[El-errata] New Ksplice updates for RHCK 9 (ELSA-2024-4583)

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Jul 30 17:05:05 UTC 2024 

Synopsis: ELSA-2024-4583 can now be patched using Ksplice
CVEs: CVE-2021-47548 CVE-2021-47596 CVE-2022-48627 CVE-2023-52638 CVE-2024-26783 CVE-2024-26858 CVE-2024-35954 CVE-2024-35958 CVE-2024-36270 CVE-2024-36886 CVE-2024-36957 CVE-2024-38586 CVE-2024-38593 CVE-2024-38663

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2024-4583.
More information about this errata can be found at
https://linux.oracle.com/errata/ELSA-2024-4583.html

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running RHCK 9 install
these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* CVE-2022-48627: Data corruption in virtual terminal driver.

Optimisation of a function call in virtual terminal driver can lead to
data corruption due to copying between overlapping buffers. A local
attacker can exploit this flaw to cause a denial-of-service, corrupt
data, or aid in other types of attacks.


* CVE-2023-52638: Denial-of-service in SAE J1939 driver.

A locking error when using SAE J1939 could lead to a deadlock. A local
attacker could use this flaw to cause a denial-of-service.


* CVE-2024-26783: Denial-of-service in page migration driver.

A missing check in page migration driver when numa balancing on and
numa node doesn't have its local memory could lead to a kernel oops.
A local attacker could use this flaw to cause a denial-of-service.


* CVE-2024-26858: Denial-of-service in Mellanox network adapters Ethernet support.

A missing memory barrier when using Mellanox 5th generation network adapters
could lead to a NULL pointer dereference. A local attacker could use this
flaw to cause a denial-of-service.


* CVE-2024-35954: Denial-of-service in SCSI generic driver.

A race when using SCSI generic driver could lead to a NULL pointer
dereference. A local attacker could use this flaw to cause a
denial-of-service.


* CVE-2024-35958: Denial-of-service in Elastic Network Adapter (ENA) support.

A logic error when using Elastic Network Adapter (ENA) support could
lead to a use-after-free. A local attacker could use this flaw to cause
a denial-of-service.


* CVE-2024-36270: Denial-of-service in IPv4 tproxy support.

A missing check when using IPv4 tproxy support could lead to a NULL
pointer dereference. A local attacker could use this flaw to cause a
denial-of-service.


* CVE-2024-36886: Remote code execution in TIPC networking stack.

A logic error when using the TIPC networking stack could lead to a
use-after-free. A remote attacker could use this flaw to execute
arbitrary code in kernel mode, escalate privileges, cause a
denial-of-service, or aid in other types of attacks.


* CVE-2024-38586: Memory corruption in Realtek 8169/8168/8101/8125 ethernet driver.

A logic error when using Realtek 8169/8168/8101/8125 ethernet driver
could possibly lead to ring buffer corruption and NULL pointer
dereference. A local attacker could use this flaw to cause
denial-of-service.


* CVE-2024-38593: Denial-of-service in Micrel PHYs.

A missing check when using Micrel PHYs could lead to a NULL pointer
dereference. A local attacker could use this flaw to cause a denial-of-
service.


* CVE-2024-38663: Denial-of-service in block IO controller cgroup interface.

A logic error in generic block IO controller cgroup interface when resetting
io stat could lead to internal data structures corruption. A local attacker
could use this flaw to cause memory corruption.


* Note: Oracle has determined that CVE-2021-47548 is not applicable.

The kernel is not affected by CVE-2021-47548
since the code under consideration is not compiled.


* Note: Oracle has determined that CVE-2021-47596 is not applicable.

The kernel is not affected by CVE-2021-47596
since the code under consideration is not compiled.


* Note: Oracle has determined that CVE-2024-36957 is not applicable.

The kernel is not affected by CVE-2024-36957
since the code under consideration is not compiled.

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.

More information about the El-errata mailing list