Important: kernel

Issue Overview:

2024-06-07: CVE-2023-26607 was added to this advisory.

A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function ipv6_renew_options of the component IPv6 Handler. The manipulation leads to memory leak. The attack can be launched remotely. It is recommended to apply a patch to fix this issue. The identifier VDB-211021 was assigned to this vulnerability. (CVE-2022-3524)

In the Linux kernel 6.0.8, there is an out-of-bounds read in ntfs_attr_find in fs/ntfs/attrib.c. (CVE-2023-26607)

Affected Packages:

kernel

Issue Correction:
Run yum update kernel to update your system.

New Packages:

i686:  
    kernel-debuginfo-4.14.301-153.528.amzn1.i686  
    kernel-tools-4.14.301-153.528.amzn1.i686  
    kernel-tools-debuginfo-4.14.301-153.528.amzn1.i686  
    kernel-devel-4.14.301-153.528.amzn1.i686  
    kernel-4.14.301-153.528.amzn1.i686  
    kernel-debuginfo-common-i686-4.14.301-153.528.amzn1.i686  
    kernel-tools-devel-4.14.301-153.528.amzn1.i686  
    kernel-headers-4.14.301-153.528.amzn1.i686  
    perf-4.14.301-153.528.amzn1.i686  
    perf-debuginfo-4.14.301-153.528.amzn1.i686  
  
src:  
    kernel-4.14.301-153.528.amzn1.src  
  
x86_64:  
    perf-debuginfo-4.14.301-153.528.amzn1.x86_64  
    kernel-debuginfo-common-x86_64-4.14.301-153.528.amzn1.x86_64  
    kernel-tools-4.14.301-153.528.amzn1.x86_64  
    kernel-debuginfo-4.14.301-153.528.amzn1.x86_64  
    kernel-headers-4.14.301-153.528.amzn1.x86_64  
    kernel-tools-debuginfo-4.14.301-153.528.amzn1.x86_64  
    kernel-devel-4.14.301-153.528.amzn1.x86_64  
    kernel-4.14.301-153.528.amzn1.x86_64  
    perf-4.14.301-153.528.amzn1.x86_64  
    kernel-tools-devel-4.14.301-153.528.amzn1.x86_64  

Additional References

Red Hat: CVE-2022-3524, CVE-2023-26607

Mitre: CVE-2022-3524, CVE-2023-26607