Amazon Linux 2023 Security Advisory: ALAS-2024-713
Advisory Release Date: 2024-09-12 18:29 Pacific
Advisory Updated Date: 2024-10-10 03:02 Pacific
FAQs regarding Amazon Linux ALAS/CVE Severity
2024-10-10: CVE-2024-44974 was added to this advisory.
2024-10-10: CVE-2024-44946 was added to this advisory.
2024-10-10: CVE-2024-46679 was added to this advisory.
2024-10-10: CVE-2024-46711 was added to this advisory.
2024-10-10: CVE-2024-46763 was added to this advisory.
2024-10-10: CVE-2024-46707 was added to this advisory.
2024-10-10: CVE-2024-46689 was added to this advisory.
In the Linux kernel, the following vulnerability has been resolved:
ata: libata-core: Fix null pointer dereference on error (CVE-2024-41098)
In the Linux kernel, the following vulnerability has been resolved:
kcm: Serialise kcm_sendmsg() for the same socket. (CVE-2024-44946)
In the Linux kernel, the following vulnerability has been resolved:
mptcp: pm: avoid possible UaF when selecting endp (CVE-2024-44974)
In the Linux kernel, the following vulnerability has been resolved:
ethtool: check device is present when getting link settings (CVE-2024-46679)
In the Linux kernel, the following vulnerability has been resolved:
soc: qcom: cmd-db: Map shared memory as WC, not WB (CVE-2024-46689)
In the Linux kernel, the following vulnerability has been resolved:
KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (CVE-2024-46707)
In the Linux kernel, the following vulnerability has been resolved:
mptcp: pm: fix ID 0 endp usage after multiple re-creations (CVE-2024-46711)
In the Linux kernel, the following vulnerability has been resolved:
fou: Fix null-ptr-deref in GRO. (CVE-2024-46763)
Affected Packages:
kernel
Issue Correction:
Run dnf update kernel --releasever 2023.5.20240916 to update your system.
aarch64:
perf-debuginfo-6.1.109-118.189.amzn2023.aarch64
kernel-libbpf-devel-6.1.109-118.189.amzn2023.aarch64
bpftool-6.1.109-118.189.amzn2023.aarch64
kernel-tools-6.1.109-118.189.amzn2023.aarch64
kernel-modules-extra-common-6.1.109-118.189.amzn2023.aarch64
kernel-tools-debuginfo-6.1.109-118.189.amzn2023.aarch64
python3-perf-6.1.109-118.189.amzn2023.aarch64
bpftool-debuginfo-6.1.109-118.189.amzn2023.aarch64
perf-6.1.109-118.189.amzn2023.aarch64
kernel-libbpf-static-6.1.109-118.189.amzn2023.aarch64
kernel-libbpf-6.1.109-118.189.amzn2023.aarch64
kernel-modules-extra-6.1.109-118.189.amzn2023.aarch64
kernel-livepatch-6.1.109-118.189-1.0-0.amzn2023.aarch64
python3-perf-debuginfo-6.1.109-118.189.amzn2023.aarch64
kernel-tools-devel-6.1.109-118.189.amzn2023.aarch64
kernel-debuginfo-6.1.109-118.189.amzn2023.aarch64
kernel-headers-6.1.109-118.189.amzn2023.aarch64
kernel-6.1.109-118.189.amzn2023.aarch64
kernel-debuginfo-common-aarch64-6.1.109-118.189.amzn2023.aarch64
kernel-devel-6.1.109-118.189.amzn2023.aarch64
src:
kernel-6.1.109-118.189.amzn2023.src
x86_64:
python3-perf-6.1.109-118.189.amzn2023.x86_64
perf-debuginfo-6.1.109-118.189.amzn2023.x86_64
python3-perf-debuginfo-6.1.109-118.189.amzn2023.x86_64
kernel-tools-debuginfo-6.1.109-118.189.amzn2023.x86_64
kernel-tools-6.1.109-118.189.amzn2023.x86_64
kernel-libbpf-static-6.1.109-118.189.amzn2023.x86_64
kernel-modules-extra-common-6.1.109-118.189.amzn2023.x86_64
kernel-livepatch-6.1.109-118.189-1.0-0.amzn2023.x86_64
kernel-headers-6.1.109-118.189.amzn2023.x86_64
kernel-libbpf-devel-6.1.109-118.189.amzn2023.x86_64
kernel-libbpf-6.1.109-118.189.amzn2023.x86_64
kernel-tools-devel-6.1.109-118.189.amzn2023.x86_64
bpftool-debuginfo-6.1.109-118.189.amzn2023.x86_64
bpftool-6.1.109-118.189.amzn2023.x86_64
perf-6.1.109-118.189.amzn2023.x86_64
kernel-modules-extra-6.1.109-118.189.amzn2023.x86_64
kernel-debuginfo-6.1.109-118.189.amzn2023.x86_64
kernel-6.1.109-118.189.amzn2023.x86_64
kernel-debuginfo-common-x86_64-6.1.109-118.189.amzn2023.x86_64
kernel-devel-6.1.109-118.189.amzn2023.x86_64