[ALAS2-2024-2581] Amazon Linux 2 2017.12 - ALAS2-2024-2581: important priority package update for kernel
Severity
Important
Affected Packages
26
CVEs
17
Package updates are available for Amazon Linux 2 that fix the following vulnerabilities:
CVE-2023-30456:
An issue was discovered in arch/x86/kvm/vmx/nested.c in the Linux kernel before 6.2.8. nVMX on x86_64 lacks consistency checks for CR0 and CR4.
CVE-2021-47110:
In the Linux kernel, the following vulnerability has been resolved:
x86/kvm: Disable kvmclock on all CPUs on shutdown
- ID
- ALAS2-2024-2581
- Severity
- important
- URL
- https://alas.aws.amazon.com/AL2/ALAS-2024-2581.html
- Published
-
2024-06-19T19:15:00
(2 months ago) - Modified
-
2024-06-19T19:15:00
(2 months ago) - Rights
- Amazon Linux Security Team
- Other Advisories
-
-
ALAS-2024-1942
-
ALAS-2024-1943
-
ALAS2-2024-2589
-
ALSA-2023:7077
-
ALSA-2024:3618
-
ALSA-2024:5101
-
DSA-5680-1
-
DSA-5681-1
-
DSA-5703-1
-
ELSA-2023-12339
-
ELSA-2023-12394
-
ELSA-2023-12412
-
ELSA-2023-12413
-
ELSA-2023-6583
-
ELSA-2023-7077
-
ELSA-2024-12570
-
ELSA-2024-12571
-
ELSA-2024-12606
-
ELSA-2024-2394
-
ELSA-2024-3618
-
ELSA-2024-4583
-
ELSA-2024-5101
-
ELSA-2024-5363
-
ELSA-2024-5928
-
FEDORA-2024-010fe8772a
-
FEDORA-2024-92664ae6fe
-
FEDORA-2024-bc0db39a14
-
FEDORA-2024-f35f9525d6
-
RHSA-2023:6901
-
RHSA-2023:7077
-
RHSA-2024:3618
-
RHSA-2024:3627
-
RHSA-2024:4713
-
RHSA-2024:5101
-
RHSA-2024:5102
-
RHSA-2024:5522
-
RLSA-2024:3618
-
RLSA-2024:4583
-
RLSA-2024:5101
-
SSA:2023-172-02
-
SUSE-SU-2023:2500-1
-
SUSE-SU-2023:2646-1
-
SUSE-SU-2023:2653-1
-
SUSE-SU-2023:2782-1
-
SUSE-SU-2023:2809-1
-
SUSE-SU-2023:2871-1
-
SUSE-SU-2024:1454-1
-
SUSE-SU-2024:1465-1
-
SUSE-SU-2024:1489-1
-
SUSE-SU-2024:1643-1
-
SUSE-SU-2024:1644-1
-
SUSE-SU-2024:1646-1
-
SUSE-SU-2024:1648-1
-
SUSE-SU-2024:1659-1
-
SUSE-SU-2024:1663-1
-
SUSE-SU-2024:1870-1
-
SUSE-SU-2024:1979-1
-
SUSE-SU-2024:1983-1
-
SUSE-SU-2024:2008-1
-
SUSE-SU-2024:2019-1
-
SUSE-SU-2024:2135-1
-
SUSE-SU-2024:2184-1
-
SUSE-SU-2024:2190-1
-
SUSE-SU-2024:2203-1
-
SUSE-SU-2024:2326-1
-
SUSE-SU-2024:2335-1
-
SUSE-SU-2024:2337-1
-
SUSE-SU-2024:2338-1
-
SUSE-SU-2024:2341-1
-
SUSE-SU-2024:2342-1
-
SUSE-SU-2024:2343-1
-
SUSE-SU-2024:2344-1
-
SUSE-SU-2024:2351-1
-
SUSE-SU-2024:2357-1
-
SUSE-SU-2024:2358-1
-
SUSE-SU-2024:2360-1
-
SUSE-SU-2024:2362-1
-
SUSE-SU-2024:2365-1
-
SUSE-SU-2024:2368-1
-
SUSE-SU-2024:2369-1
-
SUSE-SU-2024:2372-1
-
SUSE-SU-2024:2373-1
-
SUSE-SU-2024:2381-1
-
SUSE-SU-2024:2382-1
-
SUSE-SU-2024:2384-1
-
SUSE-SU-2024:2385-1
-
SUSE-SU-2024:2394-1
-
SUSE-SU-2024:2396-1
-
SUSE-SU-2024:2407-1
-
SUSE-SU-2024:2410-1
-
SUSE-SU-2024:2411-1
-
SUSE-SU-2024:2437-1
-
SUSE-SU-2024:2446-1
-
SUSE-SU-2024:2447-1
-
SUSE-SU-2024:2448-1
-
SUSE-SU-2024:2449-1
-
SUSE-SU-2024:2472-1
-
SUSE-SU-2024:2473-1
-
SUSE-SU-2024:2474-1
-
SUSE-SU-2024:2480-1
-
SUSE-SU-2024:2487-1
-
SUSE-SU-2024:2488-1
-
SUSE-SU-2024:2493-1
-
SUSE-SU-2024:2495-1
-
SUSE-SU-2024:2530-1
-
SUSE-SU-2024:2549-1
-
SUSE-SU-2024:2558-1
-
SUSE-SU-2024:2559-1
-
SUSE-SU-2024:2561-1
-
SUSE-SU-2024:2571-1
-
SUSE-SU-2024:2722-1
-
SUSE-SU-2024:2723-1
-
SUSE-SU-2024:2725-1
-
SUSE-SU-2024:2726-1
-
SUSE-SU-2024:2740-1
-
SUSE-SU-2024:2751-1
-
SUSE-SU-2024:2755-1
-
SUSE-SU-2024:2758-1
-
SUSE-SU-2024:2759-1
-
SUSE-SU-2024:2773-1
-
SUSE-SU-2024:2792-1
-
SUSE-SU-2024:2797-1
-
SUSE-SU-2024:2802-1
-
SUSE-SU-2024:2821-1
-
SUSE-SU-2024:2822-1
-
SUSE-SU-2024:2823-1
-
SUSE-SU-2024:2824-1
-
SUSE-SU-2024:2825-1
-
SUSE-SU-2024:2840-1
-
SUSE-SU-2024:2841-1
-
SUSE-SU-2024:2843-1
-
SUSE-SU-2024:2850-1
-
SUSE-SU-2024:2851-1
-
SUSE-SU-2024:2852-1
-
SUSE-SU-2024:2853-1
-
SUSE-SU-2024:2874-1
-
SUSE-SU-2024:2892-1
-
SUSE-SU-2024:2894-1
-
SUSE-SU-2024:2895-1
-
SUSE-SU-2024:2896-1
-
SUSE-SU-2024:2901-1
-
SUSE-SU-2024:2939-1
-
SUSE-SU-2024:2940-1
-
SUSE-SU-2024:2947-1
-
SUSE-SU-2024:2973-1
-
SUSE-SU-2024:3015-1
-
SUSE-SU-2024:3034-1
-
SUSE-SU-2024:3037-1
-
SUSE-SU-2024:3039-1
-
SUSE-SU-2024:3043-1
-
SUSE-SU-2024:3044-1
-
SUSE-SU-2024:3048-1
-
USN-6033-1
-
USN-6123-1
-
USN-6124-1
-
USN-6127-1
-
USN-6130-1
-
USN-6131-1
-
USN-6132-1
-
USN-6135-1
-
USN-6149-1
-
USN-6150-1
-
USN-6162-1
-
USN-6175-1
-
USN-6186-1
-
USN-6222-1
-
USN-6256-1
-
USN-6699-1
-
USN-6866-1
-
USN-6866-2
-
USN-6866-3
-
USN-6893-1
-
USN-6893-2
-
USN-6893-3
-
USN-6895-1
-
USN-6895-2
-
USN-6895-3
-
USN-6895-4
-
USN-6896-1
-
USN-6896-2
-
USN-6896-3
-
USN-6896-4
-
USN-6896-5
-
USN-6898-1
-
USN-6898-2
-
USN-6898-3
-
USN-6898-4
-
USN-6900-1
-
USN-6917-1
-
USN-6918-1
-
USN-6919-1
-
USN-6926-1
-
USN-6926-2
-
USN-6926-3
-
USN-6927-1
-
USN-6938-1
-
USN-6949-1
-
USN-6949-2
-
USN-6950-1
-
USN-6950-2
-
USN-6950-3
-
USN-6950-4
-
USN-6951-1
-
USN-6951-2
-
USN-6951-3
-
USN-6951-4
-
USN-6952-1
-
USN-6952-2
-
USN-6953-1
-
USN-6955-1
-
USN-6956-1
-
USN-6957-1
-
USN-6972-1
-
USN-6972-2
-
USN-6972-3
-
USN-6972-4
-
USN-6976-1
-
USN-6979-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| CVE | CVE-2021-47110 |
|
|
| CVE | CVE-2023-30456 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/amazonlinux/python-perf?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
 python-perf
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/python-perf?arch=aarch64&distro=amazonlinux-2 | amazonlinux |
python-perf
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | aarch64 | |
| Affected | pkg:rpm/amazonlinux/python-perf-debuginfo?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
python-perf-debuginfo
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/python-perf-debuginfo?arch=aarch64&distro=amazonlinux-2 | amazonlinux |
python-perf-debuginfo
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | aarch64 | |
| Affected | pkg:rpm/amazonlinux/perf?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
perf
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/perf?arch=aarch64&distro=amazonlinux-2 | amazonlinux |
perf
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | aarch64 | |
| Affected | pkg:rpm/amazonlinux/perf-debuginfo?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
perf-debuginfo
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/perf-debuginfo?arch=aarch64&distro=amazonlinux-2 | amazonlinux |
perf-debuginfo
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | aarch64 | |
| Affected | pkg:rpm/amazonlinux/kernel?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
kernel
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel?arch=aarch64&distro=amazonlinux-2 | amazonlinux |
kernel
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | aarch64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
kernel-tools
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools?arch=aarch64&distro=amazonlinux-2 | amazonlinux |
kernel-tools
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | aarch64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-devel?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
kernel-tools-devel
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-devel?arch=aarch64&distro=amazonlinux-2 | amazonlinux |
kernel-tools-devel
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | aarch64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-debuginfo?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
kernel-tools-debuginfo
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-debuginfo?arch=aarch64&distro=amazonlinux-2 | amazonlinux |
kernel-tools-debuginfo
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | aarch64 | |
| Affected | pkg:rpm/amazonlinux/kernel-livepatch-4.14.348-265.562?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
kernel-livepatch-4.14.348-265.562
|
< 1.0-0.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-headers?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
kernel-headers
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-headers?arch=i686&distro=amazonlinux-2 | amazonlinux |
kernel-headers
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-headers?arch=aarch64&distro=amazonlinux-2 | amazonlinux |
kernel-headers
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | aarch64 | |
| Affected | pkg:rpm/amazonlinux/kernel-devel?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
kernel-devel
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-devel?arch=aarch64&distro=amazonlinux-2 | amazonlinux |
kernel-devel
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | aarch64 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
kernel-debuginfo
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo?arch=aarch64&distro=amazonlinux-2 | amazonlinux |
kernel-debuginfo
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | aarch64 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo-common-x86_64?arch=x86_64&distro=amazonlinux-2 | amazonlinux |
kernel-debuginfo-common-x86_64
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo-common-aarch64?arch=aarch64&distro=amazonlinux-2 | amazonlinux |
kernel-debuginfo-common-aarch64
|
< 4.14.348-265.562.amzn2 | amazonlinux-2 | aarch64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |