OESA-2023-1284
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2023-1284
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2023-1284.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/OESA-2023-1284
- Upstream
- Published
- 2023-05-19T11:05:16Z
- Modified
- 2025-08-12T05:16:49.762891Z
- Summary
- kernel security update
- Details
-
The Linux Kernel, the operating system core itself.
Security Fix(es):
A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hci_sock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availability of Bluetooth communication.(CVE-2023-2002)
A speculative pointer dereference problem exists in the Linux Kernel on the do_prlimit() function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. We recommend upgrading past version 6.1.8 or commit 739790605705ddcf18f21782b9c99ad7d53a8c11(CVE-2023-0458)
In emacprobe, &adpt->workthread is bound with emacworkthread. Then it will be started by timeout handler emactxtimeout or a IRQ handler emacisr. If we remove the driver which will call emacremove to make cleanup, there may be a unfinished work. This could lead to a use-after-free.
Upstream fix: https://github.com/torvalds/linux/commit/6b6bc5b8bd2d(CVE-2023-2483)
An issue was discovered in the Linux kernel before 6.1.11. In net/netrom/afnetrom.c, there is a use-after-free because accept is also allowed for a successfully connected AFNETROM socket. However, in order for an attacker to exploit this, the system must have netrom routing configured or the attacker must have the CAPNETADMIN capability.(CVE-2023-32269)
In the Linux kernel 6.0.8, there is a use-after-free in run_unpack in fs/ntfs3/run.c, related to a difference between NTFS sector size and media sector size.(CVE-2023-26544)
No description is available for this CVE(CVE-2023-0459)
A null pointer dereference issue was found in the sctp network protocol in net/sctp/streamsched.c in Linux Kernel. If streamin allocation is failed, stream_out is freed which would further be accessed. A local user could use this flaw to crash the system or potentially cause a denial of service.(CVE-2023-2177)
A use-after-free vulnerability was found in the Linux kernel's ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw could allow a privileged local user to cause a system crash or other undefined behaviors.(CVE-2023-2513)
- Database specific
{ "severity": "High" }- References
-
- https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2023-1284
- https://nvd.nist.gov/vuln/detail/CVE-2023-2002
- https://nvd.nist.gov/vuln/detail/CVE-2023-0458
- https://nvd.nist.gov/vuln/detail/CVE-2023-2483
- https://nvd.nist.gov/vuln/detail/CVE-2023-32269
- https://nvd.nist.gov/vuln/detail/CVE-2023-26544
- https://nvd.nist.gov/vuln/detail/CVE-2023-0459
- https://nvd.nist.gov/vuln/detail/CVE-2023-2177
- https://nvd.nist.gov/vuln/detail/CVE-2023-2513
Affected packages
openEuler:20.03-LTS-SP1 / kernel
Package
- Name
- kernel
- Purl
- pkg:rpm/openEuler/kernel&distro=openEuler-20.03-LTS-SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.19.90-2305.2.0.0201.oe1
Ecosystem specific
{
"x86_64": [
"kernel-source-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"python3-perf-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"bpftool-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"python2-perf-debuginfo-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-tools-devel-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-debugsource-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-devel-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-tools-debuginfo-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"perf-debuginfo-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"bpftool-debuginfo-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"perf-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"python3-perf-debuginfo-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"python2-perf-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-debuginfo-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-tools-4.19.90-2305.2.0.0201.oe1.x86_64.rpm"
],
"aarch64": [
"perf-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-tools-debuginfo-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"python3-perf-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"python3-perf-debuginfo-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-tools-devel-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-debugsource-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"bpftool-debuginfo-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"perf-debuginfo-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"bpftool-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-tools-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"python2-perf-debuginfo-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-devel-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"python2-perf-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-source-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-debuginfo-4.19.90-2305.2.0.0201.oe1.aarch64.rpm"
],
"src": [
"kernel-4.19.90-2305.2.0.0201.oe1.src.rpm"
]
}
openEuler:20.03-LTS-SP3 / kernel
Package
- Name
- kernel
- Purl
- pkg:rpm/openEuler/kernel&distro=openEuler-20.03-LTS-SP3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.19.90-2305.2.0.0201.oe1
Ecosystem specific
{
"x86_64": [
"kernel-tools-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-tools-devel-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"perf-debuginfo-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"python3-perf-debuginfo-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"python2-perf-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-tools-debuginfo-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"bpftool-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"perf-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"python3-perf-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"bpftool-debuginfo-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-debugsource-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-source-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-debuginfo-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"python2-perf-debuginfo-4.19.90-2305.2.0.0201.oe1.x86_64.rpm",
"kernel-devel-4.19.90-2305.2.0.0201.oe1.x86_64.rpm"
],
"aarch64": [
"python3-perf-debuginfo-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-source-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-tools-debuginfo-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-devel-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"bpftool-debuginfo-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-tools-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"python2-perf-debuginfo-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-debugsource-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"bpftool-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"python2-perf-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-tools-devel-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"python3-perf-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"perf-debuginfo-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"kernel-debuginfo-4.19.90-2305.2.0.0201.oe1.aarch64.rpm",
"perf-4.19.90-2305.2.0.0201.oe1.aarch64.rpm"
],
"src": [
"kernel-4.19.90-2305.2.0.0201.oe1.src.rpm"
]
}
openEuler:22.03-LTS / kernel
Package
- Name
- kernel
- Purl
- pkg:rpm/openEuler/kernel&distro=openEuler-22.03-LTS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.10.0-136.32.0.108.oe2203sp1
Ecosystem specific
{
"x86_64": [
"kernel-headers-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"kernel-tools-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"python3-perf-debuginfo-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"python3-perf-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"bpftool-debuginfo-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"bpftool-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"kernel-devel-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"perf-debuginfo-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"kernel-tools-devel-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"perf-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"kernel-tools-debuginfo-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"kernel-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"kernel-debugsource-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"kernel-source-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"kernel-debuginfo-5.10.0-60.94.0.118.oe2203.x86_64.rpm",
"perf-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"perf-debuginfo-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-tools-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-source-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-headers-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-debugsource-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-devel-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-debuginfo-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"python3-perf-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-tools-devel-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-tools-debuginfo-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"python3-perf-debuginfo-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"bpftool-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"bpftool-debuginfo-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm"
],
"aarch64": [
"kernel-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"kernel-tools-devel-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"python3-perf-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"kernel-tools-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"perf-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"bpftool-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"bpftool-debuginfo-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"kernel-source-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"kernel-devel-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"kernel-headers-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"kernel-debuginfo-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"kernel-debugsource-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"kernel-tools-debuginfo-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"perf-debuginfo-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"python3-perf-debuginfo-5.10.0-60.94.0.118.oe2203.aarch64.rpm",
"kernel-tools-debuginfo-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"bpftool-debuginfo-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"bpftool-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-devel-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-tools-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-debugsource-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-tools-devel-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"perf-debuginfo-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"python3-perf-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-source-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-debuginfo-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-headers-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"perf-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"python3-perf-debuginfo-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm"
],
"src": [
"kernel-5.10.0-60.94.0.118.oe2203.src.rpm",
"kernel-5.10.0-136.32.0.108.oe2203sp1.src.rpm"
]
}
openEuler:22.03-LTS-SP1 / kernel
Package
- Name
- kernel
- Purl
- pkg:rpm/openEuler/kernel&distro=openEuler-22.03-LTS-SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.10.0-136.32.0.108.oe2203sp1
Ecosystem specific
{
"x86_64": [
"perf-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"perf-debuginfo-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-tools-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-source-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-headers-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-debugsource-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-devel-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-debuginfo-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"python3-perf-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-tools-devel-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-tools-debuginfo-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"python3-perf-debuginfo-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"bpftool-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"kernel-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm",
"bpftool-debuginfo-5.10.0-136.32.0.108.oe2203sp1.x86_64.rpm"
],
"aarch64": [
"kernel-tools-debuginfo-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"bpftool-debuginfo-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"bpftool-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-devel-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-tools-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-debugsource-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-tools-devel-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"perf-debuginfo-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"python3-perf-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-source-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-debuginfo-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"kernel-headers-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"perf-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm",
"python3-perf-debuginfo-5.10.0-136.32.0.108.oe2203sp1.aarch64.rpm"
],
"src": [
"kernel-5.10.0-136.32.0.108.oe2203sp1.src.rpm"
]
}