readykernel-patch-191.4-167.0-1.vl7

Kernel Update Version:
3.10.0-1160.80.1.vz7.191.4
Release Date:
2024-02-05 16:46:02
  • CVE-2024-1086

    netfilter: Use-after-free in a nf_tables component

    Use-after-free vulnerability in a nf_tables component can be exploited to achieve local privilege escalation.
  • CVE-2023-32233

    Use after free if modify and delete anonymous set in same nf-tables transaction (fixed)

    A use-after-free vulnerability in the Netfilter subsystem when processing batch requests to update nf_tables configuration. This vulnerability can be abused to perform arbitrary reads and writes in kernel memory. A local user (with CAP_NET_ADMIN capability) could use this flaw to crash the system or potentially escalate their privileges on the system.
  • CVE-2023-4128

    Use-after-free in classifiers cls_fw, cls_u32, and cls_route

    A use-after-free vulnerability possible local privilege escalation.
  • CVE-2023-42755

    Invalid memory access in cls_rsvp traffic classifier

    Use after free in rsvp classifier can be used to crash kernel.
  • CVE-2023-42753

    Out of bound memory access in ipset module

    Possible kernel crash if userspace provide special data for ipset module.
  • PSBM-150027

    Race condition in venetdev leading to corrupted data in /proc/net/dev.

    Due to a race condition counters in /proc/net/dev periodically deviate significantly either up or down.
  • CVE-2021-45868

    quota: check block number when reading the block in quota file

    A use-after-free vulnerability in the quota mechanism, leading to a denial of service.
  • CVE-2022-2639

    openvswitch: integer underflow leads to out-of-bounds write

    An integer coercion error in the openvswitch kernel module potentially leading to an out-of-bounds write access. This flaw allows a local user to crash or potentially escalate their privileges on the system.
  • CVE-2022-3524

    memory leak in ipv6_renew_options

    A memory leak in the IPv6 functionality. This flaw allows a user to crash the system.
  • CVE-2022-3566

    data races around icsk->icsk_af_ops pointer

    A vulnerability in the tcp subsystem. This issue could allow an attacker to leak internal kernel information.
  • CVE-2022-2663

    netfilter fix irc helper

    A firewall flaw that can bypass the Netfilter functionality. This flaw allows a remote user to gain unauthorized access to the system.
  • CVE-2022-3545

    use-after-free in nfp device driver

    A vulnerability in the Netronome Flow Processor (NFP) driver. This flaw allows a manipulation that may lead to a use-after-free issue.
  • CVE-2022-4379

    NFSv4.1 double svc_xprt_put if rpc_create failures

    A use-after-free vulnerability the NFS filesystem. This flaw allows an attacker to conduct a remote denial of service.
  • CVE-2022-0812

    xprtrdma incorrect header size calculations

    An information leak flaw in NFS over RDMA. This flaw allows an attacker with normal user privileges to leak kernel information.
  • CVE-2022-24448

    Handle case where the lookup of a directory but file exists

    A flaw in the NFS filesystem. This flaw leads to the kernel's data leak into the userspace.
  • CVE-2022-41858

    Null pointer dereference in net SLIP driver

    A NULL pointer dereference in the net SLIP driver. This issue could allow an attacker to crash the system or leak internal kernel information.
  • CVE-2023-1838

    Double free in net vhost driver error path

    A use-after-free in the virtio network subcomponent. This issue could allow a local attacker to crash the system, and could lead to a kernel information leak problem.
  • CVE-2022-29581

    Memory leak in net queue scheduler cls_u32 error handler

    A use-after-free in the network subcomponent. This flaw allows a local attacker to crash the system, cause a privilege escalation, and leak kernel information.
  • RK-337

    Use after free in packet family socket in prb_retire_rx_blk_timer_expired()

  • CVE-2023-0458

    kernel data leak via spectre like gadget

    A speculative pointer dereference vulnerabilty that can be used to leak the contents.
  • CVE-2023-2124

    Kernel crash on mount invalid xfs image

    An out-of-bounds memory access flaw in the XFS file system in how a user restores an XFS image after failure (with a dirty log journal). This flaw allows a local user to crash or potentially escalate their privileges on the system.
  • CVE-2023-2162

    Use after free in iscsi driver

    A use-after-free in the SCSI sub-component. This issue could allow an attacker to leak kernel internal information.
  • CVE-2023-31436

    Out of bound memory access in qfq network packet scheduler

    An out-of-bounds memory access flaw in the traffic control (QoS) subsystem. This flaw allows a local user to crash or potentially escalate their privileges on the system.
  • CVE-2023-2513

    Use after free in ext4 setfattr

    A use-after-free vulnerability in the ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw allows a privileged local user to cause a system crash or other undefined behaviors.
  • CVE-2023-30456

    Missed CR0 and CR4 register check in KVM subsystem

    A flaw in the KVM's Intel nested virtualization feature (nVMX). In rare circumstances (i.e., kvm_intel module loaded with parameters nested=1 and ept=0) this could allow a malicious guest to crash the host system, causing a denial of service.
  • CVE-2023-1074

    Memory leak in sctp socket error path

    A memory leak in the Stream Control Transmission Protocol. This issue may occur when a user starts a malicious networking service and someone connects to this service. This could allow a local user to starve resources, causing a denial of service.
  • CVE-2023-3212

    Invalid memory access on mount invalid gfs2 image

    A NULL pointer dereference in the gfs2 file system. This flaw allows a privileged local user to cause a kernel panic.
  • CVE-2023-0590

    Use after free while changing network packet scheduler

    A use-after-free in the network scheduler due to a race problem. This flaw leads to a denial of service issue.
  • CVE-2022-47929

    Null pointer dereference in traffic control if try to assing classes to noqueue discipline

    A NULL pointer dereference in traffic control. This issue may allow a local unprivileged user to trigger a system crash or leaked internal kernel information.
  • CVE-2023-1095

    Null pointer dereference caused by race during updating ntf tables

    A NULL pointer dereference in the netfilter subsystem. This flaw allows a local, unprivileged user to crash the system, resulting in a denial of service.
  • CVE-2023-3268

    Out of bound memory access during reading relayfs

    An out-of-bounds memory access flaw in the relayfs. This flaw allows a local attacker to crash the system or leak kernel internal information.
  • CVE-2023-3567

    Use after free in linux console driver

    A use-after-free flaw in vc_screen. This flaw allows an attacker with local user access to cause a system crash or leak internal kernel information.
  • CVE-2023-35788

    Out of bound memory write in network packet scheduler

    A flaw in the TC flower classifier (cls_flower) in the Networking subsystem. This issue occurs when sending two TCA_FLOWER_KEY_ENC_OPTS_GENEVE packets with a total size of 252 bytes, which results in an out-of-bounds write, potentially leading to a denial of service or privilege escalation.
  • CVE-2023-3611

    Invalid memory write in network packet scheduler

    An out-of-bounds memory write flaw in the Traffic Control (QoS) subsystem. This flaw allows a local user to crash or potentially escalate their privileges on the system.
  • CVE-2023-3772

    Null pointer dereference in ipsec configuration

    A flaw in the IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to cause kernel crash and denial of service.
  • CVE-2023-3776

    Use after free in network packet scheduler

    A use-after-free vulnerability in a network scheduler sub-component. This may allow a local attacker to gain local privilege escalation.
  • CVE-2023-3609

    Reference counter leak in error path for network packet scheduler

    A double-free flaw in the Network Scheduler component. This flaw allows a local attacker to use a failure event to mishandle the reference counter, leading to a local privilege escalation threat.
  • RK-352

    rdma connection is not stable enough because low default retry counter

  • CVE-2022-0617

    Null pointer dereference after mounting special UDF filesystem image

    A NULL pointer dereference in the UDF file system functionality. This flaw allows a local user to crash the system.
  • CVE-2022-20141

    Use after free during routing igmp multicast message

    A use-after-free flaw in the IGMP protocol. This flaw allows a local user to crash or potentially escalate their privileges on the system.
  • PSBM-147036

    Memory leak in cgroup subsystem

    Partial fix to prevent memory leak in some cases.
  • VSTOR-62689

    fuse: pcs: fix incorrect update of dirty status

    Possible data loss in cluster storage.
  • VSTOR-62165

    fuse: pcs: missing timeout at authentication

    Possible deadlock in kernel during connect to cluster storage.
  • CVE-2021-3640

    Use-after-free in function sco_sock_sendmsg() of the HCI subsystem.

    https://bugzilla.redhat.com/show_bug.cgi?id=1980646
  • PSBM-153018

    IPV6 NDP: Does not respond to solicitation requests

  • PSBM-151735

    Use-after-free when a packet is stalled in bridge arp queue

  • VSTOR-78331

    ext4/mfsync: BUG_ON if wrong set of files is provided

  • CVE-2023-45871

    IGB driver inadequate buffer size for frames larger than MTU

  • CVE-2023-32233-

    Use after free if modify and delete anonymous set in same nf-tables transaction (fixed)

  • CVE-2023-4623

    Invalid memory access in hfsc packet scheduler

  • CVE-2023-4622

    Null pointer dereference in unix local sockets during sendfile()

  • CVE-2022-4378

    proc string out of bound in proc_skip_spaces()

  • CVE-2022-3564

    bluetooth use-after-free in bluetooth l2cap_rx_state_recv

  • PSBM-145379

    netfilter per/cpu memory leak on error path

  • PSBM-145324

    fix device_rename for containers

  • PSBM-145263

    virtualize timestamps in /dev/ksmg and syslog outputs

  • CVE-2022-1353

    kernel data leak in pfkey_register