Login
Newsletter
Werbung

Sicherheit: Zwei Probleme in Linux
Aktuelle Meldungen Distributionen
Name: Zwei Probleme in Linux
ID: RHSA-2024:1532
Distribution: Red Hat
Plattformen: Red Hat Enterprise Linux AppStream EUS (v.9.2), Red Hat Enterprise Linux BaseOS EUS (v.9.2), Red Hat CodeReady Linux Builder EUS (v.9.2)
Datum: Mi, 27. März 2024, 22:45
Referenzen: https://bugzilla.redhat.com/show_bug.cgi?id=2267695
https://access.redhat.com/security/cve/CVE-2024-26602
https://access.redhat.com/errata/RHSA-2024:1532
https://bugzilla.redhat.com/show_bug.cgi?id=2258518
https://access.redhat.com/security/cve/CVE-2024-0565
Applikationen: Linux

Originalnachricht

An update for kernel is now available for Red Hat Enterprise Linux 9.2 Extended
Update Support.

Red Hat Product Security has rated this update as having a security impact of
Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

The kernel packages contain the Linux kernel, the core of any Linux operating
system.

Security Fix(es):

* kernel: CIFS Filesystem Decryption Improper Input Validation Remote Code
Execution Vulnerability in function receive_encrypted_standard of client (CVE-2024-0565)

* kernel: sched/membarrier: reduce the ability to hammer on sys_membarrier
(CVE-2024-26602)

Bug Fix(es):

* kernel: CIFS Filesystem Decryption Improper Input Validation Remote Code
Execution Vulnerability in function receive_encrypted_standard of client (JIRA:RHEL-22081)

* dpll: fix unordered unbind/bind registerer issues (JIRA:RHEL-25714)

* update mm to upstream v6.0 (JIRA:RHEL-28164)

* kernel: sched/membarrier: reduce the ability to hammer on sys_membarrier
(JIRA:RHEL-26378)

* ice: support features on new E810T variants (JIRA:RHEL-28589)

* xfs_growfs: XFS_IOC_FSGROWFSDATA xfsctl failed: No space left on device
(RHEL9) (JIRA:RHEL-28689)

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2024-0565: Integer Underflow (Wrap or Wraparound) (CWE-191)
CVE-2024-26602
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung