Release Info

Advisory: CLSA-2025:1738663576

OS: CentOS 8.4 ELS

Public date: 2025-02-04 05:06:19

Project: kernel

Version: 4.18.0-305.25.1.el8_4.tuxcare.els24

Errata link: https://errata.cloudlinux.com/centos8.4-els/CLSA-2025-1738663576.html

Changelog

- ELF: fix kernel.randomize_va_space double read {CVE-2024-46826} - smb: client: fix UAF in async decryption {CVE-2024-50047} - SMB3: Resolve data corruption of TCP server info fields {CVE-2024-50047} - smb3: add defines for new crypto algorithms {CVE-2024-50047} - net: do not delay dst_entries_add() in dst_release() {CVE-2024-50036} - net: atlantic: eliminate double free in error handling logic {CVE-2023-52664} - smb: client: fix potential UAF in smb2_is_valid_oplock_break() {CVE-2024-35863} - smb: client: fix potential UAF in smb2_is_valid_lease_break() {CVE-2024-35864} - smb: client: fix potential UAF in cifs_stats_proc_show() {CVE-2024-35867} - smb: client: fix potential UAF in cifs_stats_proc_write() {CVE-2024-35868} - smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect() {CVE-2024-35861} - smb: client: fix potential UAF in cifs_debug_files_proc_show() {CVE-2024-26928} - smb: client: fix use-after-free bug in cifs_debug_data_proc_show() {CVE-2023-52752} - smb: client: fix use-after-free bug in cifs_debug_data_proc_show()"

Update

Update command: dnf update kernel*

Packages list

bpftool-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-core-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-cross-headers-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-debug-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-debug-core-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-debug-devel-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-debug-modules-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-debug-modules-extra-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-debug-modules-internal-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-devel-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-headers-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-ipaclones-internal-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-modules-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-modules-extra-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-modules-internal-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-selftests-internal-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-tools-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-tools-libs-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm kernel-tools-libs-devel-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm perf-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm python3-perf-4.18.0-305.25.1.el8_4.tuxcare.els24.x86_64.rpm

CVEs

CVE-2024-50047
CVE-2023-52752
CVE-2024-46826
CVE-2024-26928
CVE-2024-35868
CVE-2024-35867
CVE-2023-52664
CVE-2024-35863
CVE-2024-35864
CVE-2024-35861
CVE-2024-50036