Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2024:1268
HistoryMar 12, 2024 - 11:32 a.m.

(RHSA-2024:1268) Important: kernel security and bug fix update

2024-03-1211:32:49
access.redhat.com
12
linux kernel
security fix
bug fix
nf_tables
intel
gather data sampling
net/sched
fbcon
null-ptr-deref
nfp
l2cap_sock_release
nvmet_tcp_free_crypto
igb driver
qfq_change_class
nft_pipapo_walk
ktls
vmwgfx
sch_qfq network scheduler
kworker/events_freezable_power_efficient
multipath
sanityonly
ipoib mcast lockup fix

7.8 High

AI Score

Confidence

High

0.024 Low

EPSS

Percentile

90.1%

JSON

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: nf_tables: stack-out-of-bounds-read in nft_byteorder_eval() (CVE-2023-35001,ZDI-CAN-20721)

  • hw: Intel: Gather Data Sampling (GDS) side channel vulnerability (CVE-2022-40982,Downfall)

  • kernel: net/sched: sch_qfq component can be exploited if in qfq_change_agg function happens qfq_enqueue overhead (CVE-2023-3611)

  • kernel: fbcon: out-of-sync arrays in fbcon_mode_deleted due to wrong con2fb_map assignment (CVE-2023-38409)

  • kernel: net/sched: sch_hfsc UAF (CVE-2023-4623)

  • kernel: null-ptr-deref vulnerabilities in sl_tx_timeout in drivers/net/slip (CVE-2022-41858)

  • kernel: nfp: use-after-free in area_cache_get() (CVE-2022-3545)

  • kernel: use-after-free in l2cap_sock_release in net/bluetooth/l2cap_sock.c (CVE-2023-40283)

  • kernel: use after free in nvmet_tcp_free_crypto in NVMe (CVE-2023-5178)

  • kernel: IGB driver inadequate buffer size for frames larger than MTU (CVE-2023-45871)

  • kernel: out-of-bounds write in qfq_change_class function (CVE-2023-31436)

  • kernel: inactive elements in nft_pipapo_walk (CVE-2023-6817)

  • kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination (CVE-2024-0646)

  • kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests (CVE-2023-3390)

  • kernel: vmwgfx: NULL pointer dereference in vmw_cmd_dx_define_query (CVE-2022-38096)

  • kernel: use-after-free in sch_qfq network scheduler (CVE-2023-4921)

Bug Fix(es):

  • kernel: fbcon: out-of-sync arrays in fbcon_mode_deleted due to wrong con2fb_map assignment (JIRA:RHEL-1203)

  • How to reduce or prevent thousands of kworker/events_freezable_power_efficient threads being created every time multipath -ll is run (JIRA:RHEL-15054)

  • kernel: net/sched: sch_hfsc UAF (JIRA:RHEL-16461)

  • [SanityOnly][kernel]BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:35 at: sock_map_update_elem_sys+0x85/0x2a0 (JIRA:RHEL-6126)

  • kernel: hw: Intel: Gather Data Sampling (GDS) side channel vulnerability (JIRA:RHEL-9246)

  • ipoib mcast lockup fix (JIRA:RHEL-19695)

OSVersionArchitecturePackageVersionFilename
RedHat8ppc64lekernel-cross-headers< 4.18.0-193.128.1.el8_2kernel-cross-headers-4.18.0-193.128.1.el8_2.ppc64le.rpm
RedHat8ppc64leperf< 4.18.0-193.128.1.el8_2perf-4.18.0-193.128.1.el8_2.ppc64le.rpm
RedHat8ppc64lekernel-debug< 4.18.0-193.128.1.el8_2kernel-debug-4.18.0-193.128.1.el8_2.ppc64le.rpm
RedHat8x86_64kernel-debug-core< 4.18.0-193.128.1.el8_2kernel-debug-core-4.18.0-193.128.1.el8_2.x86_64.rpm
RedHat8x86_64kernel-tools-libs< 4.18.0-193.128.1.el8_2kernel-tools-libs-4.18.0-193.128.1.el8_2.x86_64.rpm
RedHat8x86_64kernel-debug< 4.18.0-193.128.1.el8_2kernel-debug-4.18.0-193.128.1.el8_2.x86_64.rpm
RedHat8ppc64lekernel-debug-modules< 4.18.0-193.128.1.el8_2kernel-debug-modules-4.18.0-193.128.1.el8_2.ppc64le.rpm
RedHat8ppc64lekernel-devel< 4.18.0-193.128.1.el8_2kernel-devel-4.18.0-193.128.1.el8_2.ppc64le.rpm
RedHat8x86_64perf-debuginfo< 4.18.0-193.128.1.el8_2perf-debuginfo-4.18.0-193.128.1.el8_2.x86_64.rpm
RedHat8ppc64lekernel-core< 4.18.0-193.128.1.el8_2kernel-core-4.18.0-193.128.1.el8_2.ppc64le.rpm
Rows per page:
1-10 of 501

Related

nessus 71
redhat 36
oraclelinux 8
osv 5
almalinux 1
ubuntucve 7
openvas 10
centos 2
ubuntu 4
ibm 4
mageia 1
prion 4
nvd 7
cvelist 5
redhatcve 5
cnvd 3
cbl_mariner 10
debiancve 5
vulnrichment 1
veracode 1
cve 5
amazon 1
photon 1
f5 1
ics 1
nessus
nessus
RHEL 8 : kernel (RHSA-2024:1268)
2024-03-12 00:00:00
RHEL 8 : kernel-rt (RHSA-2024:1269)
2024-03-12 00:00:00
RHEL 8 : kpatch-patch (RHSA-2024:1278)
2024-03-12 00:00:00
redhat
redhat
(RHSA-2024:1269) Important: kernel-rt security update
2024-03-12 11:32:56
(RHSA-2024:1278) Important: kpatch-patch security update
2024-03-12 14:46:59
(RHSA-2024:0876) Important: kpatch-patch security update
2024-02-20 04:44:23
oraclelinux
oraclelinux
kernel security update
2024-04-22 00:00:00
kernel security update
2024-03-06 00:00:00
kernel security update
2024-02-22 00:00:00
osv
osv
Important: kernel security update
2024-02-20 00:00:00
linux vulnerabilities
2023-10-30 20:42:30
linux-iot vulnerabilities
2023-07-28 13:46:00
almalinux
almalinux
Important: kernel security update
2024-02-20 00:00:00
ubuntucve
ubuntucve
CVE-2023-3611
2023-07-21 00:00:00
CVE-2023-38409
2023-07-17 00:00:00
CVE-2022-38096
2022-09-09 00:00:00
openvas
openvas
CentOS: Security Advisory for bpftool (CESA-2024:1249)
2024-03-26 00:00:00
Ubuntu: Security Advisory (USN-6460-1)
2023-11-01 00:00:00
Ubuntu: Security Advisory (USN-6261-1)
2023-07-31 00:00:00
centos
centos
bpftool, kernel, perf, python security update
2024-03-25 15:37:48
bpftool, kernel, perf, python security update
2024-01-12 19:36:38
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-10-30 00:00:00
Linux kernel (IoT) vulnerabilities
2023-07-28 00:00:00
Linux kernel vulnerabilities
2023-07-26 00:00:00
ibm
ibm
Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities (CVE-2023-42753, CVE-2023-5178, CVE-2023-47710, CVE-2023-45871)
2024-05-23 17:59:38
Security Bulletin: Vulnerability in Linux Kernel could affect IBM Storage Copy Data Management
2024-04-30 21:41:37
Security Bulletin: Multiple Linux Kernel vulnerabilities affects IBM Storage Scale System.
2024-05-03 09:04:24
mageia
mageia
Updated kernel packages fix security vulnerabilities
2023-07-19 22:53:31
prion
prion
Design/Logic Flaw
2023-07-17 22:15:00
Null pointer dereference
2022-09-09 15:15:00
Null pointer dereference
2023-01-17 18:15:00
nvd
nvd
CVE-2023-38409
2023-07-17 22:15:09
CVE-2023-40283
2023-08-14 03:15:09
CVE-2022-41858
2023-01-17 18:15:11
cvelist
cvelist
CVE-2023-38409
2023-07-17 00:00:00
CVE-2022-41858
2023-01-17 00:00:00
CVE-2022-38096 There is a NULL pointer vulnerability in vmwgfx driver
2022-09-06 00:00:00
redhatcve
redhatcve
CVE-2022-41858
2022-11-22 14:26:24
CVE-2023-38409
2023-08-08 14:49:42
CVE-2022-38096
2022-10-13 14:30:18
cnvd
cnvd
Linux kernel fbcon.c file out-of-bounds read vulnerability
2023-07-19 00:00:00
Linux kernel memory misreference vulnerability (CNVD-2023-64508)
2023-08-16 00:00:00
Linux kernel memory misreference vulnerability (CNVD-2023-9933644)
2023-12-20 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-38409 affecting package kernel 5.10.185.1-1
2023-08-15 16:37:27
CVE-2022-41858 affecting package kernel 5.10.164.1-1
2023-02-14 02:36:14
CVE-2022-41858 affecting package kernel for versions less than 5.15.87.1-1
2023-02-01 18:39:09
debiancve
debiancve
CVE-2022-38096
2022-09-09 15:15:14
CVE-2023-38409
2023-07-17 22:15:09
CVE-2023-31436
2023-04-28 02:15:09
vulnrichment
vulnrichment
CVE-2022-38096 There is a NULL pointer vulnerability in vmwgfx driver
2022-09-06 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-03-06 19:20:31
cve
cve
CVE-2023-38409
2023-07-17 22:15:09
CVE-2022-38096
2022-09-09 15:15:14
CVE-2023-40283
2023-08-14 03:15:09
amazon
amazon
Important: kernel
2023-09-27 22:48:00
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0656
2023-09-27 00:00:00
f5
f5
K000135795: Downfall Attacks CVE-2022-40982
2023-08-09 00:00:00
ics
ics
Siemens SIMATIC IPCs
2023-09-14 12:00:00

7.8 High

AI Score

Confidence

High

0.024 Low

EPSS

Percentile

90.1%

JSON
Related for RHSA-2024:1268
nessus71redhat36oraclelinux8osv5almalinux1ubuntucve7openvas10centos2ubuntu4ibm4mageia1prion4nvd7cvelist5redhatcve5cnvd3cbl_mariner10debiancve5vulnrichment1veracode1cve5amazon1photon1f51ics1