ALSA-2024:8856
- Source
- https://errata.almalinux.org/8/ALSA-2024-8856.html
- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:8856.json
- JSON Data
- https://api.osv.dev/v1/vulns/ALSA-2024:8856
- Related
- Published
- 2024-11-05T00:00:00Z
- Modified
- 2024-11-06T09:58:25Z
- Summary
- Moderate: kernel security update
- Details
-
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
- kernel: net/bluetooth: race condition in conninfo{min,max}ageset() (CVE-2024-24857)
- kernel: dmaengine: fix NULL pointer in channel unregistration function (CVE-2023-52492)
- kernel: netfilter: nfconntrackh323: Add protection for bmp length out of range (CVE-2024-26851)
- kernel: netfilter: nftsetpipapo: do not free live element (CVE-2024-26924)
- kernel: netfilter: nftsetpipapo: walk over current view on netlink dump (CVE-2024-27017)
- kernel: KVM: Always flush async #PF workqueue when vCPU is being destroyed (CVE-2024-26976)
- kernel: nouveau: lock the client object tree. (CVE-2024-27062)
- kernel: netfilter: bridge: replace physindev with physinif in nfbridgeinfo (CVE-2024-35839)
- kernel: netfilter: nftables: Fix potential data-race in _nftflowtabletype_get() (CVE-2024-35898)
- kernel: dma-direct: Leak pages on dmasetdecrypted() failure (CVE-2024-35939)
- kernel: net/mlx5e: Fix netif state handling (CVE-2024-38608)
- kernel: r8169: Fix possible ring buffer corruption on fragmented Tx packets. (CVE-2024-38586)
- kernel: of: module: add buffer overflow check in of_modalias() (CVE-2024-38541)
- kernel: bnxtre: avoid shift undefined behavior in bnxtqpliballocinit_hwq (CVE-2024-38540)
- kernel: netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type (CVE-2024-39503)
- kernel: drm/i915/dpt: Make DPT object unshrinkable (CVE-2024-40924)
- kernel: ipv6: prevent possible NULL deref in fib6nhinit() (CVE-2024-40961)
- kernel: tipc: force a dst refcount before doing decryption (CVE-2024-40983)
- kernel: ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." (CVE-2024-40984)
- kernel: xprtrdma: fix pointer derefs in error cases of rpcrdmaepcreate (CVE-2022-48773)
- kernel: bpf: Fix overrunning reservations in ringbuf (CVE-2024-41009)
- kernel: netfilter: nftables: prefer nftchain_validate (CVE-2024-41042)
- kernel: ibmvnic: Add tx check to prevent skb leak (CVE-2024-41066)
- kernel: drm/i915/gt: Fix potential UAF by revoke of fence registers (CVE-2024-41092)
- kernel: drm/amdgpu: avoid using null object of framebuffer (CVE-2024-41093)
- kernel: netfilter: nftables: fully validate NFTDATA_VALUE on store to data registers (CVE-2024-42070)
- kernel: gfs2: Fix NULL pointer dereference in gfs2logflush (CVE-2024-42079)
- kernel: USB: serial: mos7840: fix crash on resume (CVE-2024-42244)
- kernel: tipc: Return non-zero value from tipcudpaddr2str() on error (CVE-2024-42284)
- kernel: kobjectuevent: Fix OOB access within zapmodalias_env() (CVE-2024-42292)
- kernel: dev/parport: fix the array out-of-bounds risk (CVE-2024-42301)
- kernel: block: initialize integrity buffer to zero before writing it to media (CVE-2024-43854)
- kernel: mlxsw: spectrumaclerp: Fix object nesting warning (CVE-2024-43880)
- kernel: gso: do not skip outer ip header in case of ipip and net_failover (CVE-2022-48936)
- kernel: padata: Fix possible divide-by-0 panic in padatamthelper() (CVE-2024-43889)
- kernel: memcg: protect concurrent access to memcgroupidr (CVE-2024-43892)
- kernel: sctp: Fix null-ptr-deref in reuseportaddsock(). (CVE-2024-44935)
- kernel: bonding: fix xfrm real_dev null pointer dereference (CVE-2024-44989)
- kernel: bonding: fix null pointer deref in bondipsecoffload_ok (CVE-2024-44990)
- kernel: netfilter: flowtable: initialise extack before use (CVE-2024-45018)
- kernel: ELF: fix kernel.randomizevaspace double read (CVE-2024-46826)
- kernel: lib/generic-radix-tree.c: Fix rare race in _genradixptr_alloc() (CVE-2024-47668)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- References
-
- https://access.redhat.com/errata/RHSA-2024:8856
- https://access.redhat.com/security/cve/CVE-2022-48773
- https://access.redhat.com/security/cve/CVE-2022-48936
- https://access.redhat.com/security/cve/CVE-2023-52492
- https://access.redhat.com/security/cve/CVE-2024-24857
- https://access.redhat.com/security/cve/CVE-2024-26851
- https://access.redhat.com/security/cve/CVE-2024-26924
- https://access.redhat.com/security/cve/CVE-2024-26976
- https://access.redhat.com/security/cve/CVE-2024-27017
- https://access.redhat.com/security/cve/CVE-2024-27062
- https://access.redhat.com/security/cve/CVE-2024-35839
- https://access.redhat.com/security/cve/CVE-2024-35898
- https://access.redhat.com/security/cve/CVE-2024-35939
- https://access.redhat.com/security/cve/CVE-2024-38540
- https://access.redhat.com/security/cve/CVE-2024-38541
- https://access.redhat.com/security/cve/CVE-2024-38586
- https://access.redhat.com/security/cve/CVE-2024-38608
- https://access.redhat.com/security/cve/CVE-2024-39503
- https://access.redhat.com/security/cve/CVE-2024-40924
- https://access.redhat.com/security/cve/CVE-2024-40961
- https://access.redhat.com/security/cve/CVE-2024-40983
- https://access.redhat.com/security/cve/CVE-2024-40984
- https://access.redhat.com/security/cve/CVE-2024-41009
- https://access.redhat.com/security/cve/CVE-2024-41042
- https://access.redhat.com/security/cve/CVE-2024-41066
- https://access.redhat.com/security/cve/CVE-2024-41092
- https://access.redhat.com/security/cve/CVE-2024-41093
- https://access.redhat.com/security/cve/CVE-2024-42070
- https://access.redhat.com/security/cve/CVE-2024-42079
- https://access.redhat.com/security/cve/CVE-2024-42244
- https://access.redhat.com/security/cve/CVE-2024-42284
- https://access.redhat.com/security/cve/CVE-2024-42292
- https://access.redhat.com/security/cve/CVE-2024-42301
- https://access.redhat.com/security/cve/CVE-2024-43854
- https://access.redhat.com/security/cve/CVE-2024-43880
- https://access.redhat.com/security/cve/CVE-2024-43889
- https://access.redhat.com/security/cve/CVE-2024-43892
- https://access.redhat.com/security/cve/CVE-2024-44935
- https://access.redhat.com/security/cve/CVE-2024-44989
- https://access.redhat.com/security/cve/CVE-2024-44990
- https://access.redhat.com/security/cve/CVE-2024-45018
- https://access.redhat.com/security/cve/CVE-2024-46826
- https://access.redhat.com/security/cve/CVE-2024-47668
- https://bugzilla.redhat.com/2266247
- https://bugzilla.redhat.com/2269183
- https://bugzilla.redhat.com/2275750
- https://bugzilla.redhat.com/2277168
- https://bugzilla.redhat.com/2278262
- https://bugzilla.redhat.com/2278350
- https://bugzilla.redhat.com/2278387
- https://bugzilla.redhat.com/2281284
- https://bugzilla.redhat.com/2281669
- https://bugzilla.redhat.com/2281817
- https://bugzilla.redhat.com/2293356
- https://bugzilla.redhat.com/2293402
- https://bugzilla.redhat.com/2293458
- https://bugzilla.redhat.com/2293459
- https://bugzilla.redhat.com/2297475
- https://bugzilla.redhat.com/2297508
- https://bugzilla.redhat.com/2297545
- https://bugzilla.redhat.com/2297567
- https://bugzilla.redhat.com/2297568
- https://bugzilla.redhat.com/2298109
- https://bugzilla.redhat.com/2298412
- https://bugzilla.redhat.com/2300412
- https://bugzilla.redhat.com/2300442
- https://bugzilla.redhat.com/2300487
- https://bugzilla.redhat.com/2300488
- https://bugzilla.redhat.com/2300508
- https://bugzilla.redhat.com/2300517
- https://bugzilla.redhat.com/2307862
- https://bugzilla.redhat.com/2307865
- https://bugzilla.redhat.com/2307892
- https://bugzilla.redhat.com/2309852
- https://bugzilla.redhat.com/2309853
- https://bugzilla.redhat.com/2311715
- https://bugzilla.redhat.com/2315178
- https://bugzilla.redhat.com/2317601
- https://errata.almalinux.org/8/ALSA-2024-8856.html
Affected packages
AlmaLinux:8 / bpftool
Package
- Name
- bpftool
AlmaLinux:8 / kernel
Package
- Name
- kernel
AlmaLinux:8 / kernel-abi-stablelists
Package
- Name
- kernel-abi-stablelists
AlmaLinux:8 / kernel-core
Package
- Name
- kernel-core
AlmaLinux:8 / kernel-cross-headers
Package
- Name
- kernel-cross-headers
AlmaLinux:8 / kernel-debug
Package
- Name
- kernel-debug
AlmaLinux:8 / kernel-debug-core
Package
- Name
- kernel-debug-core
AlmaLinux:8 / kernel-debug-devel
Package
- Name
- kernel-debug-devel
AlmaLinux:8 / kernel-debug-modules
Package
- Name
- kernel-debug-modules
AlmaLinux:8 / kernel-debug-modules-extra
Package
- Name
- kernel-debug-modules-extra
AlmaLinux:8 / kernel-devel
Package
- Name
- kernel-devel
AlmaLinux:8 / kernel-doc
Package
- Name
- kernel-doc
AlmaLinux:8 / kernel-headers
Package
- Name
- kernel-headers
AlmaLinux:8 / kernel-modules
Package
- Name
- kernel-modules
AlmaLinux:8 / kernel-modules-extra
Package
- Name
- kernel-modules-extra
AlmaLinux:8 / kernel-tools
Package
- Name
- kernel-tools
AlmaLinux:8 / kernel-tools-libs
Package
- Name
- kernel-tools-libs
AlmaLinux:8 / kernel-tools-libs-devel
Package
- Name
- kernel-tools-libs-devel
AlmaLinux:8 / kernel-zfcpdump
Package
- Name
- kernel-zfcpdump
AlmaLinux:8 / kernel-zfcpdump-core
Package
- Name
- kernel-zfcpdump-core
AlmaLinux:8 / kernel-zfcpdump-devel
Package
- Name
- kernel-zfcpdump-devel
AlmaLinux:8 / kernel-zfcpdump-modules
Package
- Name
- kernel-zfcpdump-modules
AlmaLinux:8 / kernel-zfcpdump-modules-extra
Package
- Name
- kernel-zfcpdump-modules-extra
AlmaLinux:8 / perf
Package
- Name
- perf