OESA-2024-1176
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1176
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2024-1176.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/OESA-2024-1176
- Upstream
- Published
- 2024-02-23T11:07:00Z
- Modified
- 2025-08-12T05:23:16.319470Z
- Summary
- kernel security update
- Details
-
The Linux Kernel, the operating system core itself.
Security Fix(es):
Transmit requests in Xen's virtual network protocol can consist of multiple parts. While not really useful, except for the initial part any of them may be of zero length, i.e. carry no data at all. Besides a certain initial portion of the to be transferred data, these parts are directly translated into what Linux calls SKB fragments. Such converted request parts can, when for a particular SKB they are all of length zero, lead to a de-reference of NULL in core networking code. (CVE-2023-46838)
A flaw in the routing table size was found in the ICMPv6 handling of "Packet Too Big". The size of the routing table is regulated by periodic garbage collection. However, with "Packet Too Big Messages" it is possible to exceed the routing table size and garbage collector threshold. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6 connections up to 95%.(CVE-2023-52340)
A denial of service vulnerability due to a deadlock was found in sctpautoasconf_init in net/sctp/socket.c in the Linux kernel’s SCTP subsystem. This flaw allows guests with local user privileges to trigger a deadlock and potentially crash the system.(CVE-2024-0639)
A null pointer dereference flaw was found in the hugetlbfsfillsuper function in the Linux kernel hugetlbfs (HugeTLB pages) functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system.(CVE-2024-0841)
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.
The nftverdictinit() function allows positive values as drop error within the hook verdict, and hence the nfhookslow() function can cause a double free vulnerability when NFDROP is issued with a drop error which resembles NFACCEPT.
We recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.
(CVE-2024-1086)
In rdsrecvtracklatency in net/rds/afrds.c in the Linux kernel through 6.7.1, there is an off-by-one error for an RDSMSGRXDGRAMTRACE_MAX comparison, resulting in out-of-bounds access.(CVE-2024-23849)
- Database specific
{ "severity": "High" }- References
-
- https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2024-1176
- https://nvd.nist.gov/vuln/detail/CVE-2023-46838
- https://nvd.nist.gov/vuln/detail/CVE-2023-52340
- https://nvd.nist.gov/vuln/detail/CVE-2024-0639
- https://nvd.nist.gov/vuln/detail/CVE-2024-0841
- https://nvd.nist.gov/vuln/detail/CVE-2024-1086
- https://nvd.nist.gov/vuln/detail/CVE-2024-23849
Affected packages
openEuler:22.03-LTS-SP2 / kernel
Package
- Name
- kernel
- Purl
- pkg:rpm/openEuler/kernel&distro=openEuler-22.03-LTS-SP2
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.10.0-153.43.0.121.oe2203sp2
Ecosystem specific
{
"x86_64": [
"kernel-debugsource-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm",
"kernel-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm",
"kernel-headers-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm",
"kernel-tools-devel-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm",
"perf-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm",
"kernel-tools-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm",
"kernel-tools-debuginfo-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm",
"python3-perf-debuginfo-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm",
"perf-debuginfo-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm",
"kernel-debuginfo-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm",
"kernel-devel-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm",
"kernel-source-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm",
"python3-perf-5.10.0-153.43.0.121.oe2203sp2.x86_64.rpm"
],
"src": [
"kernel-5.10.0-153.43.0.121.oe2203sp2.src.rpm"
],
"aarch64": [
"kernel-tools-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm",
"kernel-tools-debuginfo-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm",
"kernel-debuginfo-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm",
"kernel-headers-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm",
"perf-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm",
"perf-debuginfo-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm",
"kernel-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm",
"kernel-debugsource-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm",
"kernel-tools-devel-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm",
"python3-perf-debuginfo-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm",
"kernel-source-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm",
"kernel-devel-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm",
"python3-perf-5.10.0-153.43.0.121.oe2203sp2.aarch64.rpm"
]
}