Amazon Linux 2023 Security Advisory: ALAS-2025-809
Advisory Release Date: 2025-01-21 23:11 Pacific
Advisory Updated Date: 2025-03-10 23:19 Pacific
FAQs regarding Amazon Linux ALAS/CVE Severity
In the Linux kernel, the following vulnerability has been resolved:
IORING_OP_READ did not correctly consume the provided buffer list when (CVE-2023-52926)
In the Linux kernel, the following vulnerability has been resolved:
fs/ntfs3: Fixed overflow check in mi_enum_attr() (CVE-2024-27407)
In the Linux kernel, the following vulnerability has been resolved:
xfs: add bounds checking to xlog_recover_process_data (CVE-2024-41014)
In the Linux kernel, the following vulnerability has been resolved:
closures: Change BUG_ON() to WARN_ON() (CVE-2024-42252)
In the Linux kernel, the following vulnerability has been resolved:
i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (CVE-2024-43098)
In the Linux kernel, the following vulnerability has been resolved:
i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (CVE-2024-45828)
In the Linux kernel, the following vulnerability has been resolved:
mm: call the security_mmap_file() LSM hook in remap_file_pages() (CVE-2024-47745)
In the Linux kernel, the following vulnerability has been resolved:
bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (CVE-2024-48881)
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix helper writes to read-only maps (CVE-2024-49861)
In the Linux kernel, the following vulnerability has been resolved:
rcu-tasks: Fix access non-existent percpu rtpcp variable in rcu_tasks_need_gpcb() (CVE-2024-49926)
In the Linux kernel, the following vulnerability has been resolved:
fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name (CVE-2024-49934)
In the Linux kernel, the following vulnerability has been resolved:
driver core: bus: Fix double free in driver API bus_register() (CVE-2024-50055)
In the Linux kernel, the following vulnerability has been resolved:
nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net (CVE-2024-50121)
In the Linux kernel, the following vulnerability has been resolved:
net/mlx5e: Don't call cleanup on profile rollback failure (CVE-2024-50146)
In the Linux kernel, the following vulnerability has been resolved:
ntfs3: Add bounds checking to mi_enum_attr() (CVE-2024-50248)
In the Linux kernel, the following vulnerability has been resolved:
net: fix crash when config small gso_max_size/gso_ipv4_max_size (CVE-2024-50258)
In the Linux kernel, the following vulnerability has been resolved:
arm64/sve: Discard stale CPU state when handling SVE traps (CVE-2024-50275)
In the Linux kernel, the following vulnerability has been resolved:
igb: Fix potential invalid memory access in igb_init_module() (CVE-2024-52332)
In the Linux kernel, the following vulnerability has been resolved:
bpf: Check validity of link->type in bpf_link_show_fdinfo() (CVE-2024-53099)
In the Linux kernel, the following vulnerability has been resolved:
mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (CVE-2024-53105)
In the Linux kernel, the following vulnerability has been resolved:
bpf: sync_linked_regs() must preserve subreg_def (CVE-2024-53125)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: ipset: add missing range check in bitmap_ip_uadt (CVE-2024-53141)
In the Linux kernel, the following vulnerability has been resolved:
initramfs: avoid filename buffer overrun (CVE-2024-53142)
In the Linux kernel, the following vulnerability has been resolved:
NFSD: Prevent a potential integer overflow (CVE-2024-53146)
In the Linux kernel, the following vulnerability has been resolved:
firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (CVE-2024-53157)
In the Linux kernel, the following vulnerability has been resolved:
net: sched: fix ordering of qlen adjustment (CVE-2024-53164)
In the Linux kernel, the following vulnerability has been resolved:
NFSv4.0: Fix a use-after-free problem in the asynchronous open() (CVE-2024-53173)
In the Linux kernel, the following vulnerability has been resolved:
SUNRPC: make sure cache entry active before cache_show (CVE-2024-53174)
In the Linux kernel, the following vulnerability has been resolved:
ipc: fix memleak if msg_init_ns failed in create_ipc_ns (CVE-2024-53175)
In the Linux kernel, the following vulnerability has been resolved:
PCI: Fix use-after-free of slot->bus on hot remove (CVE-2024-53194)
In the Linux kernel, the following vulnerability has been resolved:
KVM: arm64: Don't retire aborted MMIO instruction (CVE-2024-53196)
In the Linux kernel, the following vulnerability has been resolved:
xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (CVE-2024-53198)
In the Linux kernel, the following vulnerability has been resolved:
tcp: Fix use-after-free of nreq in reqsk_timer_handler(). (CVE-2024-53206)
In the Linux kernel, the following vulnerability has been resolved:
s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (CVE-2024-53210)
In the Linux kernel, the following vulnerability has been resolved:
vfio/pci: Properly hide first-in-list PCIe extended capability (CVE-2024-53214)
In the Linux kernel, the following vulnerability has been resolved:
NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (CVE-2024-53217)
In the Linux kernel, the following vulnerability has been resolved:
unicode: Fix utf8_load() error path (CVE-2024-53233)
In the Linux kernel, the following vulnerability has been resolved:
xen/netfront: fix crash when removing device (CVE-2024-53240)
In the Linux kernel, the following vulnerability has been resolved:
ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (CVE-2024-53680)
In the Linux kernel, the following vulnerability has been resolved:
KVM: x86: Play nice with protected guests in complete_hypercall_exit() (CVE-2024-55881)
In the Linux kernel, the following vulnerability has been resolved:
Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (CVE-2024-55916)
In the Linux kernel, the following vulnerability has been resolved:
drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (CVE-2024-56369)
In the Linux kernel, the following vulnerability has been resolved:
nfsd: make sure exp active before svc_export_show (CVE-2024-56558)
In the Linux kernel, the following vulnerability has been resolved:
i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (CVE-2024-56562)
In the Linux kernel, the following vulnerability has been resolved:
iommu/arm-smmu: Defer probe of clients after smmu device bound (CVE-2024-56568)
In the Linux kernel, the following vulnerability has been resolved:
ftrace: Fix regression with module command in stack_trace_filter (CVE-2024-56569)
In the Linux kernel, the following vulnerability has been resolved:
ovl: Filter invalid inodes with missing lookup function (CVE-2024-56570)
In the Linux kernel, the following vulnerability has been resolved:
btrfs: ref-verify: fix use-after-free after invalid ref action (CVE-2024-56581)
In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix use-after-free in btrfs_encoded_read_endio() (CVE-2024-56582)
In the Linux kernel, the following vulnerability has been resolved:
io_uring/tctx: work around xa_store() allocation error issue (CVE-2024-56584)
In the Linux kernel, the following vulnerability has been resolved:
leds: class: Protect brightness_show() with led_cdev->led_access mutex (CVE-2024-56587)
In the Linux kernel, the following vulnerability has been resolved:
net: inet6: do not leave a dangling sk pointer in inet6_create() (CVE-2024-56600)
In the Linux kernel, the following vulnerability has been resolved:
net: inet: do not leave a dangling sk pointer in inet_create() (CVE-2024-56601)
In the Linux kernel, the following vulnerability has been resolved:
net: af_can: do not leave a dangling sk pointer in can_create() (CVE-2024-56603)
In the Linux kernel, the following vulnerability has been resolved:
af_packet: avoid erroring out after sock_init_data() in packet_create() (CVE-2024-56606)
In the Linux kernel, the following vulnerability has been resolved:
kcsan: Turn report_filterlist_lock into a raw_spinlock (CVE-2024-56610)
In the Linux kernel, the following vulnerability has been resolved:
xsk: fix OOB map writes when deleting elements (CVE-2024-56614)
In the Linux kernel, the following vulnerability has been resolved:
bpf: fix OOB devmap writes when deleting elements (CVE-2024-56615)
In the Linux kernel, the following vulnerability has been resolved:
drm/dp_mst: Fix MST sideband message body length check (CVE-2024-56616)
In the Linux kernel, the following vulnerability has been resolved:
can: dev: can_set_termination(): allow sleeping GPIOs (CVE-2024-56625)
In the Linux kernel, the following vulnerability has been resolved:
tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (CVE-2024-56633)
In the Linux kernel, the following vulnerability has been resolved:
gpio: grgpio: Add NULL check in grgpio_probe (CVE-2024-56634)
In the Linux kernel, the following vulnerability has been resolved:
geneve: do not assume mac header is set in geneve_xmit_skb() (CVE-2024-56636)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: ipset: Hold module reference while requesting a module (CVE-2024-56637)
In the Linux kernel, the following vulnerability has been resolved:
tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (CVE-2024-56642)
In the Linux kernel, the following vulnerability has been resolved:
net/ipv6: release expired exception dst cached in socket (CVE-2024-56644)
In the Linux kernel, the following vulnerability has been resolved:
can: j1939: j1939_session_new(): fix skb reference counting (CVE-2024-56645)
In the Linux kernel, the following vulnerability has been resolved:
net: hsr: avoid potential out-of-bound access in fill_frame_info() (CVE-2024-56648)
In the Linux kernel, the following vulnerability has been resolved:
net: defer final 'struct net' free in netns dismantle (CVE-2024-56658)
In the Linux kernel, the following vulnerability has been resolved:
net/mlx5: DR, prevent potential error pointer dereference (CVE-2024-56660)
In the Linux kernel, the following vulnerability has been resolved:
bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog (CVE-2024-56665)
In the Linux kernel, the following vulnerability has been resolved:
blk-cgroup: Fix UAF in blkcg_unpin_online() (CVE-2024-56672)
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors (CVE-2024-56675)
In the Linux kernel, the following vulnerability has been resolved:
usb: musb: Fix hardware lockup on first Rx endpoint request (CVE-2024-56687)
In the Linux kernel, the following vulnerability has been resolved:
sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (CVE-2024-56688)
In the Linux kernel, the following vulnerability has been resolved:
crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (CVE-2024-56690)
In the Linux kernel, the following vulnerability has been resolved:
brd: defer automatic disk creation until module initialization succeeds (CVE-2024-56693)
In the Linux kernel, the following vulnerability has been resolved:
bpf: fix recursive lock when verdict program return SK_PASS (CVE-2024-56694)
In the Linux kernel, the following vulnerability has been resolved:
io_uring: check if iowq is killed before queuing (CVE-2024-56709)
In the Linux kernel, the following vulnerability has been resolved:
netdevsim: prevent bad user input in nsim_dev_health_break_write() (CVE-2024-56716)
In the Linux kernel, the following vulnerability has been resolved:
bpf, sockmap: Several fixes to bpf_msg_pop_data (CVE-2024-56720)
In the Linux kernel, the following vulnerability has been resolved:
rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (CVE-2024-56739)
In the Linux kernel, the following vulnerability has been resolved:
PCI: Fix reset_method_store() memory leak (CVE-2024-56745)
In the Linux kernel, the following vulnerability has been resolved:
ipv6: release nexthop on device removal
The CI is hitting some aperiodic hangup at device removal time in the
pmtu.sh self-test:
unregister_netdevice: waiting for veth_A-R1 to become free. Usage count = 6
ref_tracker: veth_A-R1@ffff888013df15d8 has 1/5 users at
dst_init+0x84/0x4a0
dst_alloc+0x97/0x150
ip6_dst_alloc+0x23/0x90
ip6_rt_pcpu_alloc+0x1e6/0x520
ip6_pol_route+0x56f/0x840
fib6_rule_lookup+0x334/0x630
ip6_route_output_flags+0x259/0x480
ip6_dst_lookup_tail.constprop.0+0x5c2/0x940
ip6_dst_lookup_flow+0x88/0x190
udp_tunnel6_dst_lookup+0x2a7/0x4c0
vxlan_xmit_one+0xbde/0x4a50 [vxlan]
vxlan_xmit+0x9ad/0xf20 [vxlan]
dev_hard_start_xmit+0x10e/0x360
__dev_queue_xmit+0xf95/0x18c0
arp_solicit+0x4a2/0xe00
neigh_probe+0xaa/0xf0
While the first suspect is the dst_cache, explicitly tracking the dst
owing the last device reference via probes proved such dst is held by
the nexthop in the originating fib6_info.
Similar to commit f5b51fe804ec ("ipv6: route: purge exception on
removal"), we need to explicitly release the originating fib info when
disconnecting a to-be-removed device from a live ipv6 dst: move the
fib6_info cleanup into ip6_dst_ifdown().
Tested running:
./pmtu.sh cleanup_ipv6_exception
in a tight loop for more than 400 iterations with no spat, running an
unpatched kernel I observed a splat every ~10 iterations. (CVE-2024-56751)
In the Linux kernel, the following vulnerability has been resolved:
netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (CVE-2024-56755)
In the Linux kernel, the following vulnerability has been resolved:
nvme-pci: fix freeing of the HMB descriptor table (CVE-2024-56756)
In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix use-after-free when COWing tree bock and tracing is enabled (CVE-2024-56759)
In the Linux kernel, the following vulnerability has been resolved:
tracing: Prevent bad count for tracing_cpumask_write (CVE-2024-56763)
In the Linux kernel, the following vulnerability has been resolved:
net/sched: netem: account for backlog updates from child qdisc (CVE-2024-56770)
In the Linux kernel, the following vulnerability has been resolved:
btrfs: add a sanity check for btrfs root in btrfs_search_slot() (CVE-2024-56774)
In the Linux kernel, the following vulnerability has been resolved:
nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (CVE-2024-56779)
In the Linux kernel, the following vulnerability has been resolved:
quota: flush quota_release_work upon quota writeback (CVE-2024-56780)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level (CVE-2024-56783)
In the Linux kernel, the following vulnerability has been resolved:
drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (CVE-2024-57798)
In the Linux kernel, the following vulnerability has been resolved:
net: fix memory leak in tcp_conn_request() (CVE-2024-57841)
In the Linux kernel, the following vulnerability has been resolved:
arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (CVE-2024-57874)
In the Linux kernel, the following vulnerability has been resolved:
drm/dp_mst: Fix resetting msg rx state after topology removal (CVE-2024-57876)
In the Linux kernel, the following vulnerability has been resolved:
mptcp: fix TCP options overflow. (CVE-2024-57882)
In the Linux kernel, the following vulnerability has been resolved:
mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (CVE-2024-57884)
In the Linux kernel, the following vulnerability has been resolved:
RDMA/uverbs: Prevent integer overflow issue (CVE-2024-57890)
In the Linux kernel, the following vulnerability has been resolved:
btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (CVE-2024-57896)
In the Linux kernel, the following vulnerability has been resolved:
ila: serialize calls to nf_register_net_hooks() (CVE-2024-57900)
In the Linux kernel, the following vulnerability has been resolved:
af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (CVE-2024-57901)
In the Linux kernel, the following vulnerability has been resolved:
af_packet: fix vlan_get_tci() vs MSG_PEEK (CVE-2024-57902)
In the Linux kernel, the following vulnerability has been resolved:
net: restrict SO_REUSEPORT to inet sockets (CVE-2024-57903)
In the Linux kernel, the following vulnerability has been resolved:
selinux: ignore unknown extended permissions (CVE-2024-57931)
In the Linux kernel, the following vulnerability has been resolved:
net/sctp: Prevent autoclose integer overflow in sctp_association_init() (CVE-2024-57938)
In the Linux kernel, the following vulnerability has been resolved:
virtio-blk: don't keep queue frozen during system suspend (CVE-2024-57946)
In the Linux kernel, the following vulnerability has been resolved:
net: reenable NETIF_F_IPV6_CSUM offload for BIG TCP packets (CVE-2025-21629)
Affected Packages:
kernel
Issue Correction:
Run dnf update kernel --releasever 2023.6.20250123 to update your system.
System reboot is required in order to complete this update.
aarch64:
kernel-libbpf-static-6.1.124-134.200.amzn2023.aarch64
python3-perf-6.1.124-134.200.amzn2023.aarch64
kernel-livepatch-6.1.124-134.200-1.0-0.amzn2023.aarch64
kernel-tools-debuginfo-6.1.124-134.200.amzn2023.aarch64
kernel-headers-6.1.124-134.200.amzn2023.aarch64
perf-6.1.124-134.200.amzn2023.aarch64
perf-debuginfo-6.1.124-134.200.amzn2023.aarch64
kernel-modules-extra-6.1.124-134.200.amzn2023.aarch64
kernel-tools-devel-6.1.124-134.200.amzn2023.aarch64
kernel-libbpf-6.1.124-134.200.amzn2023.aarch64
bpftool-6.1.124-134.200.amzn2023.aarch64
kernel-tools-6.1.124-134.200.amzn2023.aarch64
kernel-modules-extra-common-6.1.124-134.200.amzn2023.aarch64
python3-perf-debuginfo-6.1.124-134.200.amzn2023.aarch64
bpftool-debuginfo-6.1.124-134.200.amzn2023.aarch64
kernel-6.1.124-134.200.amzn2023.aarch64
kernel-libbpf-devel-6.1.124-134.200.amzn2023.aarch64
kernel-debuginfo-6.1.124-134.200.amzn2023.aarch64
kernel-debuginfo-common-aarch64-6.1.124-134.200.amzn2023.aarch64
kernel-devel-6.1.124-134.200.amzn2023.aarch64
src:
kernel-6.1.124-134.200.amzn2023.src
x86_64:
kernel-libbpf-devel-6.1.124-134.200.amzn2023.x86_64
python3-perf-debuginfo-6.1.124-134.200.amzn2023.x86_64
kernel-tools-debuginfo-6.1.124-134.200.amzn2023.x86_64
kernel-livepatch-6.1.124-134.200-1.0-0.amzn2023.x86_64
python3-perf-6.1.124-134.200.amzn2023.x86_64
bpftool-debuginfo-6.1.124-134.200.amzn2023.x86_64
kernel-libbpf-6.1.124-134.200.amzn2023.x86_64
kernel-headers-6.1.124-134.200.amzn2023.x86_64
bpftool-6.1.124-134.200.amzn2023.x86_64
perf-debuginfo-6.1.124-134.200.amzn2023.x86_64
perf-6.1.124-134.200.amzn2023.x86_64
kernel-modules-extra-6.1.124-134.200.amzn2023.x86_64
kernel-tools-6.1.124-134.200.amzn2023.x86_64
kernel-libbpf-static-6.1.124-134.200.amzn2023.x86_64
kernel-tools-devel-6.1.124-134.200.amzn2023.x86_64
kernel-modules-extra-common-6.1.124-134.200.amzn2023.x86_64
kernel-debuginfo-6.1.124-134.200.amzn2023.x86_64
kernel-6.1.124-134.200.amzn2023.x86_64
kernel-debuginfo-common-x86_64-6.1.124-134.200.amzn2023.x86_64
kernel-devel-6.1.124-134.200.amzn2023.x86_64
2025-03-10: CVE-2024-56693 was added to this advisory.
2025-03-10: CVE-2024-56755 was added to this advisory.
2025-03-10: CVE-2024-57882 was added to this advisory.
2025-03-10: CVE-2024-53214 was added to this advisory.
2025-03-10: CVE-2024-53164 was added to this advisory.
2025-03-10: CVE-2024-56568 was added to this advisory.
2025-03-10: CVE-2024-56587 was added to this advisory.
2025-03-10: CVE-2024-48881 was added to this advisory.
2025-03-10: CVE-2024-56584 was added to this advisory.
2025-03-10: CVE-2024-53198 was added to this advisory.
2025-03-10: CVE-2024-56614 was added to this advisory.
2025-03-10: CVE-2024-55881 was added to this advisory.
2025-03-10: CVE-2024-53196 was added to this advisory.
2025-03-10: CVE-2024-57884 was added to this advisory.
2025-03-10: CVE-2024-56615 was added to this advisory.
2025-03-10: CVE-2024-56783 was added to this advisory.
2025-03-10: CVE-2025-21629 was added to this advisory.
2025-03-10: CVE-2024-55916 was added to this advisory.
2025-03-10: CVE-2024-53142 was added to this advisory.
2025-03-10: CVE-2024-56660 was added to this advisory.
2025-03-10: CVE-2024-56759 was added to this advisory.
2025-03-10: CVE-2024-56780 was added to this advisory.
2025-03-10: CVE-2024-53680 was added to this advisory.
2025-03-10: CVE-2024-56636 was added to this advisory.
2025-03-10: CVE-2024-53175 was added to this advisory.
2025-03-10: CVE-2024-56633 was added to this advisory.
2025-03-10: CVE-2024-56690 was added to this advisory.
2025-03-10: CVE-2024-56774 was added to this advisory.
2025-03-10: CVE-2024-56601 was added to this advisory.
2025-03-10: CVE-2024-56665 was added to this advisory.
2025-03-10: CVE-2024-56644 was added to this advisory.
2025-03-10: CVE-2024-56562 was added to this advisory.
2025-03-10: CVE-2024-45828 was added to this advisory.
2025-03-10: CVE-2024-56709 was added to this advisory.
2025-03-10: CVE-2024-56716 was added to this advisory.
2025-03-10: CVE-2024-57874 was added to this advisory.
2025-03-10: CVE-2024-56569 was added to this advisory.
2025-03-10: CVE-2024-56687 was added to this advisory.
2025-03-10: CVE-2024-56688 was added to this advisory.
2025-03-10: CVE-2024-56616 was added to this advisory.
2025-03-10: CVE-2024-56763 was added to this advisory.
2025-03-10: CVE-2024-56756 was added to this advisory.
2025-03-10: CVE-2024-56645 was added to this advisory.
2025-03-10: CVE-2024-57890 was added to this advisory.
2025-03-10: CVE-2024-56739 was added to this advisory.
2025-03-10: CVE-2024-53157 was added to this advisory.
2025-03-10: CVE-2024-56694 was added to this advisory.
2025-03-10: CVE-2024-53233 was added to this advisory.
2025-03-10: CVE-2024-52332 was added to this advisory.
2025-03-10: CVE-2024-56637 was added to this advisory.
2025-03-10: CVE-2024-57938 was added to this advisory.
2025-03-10: CVE-2024-53174 was added to this advisory.
2025-03-10: CVE-2024-56648 was added to this advisory.
2025-03-10: CVE-2024-53125 was added to this advisory.
2025-03-10: CVE-2024-53217 was added to this advisory.
2025-03-10: CVE-2024-57896 was added to this advisory.
2025-03-10: CVE-2024-57900 was added to this advisory.
2025-03-10: CVE-2024-56745 was added to this advisory.
2025-03-10: CVE-2024-56634 was added to this advisory.
2025-03-10: CVE-2024-53105 was added to this advisory.
2025-03-10: CVE-2024-57876 was added to this advisory.
2025-03-10: CVE-2024-57903 was added to this advisory.
2025-03-10: CVE-2024-53099 was added to this advisory.
2025-03-10: CVE-2024-53146 was added to this advisory.
2025-03-10: CVE-2024-53141 was added to this advisory.
2025-03-10: CVE-2024-57946 was added to this advisory.
2025-03-10: CVE-2024-53194 was added to this advisory.
2025-03-10: CVE-2024-53240 was added to this advisory.
2025-03-10: CVE-2024-57901 was added to this advisory.
2025-03-10: CVE-2024-56625 was added to this advisory.
2025-03-10: CVE-2024-56570 was added to this advisory.
2025-03-10: CVE-2024-56770 was added to this advisory.
2025-03-10: CVE-2024-56610 was added to this advisory.
2025-03-10: CVE-2024-43098 was added to this advisory.
2025-03-10: CVE-2024-56779 was added to this advisory.
2025-03-10: CVE-2024-56720 was added to this advisory.
2025-03-10: CVE-2024-57902 was added to this advisory.
2025-03-10: CVE-2024-57841 was added to this advisory.
2025-03-10: CVE-2024-53210 was added to this advisory.
2025-03-10: CVE-2023-52926 was added to this advisory.
2025-03-10: CVE-2024-56369 was added to this advisory.
2025-03-10: CVE-2024-56558 was added to this advisory.
2025-03-10: CVE-2024-56603 was added to this advisory.
2025-03-10: CVE-2024-57931 was added to this advisory.
2025-03-10: CVE-2024-56675 was added to this advisory.
2025-02-26: CVE-2024-56672 was added to this advisory.
2025-02-26: CVE-2024-50275 was added to this advisory.
2025-02-26: CVE-2024-57798 was added to this advisory.
2025-02-26: CVE-2024-56582 was added to this advisory.
2025-02-26: CVE-2024-56606 was added to this advisory.
2025-02-26: CVE-2024-56581 was added to this advisory.
2025-02-26: CVE-2024-53173 was added to this advisory.
2025-02-26: CVE-2024-56600 was added to this advisory.