CLSA-2024-1725293298

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLSA-2024-1725293298
Upstream
  • CVE-2024-37353
Published
2024-09-02T16:08:22Z
Modified
2026-05-27T11:33:44.593213368Z
Summary
kernel: Fix of 37 CVEs
Details
  • tun: add missing verification for short frame {CVE-2024-41091}
  • tap: add missing verification for short frame {CVE-2024-41090}
  • drm/amd/display: Fix potential index out of bounds in color transformation function {CVE-2024-38552}
  • net: fix __dstnegativeadvice() race {CVE-2024-36971}
  • net: annotate data-races around sk->skdstpending_confirm {CVE-2024-36971}
  • net: fix out-of-bounds access in ops_init {CVE-2024-36883}
  • net/sched: flower: Fix chain template offload {CVE-2024-26669}
  • netfilter: nf_tables: use timestamp to check for set element timeout {CVE-2024-27397}
  • netfilter: nftsetrbtree: Remove unused variable nft_net {CVE-2024-27397}
  • netfilter: nftsetrbtree: prefer sync gc to async worker {CVE-2024-27397}
  • netfilter: nftsetrbtree: rename gc deactivate+erase function {CVE-2024-27397}
  • netfilter: nf_tables: de-constify set commit ops function argument {CVE-2024-27397}
  • netfilter: nftsetrbtree: .deactivate fails if element has expired {CVE-2024-27397}
  • sched/membarrier: reduce the ability to hammer on sys_membarrier {CVE-2024-26602}
  • drm/vmwgfx: Fix possible null pointer derefence with invalid contexts {CVE-2022-38096}
  • sched/psi: Fix use-after-free in epremovewait_queue() {CVE-2023-52707}
  • wait: add wakeuppollfree() {CVE-2023-52707}
  • x86/sev: Check for user-space IOIO pointing to kernel space {CVE-2023-46813}
  • x86/sev: Check IOBM for IOIO exceptions from user-space {CVE-2023-46813}
  • x86/sev: Disable MMIO emulation from user mode {CVE-2023-46813}
  • tcp: Fix shift-out-of-bounds in dctcpupdatealpha(). {CVE-2024-37356}
  • blk-cgroup: fix list corruption from reorder of WRITE ->lqueued {CVE-2024-38384}
  • netfilter: complete validation of user input {CVE-2024-35962}
  • SUNRPC: Fix UAF in svctcplistendataready() {CVE-2023-52885}
  • PM / devfreq: Synchronize devfreqmonitor[start/stop] {CVE-2023-52635}
  • netfilter: validate user input for expected length {CVE-2024-35896}
  • virtio: delete vq in vpfindvqsmsix() when requestirq() fails {CVE-2024-37353}
  • bnxt: prevent skb UAF after handing over to PTP worker {CVE-2022-48637}
  • net: openvswitch: fix overwriting ct original tuple for ICMPv6 {CVE-2024-38558}
  • net: core: reject skb_copy(_expand) for fraglist GSO skbs {CVE-2024-36929}
  • rtnetlink: Correct nested IFLAVFVLAN_LIST attribute validation {CVE-2024-36017}
  • ipvlan: Dont Use skb->sk in ipvlanprocessv{4,6}_outbound {CVE-2024-33621}
  • drm/vmwgfx: Fix invalid reads in fence signaled events {CVE-2024-36960}
  • gro: fix ownership transfer {CVE-2024-35890}
  • mlxbf_gige: stop interface during shutdown {CVE-2024-35885}
  • scsi: libfc: Fix potential NULL pointer dereference in fclportptp_setup() {CVE-2023-52809}
  • wifi: mt76: replace skbput with skbput_zero {CVE-2024-42225}
  • drm/amdgpu: Using uninitialized value *size when calling amdgpuvcecs_reloc {CVE-2024-42228}
  • scsi: mpi3mr: Sanitise num_phys {CVE-2024-42159}
  • bpf: Avoid uninitialized value in BPFCOREREAD_BITFIELD {CVE-2024-42161}
  • drm/amdgpu/mes: fix use-after-free issue {CVE-2024-38581}
  • i40e: fix vf may be used uninitialized in this function warning {CVE-2024-36020}
  • vt: fix unicode buffer corruption when deleting characters {CVE-2024-35823}
  • ata: libata-core: Fix double free on error {CVE-2024-41087}
  • netfilter: nftables: release mutex after nftgcseqend from abort path {CVE-2024-26925}
  • tcp_metrics: validate source addr length {CVE-2024-42154}
References

Affected packages

TuxCare:AlmaLinux:9.2
bpftool

Package

Name
bpftool
Purl
pkg:rpm/tuxcare/bpftool?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel

Package

Name
kernel
Purl
pkg:rpm/tuxcare/kernel?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-abi-stablelists

Package

Name
kernel-abi-stablelists
Purl
pkg:rpm/tuxcare/kernel-abi-stablelists?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-core

Package

Name
kernel-core
Purl
pkg:rpm/tuxcare/kernel-core?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-cross-headers

Package

Name
kernel-cross-headers
Purl
pkg:rpm/tuxcare/kernel-cross-headers?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-debug

Package

Name
kernel-debug
Purl
pkg:rpm/tuxcare/kernel-debug?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-debug-core

Package

Name
kernel-debug-core
Purl
pkg:rpm/tuxcare/kernel-debug-core?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-debug-devel

Package

Name
kernel-debug-devel
Purl
pkg:rpm/tuxcare/kernel-debug-devel?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-debug-devel-matched

Package

Name
kernel-debug-devel-matched
Purl
pkg:rpm/tuxcare/kernel-debug-devel-matched?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-debug-modules

Package

Name
kernel-debug-modules
Purl
pkg:rpm/tuxcare/kernel-debug-modules?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-debug-modules-core

Package

Name
kernel-debug-modules-core
Purl
pkg:rpm/tuxcare/kernel-debug-modules-core?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-debug-modules-extra

Package

Name
kernel-debug-modules-extra
Purl
pkg:rpm/tuxcare/kernel-debug-modules-extra?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-debug-modules-internal

Package

Name
kernel-debug-modules-internal
Purl
pkg:rpm/tuxcare/kernel-debug-modules-internal?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-debug-modules-partner

Package

Name
kernel-debug-modules-partner
Purl
pkg:rpm/tuxcare/kernel-debug-modules-partner?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-debug-uki-virt

Package

Name
kernel-debug-uki-virt
Purl
pkg:rpm/tuxcare/kernel-debug-uki-virt?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-devel

Package

Name
kernel-devel
Purl
pkg:rpm/tuxcare/kernel-devel?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-devel-matched

Package

Name
kernel-devel-matched
Purl
pkg:rpm/tuxcare/kernel-devel-matched?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-doc

Package

Name
kernel-doc
Purl
pkg:rpm/tuxcare/kernel-doc?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-headers

Package

Name
kernel-headers
Purl
pkg:rpm/tuxcare/kernel-headers?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-ipaclones-internal

Package

Name
kernel-ipaclones-internal
Purl
pkg:rpm/tuxcare/kernel-ipaclones-internal?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-modules

Package

Name
kernel-modules
Purl
pkg:rpm/tuxcare/kernel-modules?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-modules-core

Package

Name
kernel-modules-core
Purl
pkg:rpm/tuxcare/kernel-modules-core?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-modules-extra

Package

Name
kernel-modules-extra
Purl
pkg:rpm/tuxcare/kernel-modules-extra?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-modules-internal

Package

Name
kernel-modules-internal
Purl
pkg:rpm/tuxcare/kernel-modules-internal?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-modules-partner

Package

Name
kernel-modules-partner
Purl
pkg:rpm/tuxcare/kernel-modules-partner?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-selftests-internal

Package

Name
kernel-selftests-internal
Purl
pkg:rpm/tuxcare/kernel-selftests-internal?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-tools

Package

Name
kernel-tools
Purl
pkg:rpm/tuxcare/kernel-tools?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-tools-libs

Package

Name
kernel-tools-libs
Purl
pkg:rpm/tuxcare/kernel-tools-libs?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-tools-libs-devel

Package

Name
kernel-tools-libs-devel
Purl
pkg:rpm/tuxcare/kernel-tools-libs-devel?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
kernel-uki-virt

Package

Name
kernel-uki-virt
Purl
pkg:rpm/tuxcare/kernel-uki-virt?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
perf

Package

Name
perf
Purl
pkg:rpm/tuxcare/perf?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
python3-perf

Package

Name
python3-perf
Purl
pkg:rpm/tuxcare/python3-perf?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"
rtla

Package

Name
rtla
Purl
pkg:rpm/tuxcare/rtla?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.30.1.el9_2.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1725293298.json"