1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2024-92664ae6fe

[FEDORA-2024-92664ae6fe] Fedora 40: kernel

Severity High
Affected Packages 1
CVEs 7
Info Packages References Vulnerabilities

The 6.8.10 stable kernel update contains a number of important fixes across the
tree

Package Affected Version
pkg:rpm/fedora/kernel?distro=fedora-40 < 6.8.10.300.fc40
ID
FEDORA-2024-92664ae6fe
Severity
high
Severity from
CVE-2024-21823
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2024-92664ae6fe
Published
2024-05-22T01:28:10
(3 months ago)
Modified
2024-05-22T01:28:10
(3 months ago)
Rights
Copyright 2024 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 2281511 Bug #2281511 - CVE-2024-35947 kernel: dyndbg: fix old BUG_ON in &gt;control parser [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2281511
Bugzilla 2280408 Bug #2280408 - CVE-2024-27401 kernel: firewire: nosy: ensure user_length is taken into account when fetching packet contents [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2280408
Bugzilla 2276325 Bug #2276325 - Lenovo M910Q hardware boot fails with "Bug: scheduling while atomic" when ethernet connected https://bugzilla.redhat.com/show_bug.cgi?id=2276325
Bugzilla 2280396 Bug #2280396 - CVE-2024-21823 kernel: dmaengine/idxd: hardware erratum allows potential security problem with direct access by untrusted application [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2280396
Bugzilla 2280461 Bug #2280461 - CVE-2024-27400 kernel: drm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2 [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2280461
Bugzilla 2280463 Bug #2280463 - CVE-2024-27399 kernel: Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2280463
Bugzilla 2280465 Bug #2280465 - CVE-2024-27398 kernel: Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2280465
Bugzilla 2279734 Bug #2279734 - Kernel 6.8.8 deadlocks with 100% cpu when run in qemu/kvm https://bugzilla.redhat.com/show_bug.cgi?id=2279734
Bugzilla 2281946 Bug #2281946 - CVE-2024-35949 kernel: btrfs: make sure that WRITTEN is set on all metadata blocks [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2281946
Bugzilla 2279678 Bug #2279678 - Missing automatic memory initialization: enable CONFIG_INIT_ON_ALLOC_DEFAULT_ON=y https://bugzilla.redhat.com/show_bug.cgi?id=2279678
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/kernel?distro=fedora-40 fedora kernel < 6.8.10.300.fc40 fedora-40
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date