{"id":"CLSA-2023-1700591846","summary":"kernel: Fix of 10 CVEs","details":"- openvswitch: fix OOB access in reserve_sfa_size() {CVE-2022-2639}\n- xen/blkfront: fix leaking data in shared pages {CVE-2022-26365}\n- Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt() {CVE-2020-36386}\n- btrfs: only search for left_info if there is no right_info in try_merge_free_space {CVE-2019-19448}\n- filldir[64]: remove WARN_ON_ONCE() for bad directory entries {CVE-2019-10220}\n- Make filldir[64]() verify the directory entry filename is valid {CVE-2019-10220}\n- ath9k: release allocated buffer if timed out {CVE-2019-19074}\n- net: sched: sch_qfq: prevent slab-out-of-bounds in {CVE-2023-31436}\n- memstick: r592: Fix UAF bug in r592_remove due to race {CVE-2023-3141}\n- wifi: rndis_wlan: Prevent buffer overflow in rndis_query_oid {CVE-2023-23559}\n- ext4: fix kernel infoleak via ext4_extent_header {CVE-2022-0850}","modified":"2026-05-27T11:35:41.698339583Z","published":"2023-11-21T18:37:30Z","upstream":["CVE-2019-10220","CVE-2019-19074","CVE-2019-19448","CVE-2020-36386","CVE-2022-0850","CVE-2022-26365","CVE-2022-2639","CVE-2023-23559","CVE-2023-3141","CVE-2023-31436"],"references":[{"type":"ADVISORY","url":"https://errata.cloudlinux.com/els6/CLSA-2023-1700591846.html"}],"affected":[{"package":{"name":"kernel-abi-whitelists","ecosystem":"TuxCare:CentOS:6","purl":"pkg:rpm/tuxcare/kernel-abi-whitelists?distro=centos-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.6.32-754.35.8.el6.tuxcare.els13"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2023-1700591846.json"}},{"package":{"name":"kernel-doc","ecosystem":"TuxCare:CentOS:6","purl":"pkg:rpm/tuxcare/kernel-doc?distro=centos-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.6.32-754.35.8.el6.tuxcare.els13"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2023-1700591846.json"}},{"package":{"name":"kernel-firmware","ecosystem":"TuxCare:CentOS:6","purl":"pkg:rpm/tuxcare/kernel-firmware?distro=centos-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.6.32-754.35.8.el6.tuxcare.els13"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2023-1700591846.json"}}],"schema_version":"1.7.5"}