Advisory: CLSA-2023:1686585068
OS: CentOS 8.4 ELS
Public date: 2023-06-12 11:51:10
Project: kernel
Version: 4.18.0-305.25.1.el8_4.tuxcare.els8
Errata link: https://errata.tuxcare.com/els_os/centos8.4els/CLSA-2023-1686585068.html
- cgroup: Use open-time cgroup namespace for process migration perm checks {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks {CVE-2021-4197} - cgroup: cgroup.{procs,threads} factor out common parts - cgroup: unify attach permission checking - vt: drop old FONT ioctls {CVE-2021-33656} - fbmem: Check virtual screen sizes in fb_set_var() {CVE-2021-33655} - fbcon: Prevent that screen size is smaller than font size {CVE-2021-33655} - fbcon: Disallow setting font bigger than screen size {CVE-2021-33655} - KVM: nVMX: add missing consistency checks for CR0 and CR4 {CVE-2023-30456} - net: usb: ax88179_178a: Fix packet receiving {CVE-2022-2964} - net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup {CVE-2022-2964} - net: usb: ax88179_178a: fix packet alignment padding {CVE-2022-2964} - ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 - KVM: x86/mmu: do compare-and-exchange of gPTE via the user address {CVE-2022-1158} - RDMA/cma: Do not change route.addr.src_addr.ss_family {CVE-2021-4028} - RDMA/cma: Make the locking for automatic state transition more clear - ath10k: Validate first subframe of A-MSDU before processing the list {CVE-2020-24588} - ath10k: drop MPDU which has discard flag set by firmware for SDIO {CVE-2020-24588} - mac80211: drop A-MSDUs on old ciphers {CVE-2020-24588} - cfg80211: mitigate A-MSDU aggregation attacks {CVE-2020-24588} - ipv4: make exception cache less predictible {CVE-2021-20322} - ipv4: use siphash instead of Jenkins in fnhe_hashfun() {CVE-2021-20322} - ipv6: make exception cache less predictible {CVE-2021-20322} - ipv6: use siphash in rt6_exception_hash() {CVE-2021-20322} - ipv6: use jhash2() in rt6_exception_hash() - psi: Fix uaf issue when psi trigger is destroyed while being polled {CVE-2022-2938} - psi: fix possible trigger missing in the window - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv - cgroup: make per-cgroup pressure stall tracking configurable - netfilter: nf_tables_offload: incorrect flow offload action array size {CVE-2022-25636} - netfilter: nftables_offload: KASAN slab-out-of-bounds Read in nft_flow_rule_create - cgroup: fix psi monitor for root cgroup - cgroup/cgroup.c: replace 'of->kn->priv' with of_cft() - Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm {CVE-2022-42896} - Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM {CVE-2022-42896} - devlink: Fix use-after-free after a failed reload {CVE-2022-3625} - KVM: VMX: Execute IBPB on emulated VM-exit when guest has IBRS {CVE-2022-2196} - net/sched: tcindex: update imperfect hash filters respecting rcu {CVE-2023-1281} - seq_buf: Fix overflow in seq_buf_putmem_hex() {CVE-2023-28772} - wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() {CVE-2023-1380} - kvm: initialize all of the kvm_debugregs structure before sending it to userspace {CVE-2023-1513} - Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work {CVE-2023-1989} - net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg {CVE-2023-31436} - cgroup-v1: Require capabilities to set release_agent {CVE-2022-0492} - net: sched: fix use-after-free in tc_new_tfilter() {CVE-2022-1055} - SUNRPC: Ensure we flush any closed sockets before xs_xprt_free() {CVE-2022-28893} - net/sched: cls_u32: fix netns refcount changes in u32_change() {CVE-2022-29581} - i2c: ismt: Fix an out-of-bounds bug in ismt_access() {CVE-2022-2873} - ovl: fail on invalid uid/gid mapping at copy up {CVE-2023-0386}
Update command: dnf update kernel*
bpftool-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-core-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-cross-headers-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-debug-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-debug-core-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-debug-devel-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-debug-modules-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-debug-modules-extra-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-debug-modules-internal-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-devel-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-headers-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-ipaclones-internal-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-modules-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-modules-extra-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-modules-internal-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-selftests-internal-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-tools-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-tools-libs-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm kernel-tools-libs-devel-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm perf-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm python3-perf-4.18.0-305.25.1.el8_4.tuxcare.els8.x86_64.rpm