9_4