{"id":"CLSA-2024-1727815919","summary":"kernel: Fix of 75 CVEs","details":"- firmware: cs_dsp: Return error if block header overflows file {CVE-2024-42238}\n- scsi: qedf: Make qedf_execute_tmf() non-preemptible {CVE-2024-42124}\n- ftruncate: pass a signed offset {CVE-2024-42084}\n- firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files {CVE-2024-41056}\n- firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers {CVE-2024-41038}\n- USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor {CVE-2024-41035}\n- xfs: add bounds checking to xlog_recover_process_data {CVE-2024-41014}\n- netpoll: Fix race condition in netpoll_owner_active {CVE-2024-41005}\n- drm/radeon: fix UBSAN warning in kv_dpm.c {CVE-2024-40988}\n- ring-buffer: Fix a race between readers and resize checks {CVE-2024-38601}\n- scsi: mpi3mr: Avoid memcpy field-spanning write WARNING {CVE-2024-36920}\n- dmaengine: idxd: Fix oops during rmmod on single-CPU platforms {CVE-2024-35989}\n- udp: do not accept non-tunnel GSO skbs landing in a tunnel {CVE-2024-35884}\n- nvme-fc: do not wait in vain when unloading module {CVE-2024-26846}\n- drm/amdgpu: Fix the null pointer when load rlc firmware {CVE-2024-26649}\n- Input: cyapa - add missing input core locking to suspend/resume functions {CVE-2023-52884}\n- Input: synaptics-rmi4 - fix use after free in rmi_unregister_function() {CVE-2023-52840}\n- wifi: ath11k: fix htt pktlog locking {CVE-2023-52800}\n- wifi: ath11k: fix dfs radar event locking {CVE-2023-52798}\n- ACPI: LPIT: Avoid u32 multiplication overflow {CVE-2023-52683}\n- ACPI: extlog: fix NULL pointer dereference check {CVE-2023-52605}\n- HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect {CVE-2023-52478}\n- USB: core: Fix hang in usb_kill_urb by adding memory barriers {CVE-2022-48760}\n- phylib: fix potential use-after-free {CVE-2022-48754}\n- serial: core: fix transmit-buffer reset and memleak {CVE-2021-47527}\n- nvmem: Fix shift-out-of-bound (UBSAN) with byte size cells {CVE-2021-47497}\n- mlxsw: thermal: Fix out-of-bounds memory accesses {CVE-2021-47441}\n- hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs {CVE-2021-47393}\n- hwmon: (w83791d) Fix NULL pointer dereference by removing unnecessary structure field {CVE-2021-47386}\n- hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field {CVE-2021-47385}\n- hwmon: (w83793) Fix NULL pointer dereference by removing unnecessary structure field {CVE-2021-47384}\n- virtio-net: Add validation for used length {CVE-2021-47352}\n- fbmem: Do not delete the mode that is still in use {CVE-2021-47338}\n- watchdog: Fix possible use-after-free by calling del_timer_sync() {CVE-2021-47321}\n- ACPI: fix NULL pointer dereference {CVE-2021-47289}\n- driver core: auxiliary bus: Fix memory leak when driver_register() fail {CVE-2021-47287}\n- Input: elantech - fix stack out of bound access in elantech_change_report_id() {CVE-2021-47097}\n- HID: hid-thrustmaster: fix OOB read in thrustmaster_interrupts {CVE-2022-48866}\n- ipv6: prevent possible NULL dereference in rt6_probe() {CVE-2024-40960}\n- xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() {CVE-2024-40959}\n- wifi: iwlwifi: mvm: don't read past the mfuart notifcation {CVE-2024-40941}\n- wifi: iwlwifi: mvm: check n_ssids before accessing the ssids {CVE-2024-40929}\n- wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() {CVE-2024-40912}\n- wifi: cfg80211: Lock wiphy in cfg80211_get_station {CVE-2024-40911}\n- USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages {CVE-2024-40904}\n- scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory {CVE-2024-40901}\n- liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet {CVE-2024-39506}\n- vmci: prevent speculation leaks by sanitizing event in event_deliver() {CVE-2024-39499}\n- crypto: bcm - Fix pointer arithmetic {CVE-2024-38579}\n- scsi: qedf: Ensure the copied buf is NUL terminated {CVE-2024-38559}\n- net: openvswitch: fix overwriting ct original tuple for ICMPv6 {CVE-2024-38558}\n- tcp: Fix shift-out-of-bounds in dctcp_update_alpha(). {CVE-2024-37356}\n- scsi: lpfc: Move NPIV's transport unregistration to after resource clean up {CVE-2024-36952}\n- scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() {CVE-2024-36924}\n- wifi: iwlwifi: read txq-\u003eread_ptr under lock {CVE-2024-36922}\n- scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload {CVE-2024-36919}\n- netfilter: complete validation of user input {CVE-2024-35962}\n- VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host() {CVE-2024-35944}\n- ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() {CVE-2024-26894}\n- dm: call the resume method on internal suspend {CVE-2024-26880}\n- net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink() {CVE-2024-26855}\n- mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again {CVE-2024-26720}\n- tracing: Ensure visibility when inserting an element into tracing_map {CVE-2024-26645}\n- scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() {CVE-2023-52809}\n- perf/x86/lbr: Filter vsyscall addresses {CVE-2023-52476}\n- drm/radeon: check the alloc_workqueue return value in radeon_crtc_init() {CVE-2023-52470}\n- Input: add bounds checking to input_set_capability() {CVE-2022-48619}\n- tty: Fix out-of-bound vmalloc access in imageblit {CVE-2021-47383}\n- tcp: make sure init the accept_queue's spinlocks once {CVE-2024-26614}\n- bnx2x: Fix multiple UBSAN array-index-out-of-bounds {CVE-2024-42148}\n- net: do not leave a dangling sk pointer, when socket creation fails {CVE-2024-40954}\n- media: xc2028: avoid use-after-free in load_firmware_cb() {CVE-2024-43900}\n- fou: remove warn in gue_gro_receive on unsupported protocol {CVE-2024-44940}\n- net/sched: Fix UAF when resolving a clash {CVE-2024-41040}\n- PCI/MSI: Fix UAF in msi_capability_init {CVE-2024-41096}","modified":"2026-05-27T11:33:53.496656445Z","published":"2024-10-01T20:57:54Z","upstream":["CVE-2021-47097","CVE-2021-47287","CVE-2021-47289","CVE-2021-47321","CVE-2021-47338","CVE-2021-47352","CVE-2021-47383","CVE-2021-47384","CVE-2021-47385","CVE-2021-47386","CVE-2021-47393","CVE-2021-47441","CVE-2021-47497","CVE-2021-47527","CVE-2022-48619","CVE-2022-48754","CVE-2022-48760","CVE-2022-48866","CVE-2023-52470","CVE-2023-52476","CVE-2023-52478","CVE-2023-52605","CVE-2023-52683","CVE-2023-52798","CVE-2023-52800","CVE-2023-52809","CVE-2023-52840","CVE-2023-52884","CVE-2024-26614","CVE-2024-26645","CVE-2024-26649","CVE-2024-26720","CVE-2024-26846","CVE-2024-26855","CVE-2024-26880","CVE-2024-26894","CVE-2024-35884","CVE-2024-35944","CVE-2024-35962","CVE-2024-35989","CVE-2024-36919","CVE-2024-36920","CVE-2024-36922","CVE-2024-36924","CVE-2024-36952","CVE-2024-37356","CVE-2024-38558","CVE-2024-38559","CVE-2024-38579","CVE-2024-38601","CVE-2024-39499","CVE-2024-39506","CVE-2024-40901","CVE-2024-40904","CVE-2024-40911","CVE-2024-40912","CVE-2024-40929","CVE-2024-40941","CVE-2024-40954","CVE-2024-40959","CVE-2024-40960","CVE-2024-40988","CVE-2024-41005","CVE-2024-41014","CVE-2024-41035","CVE-2024-41038","CVE-2024-41040","CVE-2024-41056","CVE-2024-41096","CVE-2024-42084","CVE-2024-42124","CVE-2024-42148","CVE-2024-42238","CVE-2024-43900","CVE-2024-44940"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/centos8stream-els/CLSA-2024-1727815919.html"}],"affected":[{"package":{"name":"bpftool","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/bpftool?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-core","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-core?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-cross-headers","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-cross-headers?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-debug","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-debug?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-debug-core","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-debug-core?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-debug-devel","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-debug-devel?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-debug-modules","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-debug-modules?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-debug-modules-extra","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-debug-modules-extra?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-debug-modules-internal","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-debug-modules-internal?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-devel","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-devel?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-headers","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-headers?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-ipaclones-internal","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-ipaclones-internal?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-modules","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-modules?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-modules-extra","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-modules-extra?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-modules-internal","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-modules-internal?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-selftests-internal","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-selftests-internal?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-tools","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-tools?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-tools-libs","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-tools-libs?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"kernel-tools-libs-devel","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-tools-libs-devel?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"perf","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/perf?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}},{"package":{"name":"python3-perf","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/python3-perf?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727815919.json"}}],"schema_version":"1.7.5"}