Amazon Linux 2 Security Advisory: ALASKERNEL-5.10-2025-084
Advisory Release Date: 2025-03-03 19:10 Pacific
Advisory Updated Date: 2025-03-26 19:21 Pacific
FAQs regarding Amazon Linux ALAS/CVE Severity
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: use timestamp to check for set element timeout (CVE-2024-27397)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: prefer nft_chain_validate (CVE-2024-41042)
In the Linux kernel, the following vulnerability has been resolved:
scsi: mpi3mr: Sanitise num_phys (CVE-2024-42159)
In the Linux kernel, the following vulnerability has been resolved:
drm/i915/gem: Fix Virtual Memory mapping boundaries calculation (CVE-2024-42259)
In the Linux kernel, the following vulnerability has been resolved:
tipc: Return non-zero value from tipc_udp_addr2str() on error (CVE-2024-42284)
In the Linux kernel, the following vulnerability has been resolved:
RDMA/iwcm: Fix a use-after-free related to destroying CM IDs (CVE-2024-42285)
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Complete command early within lock (CVE-2024-42287)
In the Linux kernel, the following vulnerability has been resolved:
PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal (CVE-2024-42302)
In the Linux kernel, the following vulnerability has been resolved:
devres: Fix memory leakage caused by driver API devm_free_percpu() (CVE-2024-43871)
In the Linux kernel, the following vulnerability has been resolved:
mlxsw: spectrum_acl_erp: Fix object nesting warning (CVE-2024-43880)
In the Linux kernel, the following vulnerability has been resolved:
exec: Fix ToCToU between perm check and set-uid/gid usage (CVE-2024-43882)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: ctnetlink: use helper function to calculate expect ID (CVE-2024-44944)
Affected Packages:
kernel
Note:
This advisory is applicable to Amazon Linux 2 - Kernel-5.10 Extra. Visit this page to learn more about Amazon Linux 2 (AL2) Extras and this FAQ section for the difference between AL2 Core and AL2 Extras advisories.
Issue Correction:
Run yum update kernel to update your system.
aarch64:
kernel-5.10.224-212.876.amzn2.aarch64
kernel-headers-5.10.224-212.876.amzn2.aarch64
kernel-debuginfo-common-aarch64-5.10.224-212.876.amzn2.aarch64
perf-5.10.224-212.876.amzn2.aarch64
perf-debuginfo-5.10.224-212.876.amzn2.aarch64
python-perf-5.10.224-212.876.amzn2.aarch64
python-perf-debuginfo-5.10.224-212.876.amzn2.aarch64
kernel-tools-5.10.224-212.876.amzn2.aarch64
kernel-tools-devel-5.10.224-212.876.amzn2.aarch64
kernel-tools-debuginfo-5.10.224-212.876.amzn2.aarch64
bpftool-5.10.224-212.876.amzn2.aarch64
bpftool-debuginfo-5.10.224-212.876.amzn2.aarch64
kernel-devel-5.10.224-212.876.amzn2.aarch64
kernel-debuginfo-5.10.224-212.876.amzn2.aarch64
kernel-livepatch-5.10.224-212.876-1.0-0.amzn2.aarch64
i686:
kernel-headers-5.10.224-212.876.amzn2.i686
src:
kernel-5.10.224-212.876.amzn2.src
x86_64:
kernel-5.10.224-212.876.amzn2.x86_64
kernel-headers-5.10.224-212.876.amzn2.x86_64
kernel-debuginfo-common-x86_64-5.10.224-212.876.amzn2.x86_64
perf-5.10.224-212.876.amzn2.x86_64
perf-debuginfo-5.10.224-212.876.amzn2.x86_64
python-perf-5.10.224-212.876.amzn2.x86_64
python-perf-debuginfo-5.10.224-212.876.amzn2.x86_64
kernel-tools-5.10.224-212.876.amzn2.x86_64
kernel-tools-devel-5.10.224-212.876.amzn2.x86_64
kernel-tools-debuginfo-5.10.224-212.876.amzn2.x86_64
bpftool-5.10.224-212.876.amzn2.x86_64
bpftool-debuginfo-5.10.224-212.876.amzn2.x86_64
kernel-devel-5.10.224-212.876.amzn2.x86_64
kernel-debuginfo-5.10.224-212.876.amzn2.x86_64
kernel-livepatch-5.10.224-212.876-1.0-0.amzn2.x86_64