Release Info

Advisory: CLSA-2025:1736778412

OS: CentOS 8.4 ELS

Public date: 2025-01-13 09:26:55

Project: kernel

Version: 4.18.0-305.25.1.el8_4.tuxcare.els23

Errata link: https://errata.cloudlinux.com/centos8.4-els/CLSA-2025-1736778412.html

Changelog

- tracing: Free buffers when a used dynamic event is removed {CVE-2022-49006} - ASoC: ops: Check bounds for second channel in snd_soc_put_volsw_sx() {CVE-2022-48951} - ext4: fix slab-use-after-free in ext4_split_extent_at() {CVE-2024-49884} - ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed {CVE-2024-49884} - media: edia: dvbdev: fix a use-after-free {CVE-2024-27043} - media: dvbdev: remove double-unlock {CVE-2024-27043} - mptcp: pm: Fix uaf in __timer_delete_sync {CVE-2024-46858} - Input: powermate - fix use-after-free in powermate_config_complete {CVE-2023-52475} - x86/alternatives: Disable KASAN in apply_alternatives() {CVE-2023-52504} - ieee802154: ca8210: Fix a potential UAF in ca8210_probe {CVE-2023-52510} - wifi: iwlwifi: mvm: Fix a memory corruption issue {CVE-2023-52531} - vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans {CVE-2024-50264} - net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT {CVE-2024-53057} - bpf: Fix out-of-bounds write in trie_get_next_key() {CVE-2024-50262} - KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory {CVE-2024-50115} - KVM: nSVM: Don't strip host's C-bit from guest's CR3 when reading PDPTRs {CVE-2024-50115} - Bluetooth: L2CAP: Fix uaf in l2cap_connect {CVE-2024-49950} - drm/amd/display: Fix index out of bounds in degamma hardware format translation {CVE-2024-49894} - drm/amd/display: Fix index out of bounds in DCN30 color transformation {CVE-2024-49969} - drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation {CVE-2024-49895}

Update

Update command: dnf update kernel*

Packages list

bpftool-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-core-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-cross-headers-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-debug-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-debug-core-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-debug-devel-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-debug-modules-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-debug-modules-extra-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-debug-modules-internal-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-devel-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-headers-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-ipaclones-internal-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-modules-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-modules-extra-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-modules-internal-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-selftests-internal-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-tools-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-tools-libs-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm kernel-tools-libs-devel-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm perf-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm python3-perf-4.18.0-305.25.1.el8_4.tuxcare.els23.x86_64.rpm

CVEs

CVE-2024-49950
CVE-2024-50115
CVE-2024-27043
CVE-2023-52531
CVE-2024-50262
CVE-2024-49884
CVE-2023-52475
CVE-2023-52504
CVE-2024-50264
CVE-2024-53057
CVE-2022-48951
CVE-2023-52510
CVE-2024-49969
CVE-2024-46858
CVE-2022-49006
CVE-2024-49894
CVE-2024-49895