[El-errata] New Ksplice updates for UEKR7 5.15.0 on OL8 and OL9 (ELBA-2023-12589)

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Mon Jul 24 21:28:04 UTC 2023


Synopsis: ELBA-2023-12589 can now be patched using Ksplice
CVEs: CVE-2023-2269 CVE-2023-3090 CVE-2023-3141 CVE-2023-3268 
CVE-2023-34256 CVE-2023-35823 CVE-2023-35824

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Bug Fix Advisory, ELBA-2023-12589.
More information about this errata can be found at
https://linux.oracle.com/errata/ELBA-2023-12589.html

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running UEKR7 5.15.0 on
OL8 and OL9 install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* CVE-2023-35824: Use-after-free during dm1105 device removal.

A race condition in the dm1105 driver's device removal path can result
in a use-after-free.  This flaw could be exploited by a local attacker
to cause a denial-of-service or other unexpected behavior.


* CVE-2023-2269: Denial-of-service in Device Mapper-Multipathing subsystem.

A possible recursive locking scenario in Linux Kernel Device Mapper
Multipathing subsystem can lead to a deadlock. A local user can use
this flaw to cause denial of service.


* CVE-2023-34256: Out-of-bounds read in ext4 checksum handling.

An arithmetic error in a checksum generation routine in the ext4 driver
can lead to an out-of-bounds read.  This flaw could be exploited by a
malicious local user to leak sensitive information or to aid in another
type of attack.


* CVE-2023-3090: Stack overflow in ipvlan driver during transmit operation.

A failure to zero out a buffer before use can lead to an out-of-bounds
write to the current process's stack.  This flaw could be exploited a
local attack to cause a denial of service, or other undefined behavior.


* CVE-2023-3141: Use-after-free in the r592 driver's device removal path.

A race condition can occur when removing an r592 device that can lead to
a use-after-free.  This flaw could be exploited by a local attacker to
cause a denial-of-service, or to leak sensitive information from kernel
memory.


* CVE-2023-35823: Use-after-free in video4linux driver for Philips 
SAA713x based TV cards.

Incorrect cleanup logic in the video4linux driver for Philips SAA713x based
TV cards can cause a use-after-free when a module or device is removed. This
can allow a local user to escalate privileges or cause undefined behavior.


* CVE-2023-3268: Out-of-bounds memory access in kernel-userspace relay 
file support.

An out-of-bounds memory access error exists in the kernel->userspace relay
support. This could allow a local attacker to crash the system or leak
kernel internal information.


* Data race in ext4 extents status.

Data race exists in the ext4 cached extent stored in the extent status tree.
This can lead to data corruption or data loss.

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.





More information about the El-errata mailing list