ALASKERNEL-5.10-2022-011

References: CVE-2021-26341  CVE-2021-26401  CVE-2021-4197  CVE-2021-47617  CVE-2022-0001  CVE-2022-0002  CVE-2022-0435  CVE-2022-0847  CVE-2022-1055  CVE-2022-23960  CVE-2022-2964  CVE-2022-48711  CVE-2022-48712  CVE-2022-48713  CVE-2022-48714  CVE-2022-48720  CVE-2022-48724  CVE-2022-48726  CVE-2022-48728  CVE-2022-48734  CVE-2022-48740  CVE-2022-48742  CVE-2022-48743  CVE-2022-48745  CVE-2022-48746  CVE-2022-48763  CVE-2022-48773  CVE-2022-48775  CVE-2022-48786  CVE-2022-48788  CVE-2022-48790  CVE-2022-48796  CVE-2022-48799  CVE-2022-48802  CVE-2022-48804  CVE-2022-48805  CVE-2022-48809  CVE-2022-48813  CVE-2022-48815  CVE-2022-48818  CVE-2022-48823  CVE-2023-1582 
FAQs regarding Amazon Linux ALAS/CVE Severity

Issue Overview:

2024-12-05: CVE-2022-48786 was added to this advisory.

2024-12-05: CVE-2021-47617 was added to this advisory.

2024-12-05: CVE-2022-48815 was added to this advisory.

2024-12-05: CVE-2022-48775 was added to this advisory.

2024-12-05: CVE-2022-48799 was added to this advisory.

2024-12-05: CVE-2022-48802 was added to this advisory.

2024-08-27: CVE-2022-48804 was added to this advisory.

2024-08-27: CVE-2022-48773 was added to this advisory.

2024-08-27: CVE-2022-48788 was added to this advisory.

2024-08-27: CVE-2022-48823 was added to this advisory.

2024-08-27: CVE-2022-48809 was added to this advisory.

2024-08-27: CVE-2022-48818 was added to this advisory.

2024-08-27: CVE-2022-48813 was added to this advisory.

2024-08-27: CVE-2022-48805 was added to this advisory.

2024-08-27: CVE-2022-48790 was added to this advisory.

2024-08-01: CVE-2022-48714 was added to this advisory.

2024-08-01: CVE-2022-48734 was added to this advisory.

2024-08-01: CVE-2022-48724 was added to this advisory.

2024-08-01: CVE-2022-48743 was added to this advisory.

2024-08-01: CVE-2022-48763 was added to this advisory.

2024-08-01: CVE-2022-48745 was added to this advisory.

2024-08-01: CVE-2022-48728 was added to this advisory.

2024-08-01: CVE-2022-48742 was added to this advisory.

2024-08-01: CVE-2022-48711 was added to this advisory.

2024-08-01: CVE-2022-48720 was added to this advisory.

2024-08-01: CVE-2022-48740 was added to this advisory.

2024-08-01: CVE-2022-48712 was added to this advisory.

2024-08-01: CVE-2022-48713 was added to this advisory.

2024-08-01: CVE-2022-48796 was added to this advisory.

2024-08-01: CVE-2022-48726 was added to this advisory.

2024-08-01: CVE-2022-48746 was added to this advisory.

2024-07-03: CVE-2023-1582 was added to this advisory.

AMD recommends using a software mitigation for this issue, which the kernel is enabling by default. The Linux kernel will use the generic retpoline software mitigation, instead of the specialized AMD one, on AMD instances (*5a*). This is done by default, and no administrator action is needed. (CVE-2021-26341)

AMD recommends using a software mitigation for this issue, which the kernel is enabling by default. The Linux kernel will use the generic retpoline software mitigation, instead of the specialized AMD one, on AMD instances (*5a*). This is done by default, and no administrator action is needed. (CVE-2021-26401)

An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. It is actually both for cgroup2 and cgroup1 versions of control groups. A local user could use this flaw to crash the system or escalate their privileges on the system. (CVE-2021-4197)

In the Linux kernel, the following vulnerability has been resolved:

PCI: pciehp: Fix infinite loop in IRQ handler upon power fault (CVE-2021-47617)

Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure. (CVE-2022-0001)

Non-transparent sharing of branch predictor within a context in some Intel(r) Processors may allow an authorized user to potentially enable information disclosure via local access. (CVE-2022-0002)

A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than the 64 allowed. This flaw allows a remote user to crash the system or possibly escalate their privileges if they have access to the TIPC network. (CVE-2022-0435)

A flaw was found in the way the flags member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system. (CVE-2022-0847)

A use-after-free vulnerability was found in the tc_new_tfilter function in net/sched/cls_api.c in the Linux kernel. The availability of local, unprivileged user namespaces allows privilege escalation. (CVE-2022-1055)

The Amazon Linux kernel now enables, by default, a software mitigation for this issue, on all ARM-based EC2 instance types. (CVE-2022-23960)

A flaw was found in the Linux kernel's driver for the ASIX AX88179_178A-based USB 2.0/3.0 Gigabit Ethernet Devices. The vulnerability contains multiple out-of-bounds reads and possible out-of-bounds writes. (CVE-2022-2964)

In the Linux kernel, the following vulnerability has been resolved:

tipc: improve size validations for received domain records (CVE-2022-48711)

In the Linux kernel, the following vulnerability has been resolved:

ext4: fix error handling in ext4_fc_record_modified_inode() (CVE-2022-48712)

In the Linux kernel, the following vulnerability has been resolved:

perf/x86/intel/pt: Fix crash with stop filters in single-range mode (CVE-2022-48713)

In the Linux kernel, the following vulnerability has been resolved:

bpf: Use VM_MAP instead of VM_ALLOC for ringbuf (CVE-2022-48714)

In the Linux kernel, the following vulnerability has been resolved:

net: macsec: Fix offload support for NETDEV_UNREGISTER event (CVE-2022-48720)

In the Linux kernel, the following vulnerability has been resolved:

iommu/vt-d: Fix potential memory leak in intel_setup_irq_remapping() (CVE-2022-48724)

In the Linux kernel, the following vulnerability has been resolved:

RDMA/ucma: Protect mc during concurrent multicast leaves (CVE-2022-48726)

In the Linux kernel, the following vulnerability has been resolved:

IB/hfi1: Fix AIP early init panic (CVE-2022-48728)

In the Linux kernel, the following vulnerability has been resolved:

btrfs: fix deadlock between quota disable and qgroup rescan worker (CVE-2022-48734)

In the Linux kernel, the following vulnerability has been resolved:

selinux: fix double free of cond_list on error paths (CVE-2022-48740)

In the Linux kernel, the following vulnerability has been resolved:

rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink() (CVE-2022-48742)

In the Linux kernel, the following vulnerability has been resolved:

net: amd-xgbe: Fix skb data length underflow (CVE-2022-48743)

In the Linux kernel, the following vulnerability has been resolved:

net/mlx5: Use del_timer_sync in fw reset flow of halting poll (CVE-2022-48745)

In the Linux kernel, the following vulnerability has been resolved:

net/mlx5e: Fix handling of wrong devices during bond netevent (CVE-2022-48746)

In the Linux kernel, the following vulnerability has been resolved:

KVM: x86: Forcibly leave nested virt when SMM state is toggled (CVE-2022-48763)

In the Linux kernel, the following vulnerability has been resolved:

xprtrdma: fix pointer derefs in error cases of rpcrdma_ep_create (CVE-2022-48773)

In the Linux kernel, the following vulnerability has been resolved:

Drivers: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj (CVE-2022-48775)

In the Linux kernel, the following vulnerability has been resolved:

vsock: remove vsock from connected table when connect is interrupted by a signal (CVE-2022-48786)

In the Linux kernel, the following vulnerability has been resolved:

nvme-rdma: fix possible use-after-free in transport error_recovery work (CVE-2022-48788)

In the Linux kernel, the following vulnerability has been resolved:

nvme: fix a possible use-after-free in controller reset during load (CVE-2022-48790)

In the Linux kernel, the following vulnerability has been resolved:

iommu: Fix potential use-after-free during probe (CVE-2022-48796)

In the Linux kernel, the following vulnerability has been resolved:

perf: Fix list corruption in perf_cgroup_switch() (CVE-2022-48799)

In the Linux kernel, the following vulnerability has been resolved:

fs/proc: task_mmu.c: don't read mapcount for migration entry (CVE-2022-48802)

In the Linux kernel, the following vulnerability has been resolved:

vt_ioctl: fix array_index_nospec in vt_setactivate (CVE-2022-48804)

In the Linux kernel, the following vulnerability has been resolved:

net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (CVE-2022-48805)

In the Linux kernel, the following vulnerability has been resolved:

net: fix a memleak when uncloning an skb dst and its metadata (CVE-2022-48809)

In the Linux kernel, the following vulnerability has been resolved:

net: dsa: felix: don't use devres for mdiobus (CVE-2022-48813)

In the Linux kernel, the following vulnerability has been resolved:

net: dsa: bcm_sf2: don't use devres for mdiobus (CVE-2022-48815)

In the Linux kernel, the following vulnerability has been resolved:

net: dsa: mv88e6xxx: don't use devres for mdiobus (CVE-2022-48818)

In the Linux kernel, the following vulnerability has been resolved:

scsi: qedf: Fix refcount issue when LOGO is received during TMF (CVE-2022-48823)

A race problem was found in fs/proc/task_mmu.c in the memory management sub-component in the Linux kernel. This issue may allow a local attacker with user privilege to cause a denial of service. (CVE-2023-1582)

Issue Correction:
Run yum update kernel to update your system.

New Packages:

aarch64:
    kernel-5.10.102-99.473.amzn2.aarch64
    kernel-headers-5.10.102-99.473.amzn2.aarch64
    kernel-debuginfo-common-aarch64-5.10.102-99.473.amzn2.aarch64
    perf-5.10.102-99.473.amzn2.aarch64
    perf-debuginfo-5.10.102-99.473.amzn2.aarch64
    python-perf-5.10.102-99.473.amzn2.aarch64
    python-perf-debuginfo-5.10.102-99.473.amzn2.aarch64
    kernel-tools-5.10.102-99.473.amzn2.aarch64
    kernel-tools-devel-5.10.102-99.473.amzn2.aarch64
    kernel-tools-debuginfo-5.10.102-99.473.amzn2.aarch64
    bpftool-5.10.102-99.473.amzn2.aarch64
    bpftool-debuginfo-5.10.102-99.473.amzn2.aarch64
    kernel-devel-5.10.102-99.473.amzn2.aarch64
    kernel-debuginfo-5.10.102-99.473.amzn2.aarch64
    kernel-livepatch-5.10.102-99.473-1.0-0.amzn2.aarch64

i686:
    kernel-headers-5.10.102-99.473.amzn2.i686

src:
    kernel-5.10.102-99.473.amzn2.src

x86_64:
    kernel-5.10.102-99.473.amzn2.x86_64
    kernel-headers-5.10.102-99.473.amzn2.x86_64
    kernel-debuginfo-common-x86_64-5.10.102-99.473.amzn2.x86_64
    perf-5.10.102-99.473.amzn2.x86_64
    perf-debuginfo-5.10.102-99.473.amzn2.x86_64
    python-perf-5.10.102-99.473.amzn2.x86_64
    python-perf-debuginfo-5.10.102-99.473.amzn2.x86_64
    kernel-tools-5.10.102-99.473.amzn2.x86_64
    kernel-tools-devel-5.10.102-99.473.amzn2.x86_64
    kernel-tools-debuginfo-5.10.102-99.473.amzn2.x86_64
    bpftool-5.10.102-99.473.amzn2.x86_64
    bpftool-debuginfo-5.10.102-99.473.amzn2.x86_64
    kernel-devel-5.10.102-99.473.amzn2.x86_64
    kernel-debuginfo-5.10.102-99.473.amzn2.x86_64
    kernel-livepatch-5.10.102-99.473-1.0-0.amzn2.x86_64