1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2024-bc0db39a14

[FEDORA-2024-bc0db39a14] Fedora 39: kernel

Severity High
Affected Packages 1
CVEs 44
Info Packages References Vulnerabilities

The 6.8.8 stable kernel update contains a number of important fixes across the
tree.

Package Affected Version
pkg:rpm/fedora/kernel?distro=fedora-39 < 6.8.8.200.fc39
ID
FEDORA-2024-bc0db39a14
Severity
high
Severity from
CVE-2024-27022
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2024-bc0db39a14
Published
2024-05-03T01:34:06
(4 months ago)
Modified
2024-05-03T01:34:06
(4 months ago)
Rights
Copyright 2024 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 2278257 Bug #2278257 - CVE-2024-27020 kernel: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278257
Bugzilla 2278276 Bug #2278276 - CVE-2024-27012 kernel: netfilter: nf_tables: restore set elements when delete set fails [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278276
Bugzilla 2278334 Bug #2278334 - CVE-2024-26984 kernel: nouveau: fix instmem race condition around ptr stores [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278334
Bugzilla 2278342 Bug #2278342 - CVE-2024-26980 kernel: ksmbd: fix slab-out-of-bounds in smb2_allocate_rsp_buf [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278342
Bugzilla 2278271 Bug #2278271 - CVE-2024-27013 kernel: tun: limit printing rate when illegal packet received by tun dev [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278271
Bugzilla 2278255 Bug #2278255 - CVE-2024-27021 kernel: r8169: fix LED-related deadlock on module removal [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278255
Bugzilla 2278292 Bug #2278292 - CVE-2024-27004 kernel: clk: Get runtime PM before walking tree during disable_unused [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278292
Bugzilla 2278311 Bug #2278311 - CVE-2024-26995 kernel: usb: typec: tcpm: Correct the PDO counting in pd_set [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278311
Bugzilla 2278263 Bug #2278263 - CVE-2024-27017 kernel: netfilter: nft_set_pipapo: walk over current view on netlink dump [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278263
Bugzilla 2278319 Bug #2278319 - CVE-2024-26991 kernel: KVM: x86/mmu: x86: Don&#39;t overflow lpage_info when checking attributes [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278319
Bugzilla 2278294 Bug #2278294 - CVE-2024-27003 kernel: clk: Get runtime PM before walking tree for clk_summary [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278294
Bugzilla 2278288 Bug #2278288 - CVE-2024-27006 kernel: thermal/debugfs: Add missing count increment to thermal_debug_tz_trip_up() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278288
Bugzilla 2278330 Bug #2278330 - CVE-2024-26986 kernel: drm/amdkfd: Fix memory leak in create_process failure [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278330
Bugzilla 2278290 Bug #2278290 - CVE-2024-27005 kernel: interconnect: Don&#39;t access req_list while it&#39;s being manipulated [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278290
Bugzilla 2278315 Bug #2278315 - CVE-2024-26993 kernel: fs: sysfs: Fix reference leak in sysfs_break_active_protection() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278315
Bugzilla 2278253 Bug #2278253 - CVE-2024-27022 kernel: fork: defer linking file vma until vma is fully initialized [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278253
Bugzilla 2278300 Bug #2278300 - CVE-2024-27000 kernel: serial: mxs-auart: add spinlock around changing cts state [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278300
Bugzilla 2278278 Bug #2278278 - CVE-2024-27011 kernel: netfilter: nf_tables: fix memleak in map from abort path [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278278
Bugzilla 2278298 Bug #2278298 - CVE-2024-27001 kernel: comedi: vmk80xx: fix incomplete endpoint checking [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278298
Bugzilla 2278336 Bug #2278336 - CVE-2024-26983 kernel: bootconfig: use memblock_free_late to free xbc memory to buddy [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278336
Bugzilla 2278261 Bug #2278261 - CVE-2024-27018 kernel: netfilter: br_netfilter: skip conntrack input hook for promisc packets [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278261
Bugzilla 2278317 Bug #2278317 - CVE-2024-26992 kernel: KVM: x86/pmu: Disable support for adaptive PEBS [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278317
Bugzilla 2277155 Bug #2277155 - Fedora 39 - Device Driver for ISM not configured in kernel https://bugzilla.redhat.com/show_bug.cgi?id=2277155
Bugzilla 2278259 Bug #2278259 - CVE-2024-27019 kernel: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278259
Bugzilla 2278302 Bug #2278302 - CVE-2024-26999 kernel: serial/pmac_zilog: Remove flawed mitigation for rx irq flood [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278302
Bugzilla 2278282 Bug #2278282 - CVE-2024-27009 kernel: s390/cio: fix race condition during online processing [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278282
Bugzilla 2278304 Bug #2278304 - CVE-2024-26998 kernel: serial: core: Clearing the circular buffer before NULLifying it [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278304
Bugzilla 2278267 Bug #2278267 - CVE-2024-27015 kernel: netfilter: flowtable: incorrect pppoe tuple [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278267
Bugzilla 2278309 Bug #2278309 - CVE-2024-26996 kernel: usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278309
Bugzilla 2278284 Bug #2278284 - CVE-2024-27008 kernel: drm: nv04: Fix out of bounds access [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278284
Bugzilla 2278328 Bug #2278328 - CVE-2024-26987 kernel: mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278328
Bugzilla 2278323 Bug #2278323 - CVE-2024-26989 kernel: arm64: hibernate: Fix level3 translation fault in swsusp_save() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278323
Bugzilla 2278338 Bug #2278338 - CVE-2024-26982 kernel: Squashfs: check the inode number is not the invalid value of zero [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278338
Bugzilla 2278286 Bug #2278286 - CVE-2024-27007 kernel: userfaultfd: change src_folio after ensuring it&#39;s unpinned in UFFDIO_MOVE [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278286
Bugzilla 2278340 Bug #2278340 - CVE-2024-26981 kernel: nilfs2: fix OOB in nilfs_set_de_type [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278340
Bugzilla 2276666 Bug #2276666 - CVE-2024-26922 kernel: drm/amdgpu: validate the parameters of bo mapping operations more clearly [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2276666
Bugzilla 2277170 Bug #2277170 - CVE-2024-26924 kernel: netfilter: nft_set_pipapo: do not free live element [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2277170
Bugzilla 2278332 Bug #2278332 - CVE-2024-26985 kernel: drm/xe: Fix bo leak in intel_fb_bo_framebuffer_init [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278332
Bugzilla 2278321 Bug #2278321 - CVE-2024-26990 kernel: KVM: x86/mmu: Write-protect L2 SPTEs in TDP MMU when clearing dirty status [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278321
Bugzilla 2278325 Bug #2278325 - CVE-2024-26988 kernel: init/main.c: Fix potential static_command_line memory overflow [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278325
Bugzilla 2278296 Bug #2278296 - CVE-2024-27002 kernel: clk: mediatek: Do a runtime PM get on controllers during probe [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278296
Bugzilla 2278265 Bug #2278265 - CVE-2024-27016 kernel: netfilter: flowtable: validate pppoe header [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278265
Bugzilla 2278280 Bug #2278280 - CVE-2024-27010 kernel: net/sched: Fix mirred deadlock on device recursion [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278280
Bugzilla 2278313 Bug #2278313 - CVE-2024-26994 kernel: speakup: Avoid crash on very long word [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278313
Bugzilla 2278269 Bug #2278269 - CVE-2024-27014 kernel: net/mlx5e: Prevent deadlock while disabling aRFS [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2278269
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/kernel?distro=fedora-39 fedora kernel < 6.8.8.200.fc39 fedora-39
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date