Amazon Linux 2023 Security Advisory: ALAS-2025-855
Advisory Release Date: 2025-02-12 22:57 Pacific
Advisory Updated Date: 2025-03-10 23:19 Pacific
FAQs regarding Amazon Linux ALAS/CVE Severity
In the Linux kernel, the following vulnerability has been resolved:
block: fix integer overflow in BLKSECDISCARD (CVE-2024-49994)
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix access to uninitialised lock in fc replay path (CVE-2024-50014)
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix UAF in async decryption (CVE-2024-50047)
In the Linux kernel, the following vulnerability has been resolved:
ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_find() (CVE-2024-50304)
In the Linux kernel, the following vulnerability has been resolved:
ipv6: Fix soft lockups in fib6_select_path under high next hop churn (CVE-2024-56703)
In the Linux kernel, the following vulnerability has been resolved:
scsi: storvsc: Ratelimit warning logs to prevent VM denial of service (CVE-2025-21690)
In the Linux kernel, the following vulnerability has been resolved:
net: sched: fix ets qdisc OOB Indexing (CVE-2025-21692)
Affected Packages:
kernel
Issue Correction:
Run dnf update kernel --releasever 2023.6.20250218 to update your system.
System reboot is required in order to complete this update.
aarch64:
kernel-tools-debuginfo-6.1.128-136.201.amzn2023.aarch64
kernel-libbpf-6.1.128-136.201.amzn2023.aarch64
kernel-tools-devel-6.1.128-136.201.amzn2023.aarch64
perf-debuginfo-6.1.128-136.201.amzn2023.aarch64
kernel-libbpf-devel-6.1.128-136.201.amzn2023.aarch64
bpftool-6.1.128-136.201.amzn2023.aarch64
bpftool-debuginfo-6.1.128-136.201.amzn2023.aarch64
python3-perf-6.1.128-136.201.amzn2023.aarch64
kernel-tools-6.1.128-136.201.amzn2023.aarch64
python3-perf-debuginfo-6.1.128-136.201.amzn2023.aarch64
kernel-modules-extra-common-6.1.128-136.201.amzn2023.aarch64
kernel-libbpf-static-6.1.128-136.201.amzn2023.aarch64
kernel-modules-extra-6.1.128-136.201.amzn2023.aarch64
kernel-6.1.128-136.201.amzn2023.aarch64
perf-6.1.128-136.201.amzn2023.aarch64
kernel-livepatch-6.1.128-136.201-1.0-0.amzn2023.aarch64
kernel-debuginfo-6.1.128-136.201.amzn2023.aarch64
kernel-headers-6.1.128-136.201.amzn2023.aarch64
kernel-debuginfo-common-aarch64-6.1.128-136.201.amzn2023.aarch64
kernel-devel-6.1.128-136.201.amzn2023.aarch64
src:
kernel-6.1.128-136.201.amzn2023.src
x86_64:
perf-debuginfo-6.1.128-136.201.amzn2023.x86_64
kernel-tools-debuginfo-6.1.128-136.201.amzn2023.x86_64
kernel-headers-6.1.128-136.201.amzn2023.x86_64
bpftool-6.1.128-136.201.amzn2023.x86_64
bpftool-debuginfo-6.1.128-136.201.amzn2023.x86_64
kernel-tools-devel-6.1.128-136.201.amzn2023.x86_64
kernel-livepatch-6.1.128-136.201-1.0-0.amzn2023.x86_64
perf-6.1.128-136.201.amzn2023.x86_64
python3-perf-6.1.128-136.201.amzn2023.x86_64
kernel-libbpf-static-6.1.128-136.201.amzn2023.x86_64
python3-perf-debuginfo-6.1.128-136.201.amzn2023.x86_64
kernel-modules-extra-6.1.128-136.201.amzn2023.x86_64
kernel-libbpf-devel-6.1.128-136.201.amzn2023.x86_64
kernel-modules-extra-common-6.1.128-136.201.amzn2023.x86_64
kernel-libbpf-6.1.128-136.201.amzn2023.x86_64
kernel-tools-6.1.128-136.201.amzn2023.x86_64
kernel-debuginfo-6.1.128-136.201.amzn2023.x86_64
kernel-6.1.128-136.201.amzn2023.x86_64
kernel-debuginfo-common-x86_64-6.1.128-136.201.amzn2023.x86_64
kernel-devel-6.1.128-136.201.amzn2023.x86_64
2025-03-10: CVE-2025-21692 was added to this advisory.
2025-03-10: CVE-2025-21690 was added to this advisory.
2025-03-10: CVE-2024-56703 was added to this advisory.