ALASKERNEL-5.15-2024-050

Amazon Linux 2 Security Advisory: ALASKERNEL-5.15-2024-050
Advisory Release Date: 2024-08-01 01:11 Pacific
Advisory Updated Date: 2024-12-05 01:00 Pacific

Severity: Important

References: CVE-2022-48666 CVE-2024-36484 CVE-2024-40947 CVE-2024-41009 CVE-2024-41019 CVE-2024-41020 CVE-2024-41035 CVE-2024-41041 CVE-2024-41049 CVE-2024-41055 CVE-2024-41073 CVE-2024-41077 CVE-2024-41090 CVE-2024-41091 CVE-2024-42154
FAQs regarding Amazon Linux ALAS/CVE Severity

Issue Overview:

2024-12-05: CVE-2024-41077 was added to this advisory.

2024-12-05: CVE-2024-40947 was added to this advisory.

2024-12-05: CVE-2024-41073 was added to this advisory.

2024-09-12: CVE-2024-36484 was added to this advisory.

2024-08-28: CVE-2024-42154 was added to this advisory.

2024-08-28: CVE-2024-41090 was added to this advisory.

2024-08-27: CVE-2024-41055 was added to this advisory.

2024-08-27: CVE-2024-41020 was added to this advisory.

2024-08-27: CVE-2024-41049 was added to this advisory.

2024-08-27: CVE-2024-41091 was added to this advisory.

2024-08-27: CVE-2024-41041 was added to this advisory.

2024-08-27: CVE-2024-41035 was added to this advisory.

2024-08-27: CVE-2024-41019 was added to this advisory.

2024-08-27: CVE-2024-41009 was added to this advisory.

In the Linux kernel, the following vulnerability has been resolved:

scsi: core: Fix a use-after-free (CVE-2022-48666)

In the Linux kernel, the following vulnerability has been resolved:

net: relax socket state check at accept time. (CVE-2024-36484)

In the Linux kernel, the following vulnerability has been resolved:

ima: Avoid blocking in RCU read-side critical section (CVE-2024-40947)

In the Linux kernel, the following vulnerability has been resolved:

bpf: Fix overrunning reservations in ringbuf (CVE-2024-41009)

In the Linux kernel, the following vulnerability has been resolved:

fs/ntfs3: Validate ff offset (CVE-2024-41019)

In the Linux kernel, the following vulnerability has been resolved:

filelock: Fix fcntl/close race recovery compat path (CVE-2024-41020)

In the Linux kernel, the following vulnerability has been resolved:

USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor (CVE-2024-41035)

In the Linux kernel, the following vulnerability has been resolved:

udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port(). (CVE-2024-41041)

In the Linux kernel, the following vulnerability has been resolved:

filelock: fix potential use-after-free in posix_lock_inode (CVE-2024-41049)

In the Linux kernel, the following vulnerability has been resolved:

mm: prevent derefencing NULL ptr in pfn_section_valid() (CVE-2024-41055)

In the Linux kernel, the following vulnerability has been resolved:

nvme: avoid double free special payload (CVE-2024-41073)

In the Linux kernel, the following vulnerability has been resolved:

null_blk: fix validation of block size (CVE-2024-41077)

kernel: virtio-net: tap: mlx5_core short frame denial of service (CVE-2024-41090)

kernel: virtio-net: tun: mlx5_core short frame denial of service (CVE-2024-41091)

In the Linux kernel, the following vulnerability has been resolved:

tcp_metrics: validate source addr length (CVE-2024-42154)

Affected Packages:

kernel

Note:

This advisory is applicable to Amazon Linux 2 - Kernel-5.15 Extra. Visit this page to learn more about Amazon Linux 2 (AL2) Extras and this FAQ section for the difference between AL2 Core and AL2 Extras advisories.

Issue Correction:
Run yum update kernel to update your system.

New Packages:

aarch64:
    kernel-5.15.164-108.161.amzn2.aarch64
    kernel-headers-5.15.164-108.161.amzn2.aarch64
    kernel-debuginfo-common-aarch64-5.15.164-108.161.amzn2.aarch64
    perf-5.15.164-108.161.amzn2.aarch64
    perf-debuginfo-5.15.164-108.161.amzn2.aarch64
    python-perf-5.15.164-108.161.amzn2.aarch64
    python-perf-debuginfo-5.15.164-108.161.amzn2.aarch64
    kernel-tools-5.15.164-108.161.amzn2.aarch64
    kernel-tools-devel-5.15.164-108.161.amzn2.aarch64
    kernel-tools-debuginfo-5.15.164-108.161.amzn2.aarch64
    bpftool-5.15.164-108.161.amzn2.aarch64
    bpftool-debuginfo-5.15.164-108.161.amzn2.aarch64
    kernel-devel-5.15.164-108.161.amzn2.aarch64
    kernel-debuginfo-5.15.164-108.161.amzn2.aarch64
    kernel-livepatch-5.15.164-108.161-1.0-0.amzn2.aarch64

i686:
    kernel-headers-5.15.164-108.161.amzn2.i686

src:
    kernel-5.15.164-108.161.amzn2.src

x86_64:
    kernel-5.15.164-108.161.amzn2.x86_64
    kernel-headers-5.15.164-108.161.amzn2.x86_64
    kernel-debuginfo-common-x86_64-5.15.164-108.161.amzn2.x86_64
    perf-5.15.164-108.161.amzn2.x86_64
    perf-debuginfo-5.15.164-108.161.amzn2.x86_64
    python-perf-5.15.164-108.161.amzn2.x86_64
    python-perf-debuginfo-5.15.164-108.161.amzn2.x86_64
    kernel-tools-5.15.164-108.161.amzn2.x86_64
    kernel-tools-devel-5.15.164-108.161.amzn2.x86_64
    kernel-tools-debuginfo-5.15.164-108.161.amzn2.x86_64
    bpftool-5.15.164-108.161.amzn2.x86_64
    bpftool-debuginfo-5.15.164-108.161.amzn2.x86_64
    kernel-devel-5.15.164-108.161.amzn2.x86_64
    kernel-debuginfo-5.15.164-108.161.amzn2.x86_64
    kernel-livepatch-5.15.164-108.161-1.0-0.amzn2.x86_64

Additional References

Red Hat: CVE-2022-48666, CVE-2024-36484, CVE-2024-40947, CVE-2024-41009, CVE-2024-41019, CVE-2024-41020, CVE-2024-41035, CVE-2024-41041, CVE-2024-41049, CVE-2024-41055, CVE-2024-41073, CVE-2024-41077, CVE-2024-41090, CVE-2024-41091, CVE-2024-42154

Mitre: CVE-2022-48666, CVE-2024-36484, CVE-2024-40947, CVE-2024-41009, CVE-2024-41019, CVE-2024-41020, CVE-2024-41035, CVE-2024-41041, CVE-2024-41049, CVE-2024-41055, CVE-2024-41073, CVE-2024-41077, CVE-2024-41090, CVE-2024-41091, CVE-2024-42154