[FEDORA-2024-bc0db39a14] Fedora 39: kernel
Severity
High
Affected Packages
1
CVEs
44
The 6.8.8 stable kernel update contains a number of important fixes across the
tree.
Package | Affected Version |
---|---|
pkg:rpm/fedora/kernel?distro=fedora-39 | < 6.8.8.200.fc39 |
- ID
- FEDORA-2024-bc0db39a14
- Severity
- high
- Severity from
- CVE-2024-27022
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2024-bc0db39a14
- Published
-
2024-05-03T01:34:06
(4 months ago) - Modified
-
2024-05-03T01:34:06
(4 months ago) - Rights
- Copyright 2024 Red Hat, Inc.
- Other Advisories
-
- ALAS-2024-1942
- ALAS2-2024-2581
- ALSA-2024:3618
- ALSA-2024:4211
- ALSA-2024:5101
- DSA-5680-1
- DSA-5681-1
- DSA-5730-1
- ELSA-2024-12570
- ELSA-2024-12571
- ELSA-2024-3618
- ELSA-2024-3619
- ELSA-2024-4211
- ELSA-2024-4928
- ELSA-2024-5101
- ELSA-2024-5928
- FEDORA-2024-010fe8772a
- FEDORA-2024-f35f9525d6
- RHSA-2024:3618
- RHSA-2024:3627
- RHSA-2024:4211
- RHSA-2024:4352
- RHSA-2024:5101
- RHSA-2024:5102
- RLSA-2024:3618
- RLSA-2024:3619
- RLSA-2024:4211
- RLSA-2024:4928
- RLSA-2024:5101
- SUSE-SU-2024:1643-1
- SUSE-SU-2024:1644-1
- SUSE-SU-2024:1646-1
- SUSE-SU-2024:1648-1
- SUSE-SU-2024:1659-1
- SUSE-SU-2024:1663-1
- SUSE-SU-2024:1870-1
- SUSE-SU-2024:1979-1
- SUSE-SU-2024:1983-1
- SUSE-SU-2024:2008-1
- SUSE-SU-2024:2019-1
- SUSE-SU-2024:2135-1
- SUSE-SU-2024:2184-1
- SUSE-SU-2024:2190-1
- SUSE-SU-2024:2203-1
- SUSE-SU-2024:2802-1
- SUSE-SU-2024:2892-1
- SUSE-SU-2024:2894-1
- SUSE-SU-2024:2896-1
- SUSE-SU-2024:2901-1
- SUSE-SU-2024:2939-1
- SUSE-SU-2024:2940-1
- SUSE-SU-2024:2947-1
- SUSE-SU-2024:2973-1
- SUSE-SU-2024:3189-1
- SUSE-SU-2024:3190-1
- SUSE-SU-2024:3194-1
- SUSE-SU-2024:3195-1
- SUSE-SU-2024:3209-1
- USN-6863-1
- USN-6864-1
- USN-6864-2
- USN-6864-3
- USN-6866-1
- USN-6866-2
- USN-6866-3
- USN-6869-1
- USN-6870-1
- USN-6870-2
- USN-6871-1
- USN-6872-1
- USN-6872-2
- USN-6873-1
- USN-6873-2
- USN-6874-1
- USN-6875-1
- USN-6892-1
- USN-6893-1
- USN-6893-2
- USN-6893-3
- USN-6895-1
- USN-6895-2
- USN-6895-3
- USN-6895-4
- USN-6896-1
- USN-6896-2
- USN-6896-3
- USN-6896-4
- USN-6896-5
- USN-6898-1
- USN-6898-2
- USN-6898-3
- USN-6898-4
- USN-6900-1
- USN-6917-1
- USN-6918-1
- USN-6919-1
- USN-6923-1
- USN-6923-2
- USN-6926-1
- USN-6926-2
- USN-6926-3
- USN-6927-1
- USN-6938-1
- USN-6950-1
- USN-6950-2
- USN-6950-3
- USN-6950-4
- USN-6951-1
- USN-6951-2
- USN-6951-3
- USN-6951-4
- USN-6953-1
- USN-6956-1
- USN-6957-1
- USN-6976-1
- USN-6979-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 2278257 | Bug #2278257 - CVE-2024-27020 kernel: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278257 |
Bugzilla | 2278276 | Bug #2278276 - CVE-2024-27012 kernel: netfilter: nf_tables: restore set elements when delete set fails [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278276 |
Bugzilla | 2278334 | Bug #2278334 - CVE-2024-26984 kernel: nouveau: fix instmem race condition around ptr stores [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278334 |
Bugzilla | 2278342 | Bug #2278342 - CVE-2024-26980 kernel: ksmbd: fix slab-out-of-bounds in smb2_allocate_rsp_buf [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278342 |
Bugzilla | 2278271 | Bug #2278271 - CVE-2024-27013 kernel: tun: limit printing rate when illegal packet received by tun dev [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278271 |
Bugzilla | 2278255 | Bug #2278255 - CVE-2024-27021 kernel: r8169: fix LED-related deadlock on module removal [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278255 |
Bugzilla | 2278292 | Bug #2278292 - CVE-2024-27004 kernel: clk: Get runtime PM before walking tree during disable_unused [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278292 |
Bugzilla | 2278311 | Bug #2278311 - CVE-2024-26995 kernel: usb: typec: tcpm: Correct the PDO counting in pd_set [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278311 |
Bugzilla | 2278263 | Bug #2278263 - CVE-2024-27017 kernel: netfilter: nft_set_pipapo: walk over current view on netlink dump [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278263 |
Bugzilla | 2278319 | Bug #2278319 - CVE-2024-26991 kernel: KVM: x86/mmu: x86: Don't overflow lpage_info when checking attributes [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278319 |
Bugzilla | 2278294 | Bug #2278294 - CVE-2024-27003 kernel: clk: Get runtime PM before walking tree for clk_summary [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278294 |
Bugzilla | 2278288 | Bug #2278288 - CVE-2024-27006 kernel: thermal/debugfs: Add missing count increment to thermal_debug_tz_trip_up() [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278288 |
Bugzilla | 2278330 | Bug #2278330 - CVE-2024-26986 kernel: drm/amdkfd: Fix memory leak in create_process failure [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278330 |
Bugzilla | 2278290 | Bug #2278290 - CVE-2024-27005 kernel: interconnect: Don't access req_list while it's being manipulated [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278290 |
Bugzilla | 2278315 | Bug #2278315 - CVE-2024-26993 kernel: fs: sysfs: Fix reference leak in sysfs_break_active_protection() [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278315 |
Bugzilla | 2278253 | Bug #2278253 - CVE-2024-27022 kernel: fork: defer linking file vma until vma is fully initialized [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278253 |
Bugzilla | 2278300 | Bug #2278300 - CVE-2024-27000 kernel: serial: mxs-auart: add spinlock around changing cts state [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278300 |
Bugzilla | 2278278 | Bug #2278278 - CVE-2024-27011 kernel: netfilter: nf_tables: fix memleak in map from abort path [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278278 |
Bugzilla | 2278298 | Bug #2278298 - CVE-2024-27001 kernel: comedi: vmk80xx: fix incomplete endpoint checking [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278298 |
Bugzilla | 2278336 | Bug #2278336 - CVE-2024-26983 kernel: bootconfig: use memblock_free_late to free xbc memory to buddy [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278336 |
Bugzilla | 2278261 | Bug #2278261 - CVE-2024-27018 kernel: netfilter: br_netfilter: skip conntrack input hook for promisc packets [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278261 |
Bugzilla | 2278317 | Bug #2278317 - CVE-2024-26992 kernel: KVM: x86/pmu: Disable support for adaptive PEBS [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278317 |
Bugzilla | 2277155 | Bug #2277155 - Fedora 39 - Device Driver for ISM not configured in kernel | https://bugzilla.redhat.com/show_bug.cgi?id=2277155 |
Bugzilla | 2278259 | Bug #2278259 - CVE-2024-27019 kernel: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278259 |
Bugzilla | 2278302 | Bug #2278302 - CVE-2024-26999 kernel: serial/pmac_zilog: Remove flawed mitigation for rx irq flood [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278302 |
Bugzilla | 2278282 | Bug #2278282 - CVE-2024-27009 kernel: s390/cio: fix race condition during online processing [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278282 |
Bugzilla | 2278304 | Bug #2278304 - CVE-2024-26998 kernel: serial: core: Clearing the circular buffer before NULLifying it [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278304 |
Bugzilla | 2278267 | Bug #2278267 - CVE-2024-27015 kernel: netfilter: flowtable: incorrect pppoe tuple [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278267 |
Bugzilla | 2278309 | Bug #2278309 - CVE-2024-26996 kernel: usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278309 |
Bugzilla | 2278284 | Bug #2278284 - CVE-2024-27008 kernel: drm: nv04: Fix out of bounds access [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278284 |
Bugzilla | 2278328 | Bug #2278328 - CVE-2024-26987 kernel: mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278328 |
Bugzilla | 2278323 | Bug #2278323 - CVE-2024-26989 kernel: arm64: hibernate: Fix level3 translation fault in swsusp_save() [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278323 |
Bugzilla | 2278338 | Bug #2278338 - CVE-2024-26982 kernel: Squashfs: check the inode number is not the invalid value of zero [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278338 |
Bugzilla | 2278286 | Bug #2278286 - CVE-2024-27007 kernel: userfaultfd: change src_folio after ensuring it's unpinned in UFFDIO_MOVE [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278286 |
Bugzilla | 2278340 | Bug #2278340 - CVE-2024-26981 kernel: nilfs2: fix OOB in nilfs_set_de_type [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278340 |
Bugzilla | 2276666 | Bug #2276666 - CVE-2024-26922 kernel: drm/amdgpu: validate the parameters of bo mapping operations more clearly [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2276666 |
Bugzilla | 2277170 | Bug #2277170 - CVE-2024-26924 kernel: netfilter: nft_set_pipapo: do not free live element [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2277170 |
Bugzilla | 2278332 | Bug #2278332 - CVE-2024-26985 kernel: drm/xe: Fix bo leak in intel_fb_bo_framebuffer_init [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278332 |
Bugzilla | 2278321 | Bug #2278321 - CVE-2024-26990 kernel: KVM: x86/mmu: Write-protect L2 SPTEs in TDP MMU when clearing dirty status [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278321 |
Bugzilla | 2278325 | Bug #2278325 - CVE-2024-26988 kernel: init/main.c: Fix potential static_command_line memory overflow [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278325 |
Bugzilla | 2278296 | Bug #2278296 - CVE-2024-27002 kernel: clk: mediatek: Do a runtime PM get on controllers during probe [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278296 |
Bugzilla | 2278265 | Bug #2278265 - CVE-2024-27016 kernel: netfilter: flowtable: validate pppoe header [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278265 |
Bugzilla | 2278280 | Bug #2278280 - CVE-2024-27010 kernel: net/sched: Fix mirred deadlock on device recursion [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278280 |
Bugzilla | 2278313 | Bug #2278313 - CVE-2024-26994 kernel: speakup: Avoid crash on very long word [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278313 |
Bugzilla | 2278269 | Bug #2278269 - CVE-2024-27014 kernel: net/mlx5e: Prevent deadlock while disabling aRFS [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=2278269 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/kernel?distro=fedora-39 | fedora | kernel | < 6.8.8.200.fc39 | fedora-39 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |