{"id":"ALSA-2024:0897","summary":"Important: kernel security update","details":"The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: net/sched: sch_hfsc UAF (CVE-2023-4623)\n* kernel: use-after-free in sch_qfq network scheduler (CVE-2023-4921)\n* kernel: inactive elements in nft_pipapo_walk (CVE-2023-6817)\n* kernel: IGB driver inadequate buffer size for frames larger than MTU (CVE-2023-45871)\n* kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination (CVE-2024-0646)\n* kernel: nfp: use-after-free in area_cache_get() (CVE-2022-3545)\n* kernel: null-ptr-deref vulnerabilities in sl_tx_timeout in drivers/net/slip (CVE-2022-41858)\n* kernel: HID: check empty report_list in hid_validate_values() (CVE-2023-1073)\n* kernel: Possible use-after-free since the two fdget() during vhost_net_set_backend() (CVE-2023-1838)\n* kernel: NULL pointer dereference in can_rcv_filter (CVE-2023-2166)\n* kernel: Slab-out-of-bound read in compare_netdev_and_ip (CVE-2023-2176)\n* kernel: A heap out-of-bounds write when function perf_read_group is called and sibling_list is smaller than its child's sibling_list (CVE-2023-5717)\n* kernel: NULL pointer dereference in nvmet_tcp_build_iovec (CVE-2023-6356)\n* kernel: NULL pointer dereference in nvmet_tcp_execute_request (CVE-2023-6535)\n* kernel: NULL pointer dereference in __nvmet_req_complete (CVE-2023-6536)\n* kernel: Out-Of-Bounds Read vulnerability in smbCalcSize (CVE-2023-6606)\n* kernel: OOB Access in smb2_dump_detail (CVE-2023-6610)\n* kernel: use-after-free in l2cap_sock_release in net/bluetooth/l2cap_sock.c (CVE-2023-40283)\n* kernel: SEV-ES local priv escalation (CVE-2023-46813)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.","modified":"2026-01-30T02:28:55.594140Z","published":"2024-02-20T00:00:00Z","related":["CVE-2022-3545","CVE-2022-41858","CVE-2023-1073","CVE-2023-1838","CVE-2023-2166","CVE-2023-2176","CVE-2023-40283","CVE-2023-45871","CVE-2023-4623","CVE-2023-46813","CVE-2023-4921","CVE-2023-5717","CVE-2023-6356","CVE-2023-6535","CVE-2023-6536","CVE-2023-6606","CVE-2023-6610","CVE-2023-6817","CVE-2024-0646"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:0897"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-3545"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-41858"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-1073"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-1838"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-2166"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-2176"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-40283"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-45871"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-4623"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-46813"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-4921"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-5717"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-6356"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-6535"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-6536"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-6606"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-6610"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-6817"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-0646"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2087568"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2144379"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2161310"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2173403"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2187813"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2187931"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2231800"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2237757"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2244723"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2245514"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2246944"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2246945"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2253611"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2253614"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2253908"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2254052"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2254053"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2254054"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2255139"},{"type":"ADVISORY","url":"https://errata.almalinux.org/8/ALSA-2024-0897.html"}],"affected":[{"package":{"name":"bpftool","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/bpftool"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-abi-stablelists","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-abi-stablelists"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-core","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-cross-headers","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-cross-headers"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-debug","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-debug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-debug-core","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-debug-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-debug-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-debug-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-debug-modules","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-debug-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-debug-modules-extra","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-debug-modules-extra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-doc","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-doc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-modules","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-modules-extra","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-modules-extra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-tools","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-tools-libs","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-tools-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-tools-libs-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-tools-libs-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-zfcpdump","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-zfcpdump"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-zfcpdump-core","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-zfcpdump-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-zfcpdump-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-zfcpdump-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-zfcpdump-modules","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-zfcpdump-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"kernel-zfcpdump-modules-extra","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/kernel-zfcpdump-modules-extra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"perf","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/perf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}},{"package":{"name":"python3-perf","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/python3-perf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-513.18.1.el8_9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:0897.json"}}],"schema_version":"1.7.3"}