[ALAS-2024-1942] Amazon Linux AMI 2014.03 - ALAS-2024-1942: important priority package update for kernel
Severity
Important
Affected Packages
20
CVEs
5
Package updates are available for Amazon Linux AMI that fix the following vulnerabilities:
CVE-2023-30456:
An issue was discovered in arch/x86/kvm/vmx/nested.c in the Linux kernel before 6.2.8. nVMX on x86_64 lacks consistency checks for CR0 and CR4.
CVE-2021-47110:
In the Linux kernel, the following vulnerability has been resolved:
x86/kvm: Disable kvmclock on all CPUs on shutdown
- ID
- ALAS-2024-1942
- Severity
- important
- URL
- https://alas.aws.amazon.com/ALAS-2024-1942.html
- Published
-
2024-06-19T18:46:00
(2 months ago) - Modified
-
2024-06-19T18:46:00
(2 months ago) - Rights
- Amazon Linux Security Team
- Other Advisories
-
-
ALAS-2024-1943
-
ALAS2-2024-2581
-
ALAS2-2024-2588
-
ALAS2-2024-2589
-
ALAS2-2024-2615
-
ALSA-2023:7077
-
ALSA-2024:5101
-
DSA-5680-1
-
DSA-5681-1
-
ELSA-2023-12339
-
ELSA-2023-12394
-
ELSA-2023-12412
-
ELSA-2023-12413
-
ELSA-2023-6583
-
ELSA-2023-7077
-
ELSA-2024-12110
-
ELSA-2024-12150
-
ELSA-2024-12570
-
ELSA-2024-12571
-
ELSA-2024-5101
-
ELSA-2024-5928
-
FEDORA-2024-010fe8772a
-
FEDORA-2024-bc0db39a14
-
FEDORA-2024-f35f9525d6
-
RHSA-2023:6901
-
RHSA-2023:7077
-
RHSA-2024:5101
-
RHSA-2024:5102
-
RLSA-2024:5101
-
SSA:2023-172-02
-
SUSE-SU-2023:2500-1
-
SUSE-SU-2023:2534-1
-
SUSE-SU-2023:2646-1
-
SUSE-SU-2023:2653-1
-
SUSE-SU-2023:2782-1
-
SUSE-SU-2023:2804-1
-
SUSE-SU-2023:2805-1
-
SUSE-SU-2023:2808-1
-
SUSE-SU-2023:2809-1
-
SUSE-SU-2023:2810-1
-
SUSE-SU-2023:2820-1
-
SUSE-SU-2023:2822-1
-
SUSE-SU-2023:2831-1
-
SUSE-SU-2023:2834-1
-
SUSE-SU-2023:2859-1
-
SUSE-SU-2023:2871-1
-
SUSE-SU-2023:3566-1
-
SUSE-SU-2023:3576-1
-
SUSE-SU-2023:3582-1
-
SUSE-SU-2023:3585-1
-
SUSE-SU-2023:3592-1
-
SUSE-SU-2023:3594-1
-
SUSE-SU-2023:3595-1
-
SUSE-SU-2023:3596-1
-
SUSE-SU-2023:3603-1
-
SUSE-SU-2023:3607-1
-
SUSE-SU-2023:3612-1
-
SUSE-SU-2023:3620-1
-
SUSE-SU-2023:3621-1
-
SUSE-SU-2023:3623-1
-
SUSE-SU-2023:3627-1
-
SUSE-SU-2023:3628-1
-
SUSE-SU-2023:3629-1
-
SUSE-SU-2023:3630-1
-
SUSE-SU-2023:3631-1
-
SUSE-SU-2023:3644-1
-
SUSE-SU-2023:3647-1
-
SUSE-SU-2023:3648-1
-
SUSE-SU-2023:3657-1
-
SUSE-SU-2023:3668-1
-
SUSE-SU-2023:3671-1
-
SUSE-SU-2023:3675-1
-
SUSE-SU-2023:4028-1
-
SUSE-SU-2024:1454-1
-
SUSE-SU-2024:1465-1
-
SUSE-SU-2024:1489-1
-
SUSE-SU-2024:1643-1
-
SUSE-SU-2024:1646-1
-
SUSE-SU-2024:1648-1
-
SUSE-SU-2024:1870-1
-
SUSE-SU-2024:2802-1
-
SUSE-SU-2024:2892-1
-
SUSE-SU-2024:2894-1
-
SUSE-SU-2024:2896-1
-
SUSE-SU-2024:2901-1
-
SUSE-SU-2024:2902-1
-
SUSE-SU-2024:2929-1
-
SUSE-SU-2024:2939-1
-
SUSE-SU-2024:2940-1
-
SUSE-SU-2024:2947-1
-
SUSE-SU-2024:2973-1
-
SUSE-SU-2024:3194-1
-
SUSE-SU-2024:3195-1
-
USN-6033-1
-
USN-6123-1
-
USN-6124-1
-
USN-6127-1
-
USN-6130-1
-
USN-6131-1
-
USN-6132-1
-
USN-6135-1
-
USN-6149-1
-
USN-6150-1
-
USN-6162-1
-
USN-6171-1
-
USN-6172-1
-
USN-6175-1
-
USN-6185-1
-
USN-6186-1
-
USN-6187-1
-
USN-6207-1
-
USN-6222-1
-
USN-6223-1
-
USN-6256-1
-
USN-6699-1
-
USN-6816-1
-
USN-6817-1
-
USN-6817-2
-
USN-6817-3
-
USN-6878-1
-
USN-6893-1
-
USN-6893-2
-
USN-6893-3
-
USN-6896-1
-
USN-6896-2
-
USN-6896-3
-
USN-6896-4
-
USN-6896-5
-
USN-6898-1
-
USN-6898-2
-
USN-6898-3
-
USN-6898-4
-
USN-6917-1
-
USN-6918-1
-
USN-6919-1
-
USN-6926-1
-
USN-6926-2
-
USN-6926-3
-
USN-6927-1
-
USN-6938-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| CVE | CVE-2021-47110 |
|
|
| CVE | CVE-2023-30456 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/amazonlinux/perf?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
 perf
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/perf?arch=i686&distro=amazonlinux-1 | amazonlinux |
perf
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/perf-debuginfo?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
perf-debuginfo
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/perf-debuginfo?arch=i686&distro=amazonlinux-1 | amazonlinux |
perf-debuginfo
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-tools
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-tools
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-tools-devel
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-devel?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-tools-devel
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-debuginfo?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-tools-debuginfo
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-debuginfo?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-tools-debuginfo
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-headers?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-headers
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-headers?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-headers
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-devel
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-devel?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-devel
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-debuginfo
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-debuginfo
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo-common-x86_64?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-debuginfo-common-x86_64
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo-common-i686?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-debuginfo-common-i686
|
< 4.14.348-187.562.amzn1 | amazonlinux-1 | i686 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |