[ALAS-2021-1516] Amazon Linux AMI 2014.03 - ALAS-2021-1516: medium priority package update for kernel
Severity
Medium
Affected Packages
20
CVEs
3
Package updates are available for Amazon Linux AMI that fix the following vulnerabilities:
CVE-2021-33200:
A flaw was found in kernel/bpf/verifier.c in BPF in the Linux kernel. An incorrect limit is enforced for pointer arithmetic operations which can be abused to perform out-of-bounds reads and writes in kernel memory, leading to local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
1965458: CVE-2021-33200 kernel: out-of-bounds reads and writes due to enforcing incorrect limits for pointer arithmetic operations by BPF verifier
CVE-2021-29650:
A denial-of-service (DoS) flaw was identified in the Linux kernel due to an incorrect memory barrier in xt_replace_table in net/netfilter/x_tables.c in the netfilter subsystem.
1945388: CVE-2021-29650 kernel: lack a full memory barrier upon the assignment of a new table value in net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h may lead to DoS
- ID
- ALAS-2021-1516
- Severity
- medium
- URL
- https://alas.aws.amazon.com/ALAS-2021-1516.html
- Published
-
2021-07-08T18:38:00
(3 years ago) - Modified
-
2021-07-12T21:51:00
(3 years ago) - Rights
- Amazon Linux Security Team
- Other Advisories
-
-
ALAS2-2021-1675
-
ALAS2-2021-1685
-
ALSA-2021:4356
-
ELSA-2021-3327
-
ELSA-2021-4356
-
ELSA-2021-9215
-
ELSA-2021-9220
-
ELSA-2021-9221
-
ELSA-2021-9222
-
ELSA-2021-9223
-
FEDORA-2021-0b35886add
-
FEDORA-2021-2306e89112
-
FEDORA-2021-41fb54ae9f
-
FEDORA-2021-646098b5b8
-
FEDORA-2021-6b0f287b8b
-
MS:CVE-2021-29650
-
MS:CVE-2021-33200
-
openSUSE-SU-2021:0716-1
-
openSUSE-SU-2021:0843-1
-
openSUSE-SU-2021:0873-1
-
openSUSE-SU-2021:0947-1
-
openSUSE-SU-2021:1975-1
-
openSUSE-SU-2021:1977-1
-
openSUSE-SU-2021:2427-1
-
RHSA-2021:3327
-
RHSA-2021:3328
-
RHSA-2021:4140
-
RHSA-2021:4356
-
SSA:2021-202-01
-
SUSE-SU-2021:1571-1
-
SUSE-SU-2021:1572-1
-
SUSE-SU-2021:1573-1
-
SUSE-SU-2021:1574-1
-
SUSE-SU-2021:1595-1
-
SUSE-SU-2021:1596-1
-
SUSE-SU-2021:1605-1
-
SUSE-SU-2021:1617-1
-
SUSE-SU-2021:1622-1
-
SUSE-SU-2021:1623-1
-
SUSE-SU-2021:1624-1
-
SUSE-SU-2021:1887-1
-
SUSE-SU-2021:1888-1
-
SUSE-SU-2021:1889-1
-
SUSE-SU-2021:1890-1
-
SUSE-SU-2021:1891-1
-
SUSE-SU-2021:1899-1
-
SUSE-SU-2021:1912-1
-
SUSE-SU-2021:1913-1
-
SUSE-SU-2021:1915-1
-
SUSE-SU-2021:1975-1
-
SUSE-SU-2021:1977-1
-
SUSE-SU-2021:2020-1
-
SUSE-SU-2021:2027-1
-
SUSE-SU-2021:2057-1
-
SUSE-SU-2021:2208-1
-
SUSE-SU-2021:2421-1
-
SUSE-SU-2021:2422-1
-
SUSE-SU-2021:2427-1
-
SUSE-SU-2023:2611-1
-
SUSE-SU-2023:2651-1
-
SUSE-SU-2024:0925-1
-
SUSE-SU-2024:0975-1
-
SUSE-SU-2024:1454-1
-
SUSE-SU-2024:1465-1
-
SUSE-SU-2024:1489-1
-
SUSE-SU-2024:1643-1
-
SUSE-SU-2024:1646-1
-
SUSE-SU-2024:1648-1
-
SUSE-SU-2024:1870-1
-
USN-4945-1
-
USN-4945-2
-
USN-4946-1
-
USN-4947-1
-
USN-4948-1
-
USN-4949-1
-
USN-4983-1
-
USN-4997-1
-
USN-4997-2
-
USN-4999-1
-
USN-5000-1
-
USN-5000-2
-
USN-5018-1
-
USN-5343-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| CVE | CVE-2021-29650 |
|
|
| CVE | CVE-2021-33200 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/amazonlinux/perf?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
 perf
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/perf?arch=i686&distro=amazonlinux-1 | amazonlinux |
perf
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/perf-debuginfo?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
perf-debuginfo
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/perf-debuginfo?arch=i686&distro=amazonlinux-1 | amazonlinux |
perf-debuginfo
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-tools
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-tools
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-tools-devel
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-devel?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-tools-devel
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-debuginfo?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-tools-debuginfo
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-debuginfo?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-tools-debuginfo
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-headers?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-headers
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-headers?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-headers
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-devel
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-devel?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-devel
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-debuginfo
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-debuginfo
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo-common-x86_64?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-debuginfo-common-x86_64
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo-common-i686?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-debuginfo-common-i686
|
< 4.14.238-125.421.amzn1 | amazonlinux-1 | i686 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |