{"id":"CLSA-2024-1719932549","summary":"kernel: Fix of 20 CVEs","details":"- net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv() {CVE-2024-26882}\n- net: Set true network header for ECN decapsulation {CVE-2024-26882}\n- media: dvb-core: Fix use-after-free due to race at dvb_register_device() {CVE-2022-45884}\n- media: dvbdev: fix error logic at dvb_register_device() {CVE-2022-45884}\n- media: dvbdev: Fix memleak in dvb_register_device {CVE-2022-45884}\n- media: media/dvb: Use kmemdup rather than duplicating its implementation {CVE-2022-45884}\n- media: dvbdev: drop refcount on error path in dvb_device_open() {CVE-2022-45884}\n- media: dvbdev: fix refcnt bug {CVE-2022-45884}\n- media: dvbdev: adopts refcnt to avoid UAF {CVE-2022-45884}\n- netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() {CVE-2024-27020}\n- netfilter: nf_tables: __nft_expr_type_get() selects specific family type {CVE-2024-27020}\n- scsi: qla2xxx: Fix double free of fcport {CVE-2024-26929}\n- of: fdt: fix off-by-one error in unflatten_dt_nodes() {CVE-2022-48672}\n- USB: core: Fix deadlock in usb_deauthorize_interface() {CVE-2024-26934}\n- smb: client: fix use-after-free bug in cifs_debug_data_proc_show() {CVE-2023-52752}\n- netfilter: nf_tables: disallow anonymous set with timeout flag {CVE-2024-26642}\n- media: technisat-usb2: break out of loop at end of buffer {CVE-2019-15505}\n- Input: gtco - bounds check collection indent level {CVE-2019-13631}\n- ext4: fix kernel infoleak via ext4_extent_header {CVE-2022-0850}\n- media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors {CVE-2020-0404}\n- netfilter: nft_set_pipapo: skip inactive elements during set walk {CVE-2023-6817}\n- libceph: harden msgr2.1 frame segment length checks {CVE-2023-44466}\n- media: dvb-core: Fix kernel WARNING for blocking operation in wait_event*() {CVE-2023-31084}\n- dm ioctl: fix nested locking in table_clear() to remove deadlock concern {CVE-2023-2269}\n- hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition {CVE-2023-1855}\n- HID: betop: check shape of output reports {CVE-2023-1073}\n- RDMA/core: Don't infoleak GRH fields {CVE-2021-3923}\n- HID: betop: fix slab-out-of-bounds Write in betop_probe {CVE-2023-1073}\n- HID: check empty report_list in hid_validate_values() {CVE-2023-1073}\n- media: ttusb-dec: fix memory leak in ttusb_dec_exit_dvb() {CVE-2022-45887}","modified":"2026-05-27T11:34:16.732824399Z","published":"2024-07-02T15:02:32Z","upstream":["CVE-2019-13631","CVE-2019-15505","CVE-2020-0404","CVE-2021-3923","CVE-2022-0850","CVE-2022-45884","CVE-2022-45887","CVE-2022-48672","CVE-2023-1073","CVE-2023-1855","CVE-2023-2269","CVE-2023-31084","CVE-2023-44466","CVE-2023-52752","CVE-2023-6817","CVE-2024-26642","CVE-2024-26882","CVE-2024-26929","CVE-2024-26934","CVE-2024-27020"],"references":[{"type":"ADVISORY","url":"https://errata.cloudlinux.com/centos8.4-els/CLSA-2024-1719932549.html"}],"affected":[{"package":{"name":"bpftool","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/bpftool?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-core","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-core?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-cross-headers","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-cross-headers?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-debug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-debug-core","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-core?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-debug-devel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-devel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-debug-modules","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-modules?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-debug-modules-extra","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-modules-extra?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-debug-modules-internal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-modules-internal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-devel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-devel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-headers","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-headers?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-ipaclones-internal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-ipaclones-internal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-modules","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-modules?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-modules-extra","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-modules-extra?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-modules-internal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-modules-internal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-selftests-internal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-selftests-internal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-tools","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-tools?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-tools-libs","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-tools-libs?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"kernel-tools-libs-devel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-tools-libs-devel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"perf","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/perf?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}},{"package":{"name":"python3-perf","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/python3-perf?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els17"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1719932549.json"}}],"schema_version":"1.7.5"}