{ "document":{ "aggregate_severity":{ "namespace":"https://nvd.nist.gov/vuln-metrics/cvss", "text":"High" }, "category":"csaf_vex", "csaf_version":"2.0", "distribution":{ "tlp":{ "label":"WHITE", "url":"https:/www.first.org/tlp/" } }, "lang":"en", "notes":[ { "text":"kernel security update", "category":"general", "title":"Synopsis" }, { "text":"An update for kernel is now available for openEuler-22.03-LTS-SP3", "category":"general", "title":"Summary" }, { "text":"The Linux Kernel, the operating system core itself.\n\nSecurity Fix(es):\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gt: Cleanup partial engine discovery failures\n\nIf we abort driver initialisation in the middle of gt/engine discovery,\nsome engines will be fully setup and some not. Those incompletely setup\nengines only have 'engine->release == NULL' and so will leak any of the\ncommon objects allocated.\n\nv2:\n - Drop the destroy_pinned_context() helper for now. It's not really\n worth it with just a single callsite at the moment. (Janusz)(CVE-2022-48893)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to avoid dirent corruption\n\nAs Al reported in link[1]:\n\nf2fs_rename()\n...\n\tif (old_dir != new_dir && !whiteout)\n\t\tf2fs_set_link(old_inode, old_dir_entry,\n\t\t\t\t\told_dir_page, new_dir);\n\telse\n\t\tf2fs_put_page(old_dir_page, 0);\n\nYou want correct inumber in the \"..\" link. And cross-directory\nrename does move the source to new parent, even if you'd been asked\nto leave a whiteout in the old place.\n\n[1] https://lore.kernel.org/all/20231017055040.GN800259@ZenIV/\n\nWith below testcase, it may cause dirent corruption, due to it missed\nto call f2fs_set_link() to update \"..\" link to new directory.\n- mkdir -p dir/foo\n- renameat2 -w dir/foo bar\n\n[ASSERT] (__chk_dots_dentries:1421) --> Bad inode number[0x4] for '..', parent parent ino is [0x3]\n[FSCK] other corrupted bugs [Fail](CVE-2023-52444)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nefivarfs: force RO when remounting if SetVariable is not supported\n\nIf SetVariable at runtime is not supported by the firmware we never assign\na callback for that function. At the same time mount the efivarfs as\nRO so no one can call that. However, we never check the permission flags\nwhen someone remounts the filesystem as RW. As a result this leads to a\ncrash looking like this:\n\n$ mount -o remount,rw /sys/firmware/efi/efivars\n$ efi-updatevar -f PK.auth PK\n\n[ 303.279166] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n[ 303.280482] Mem abort info:\n[ 303.280854] ESR = 0x0000000086000004\n[ 303.281338] EC = 0x21: IABT (current EL), IL = 32 bits\n[ 303.282016] SET = 0, FnV = 0\n[ 303.282414] EA = 0, S1PTW = 0\n[ 303.282821] FSC = 0x04: level 0 translation fault\n[ 303.283771] user pgtable: 4k pages, 48-bit VAs, pgdp=000000004258c000\n[ 303.284913] [0000000000000000] pgd=0000000000000000, p4d=0000000000000000\n[ 303.286076] Internal error: Oops: 0000000086000004 [#1] PREEMPT SMP\n[ 303.286936] Modules linked in: qrtr tpm_tis tpm_tis_core crct10dif_ce arm_smccc_trng rng_core drm fuse ip_tables x_tables ipv6\n[ 303.288586] CPU: 1 PID: 755 Comm: efi-updatevar Not tainted 6.3.0-rc1-00108-gc7d0c4695c68 #1\n[ 303.289748] Hardware name: Unknown Unknown Product/Unknown Product, BIOS 2023.04-00627-g88336918701d 04/01/2023\n[ 303.291150] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 303.292123] pc : 0x0\n[ 303.292443] lr : efivar_set_variable_locked+0x74/0xec\n[ 303.293156] sp : ffff800008673c10\n[ 303.293619] x29: ffff800008673c10 x28: ffff0000037e8000 x27: 0000000000000000\n[ 303.294592] x26: 0000000000000800 x25: ffff000002467400 x24: 0000000000000027\n[ 303.295572] x23: ffffd49ea9832000 x22: ffff0000020c9800 x21: ffff000002467000\n[ 303.296566] x20: 0000000000000001 x19: 00000000000007fc x18: 0000000000000000\n[ 303.297531] x17: 0000000000000000 x16: 0000000000000000 x15: 0000aaaac807ab54\n[ 303.298495] x14: ed37489f673633c0 x13: 71c45c606de13f80 x12: 47464259e219acf4\n[ 303.299453] x11: ffff000002af7b01 x10: 0000000000000003 x9 : 0000000000000002\n[ 303.300431] x8 : 0000000000000010 x7 : ffffd49ea8973230 x6 : 0000000000a85201\n[ 303.301412] x5 : 0000000000000000 x4 : ffff0000020c9800 x3 : 00000000000007fc\n[ 303.302370] x2 : 0000000000000027 x1 : ffff000002467400 x0 : ffff000002467000\n[ 303.303341] Call trace:\n[ 303.303679] 0x0\n[ 303.303938] efivar_entry_set_get_size+0x98/0x16c\n[ 303.304585] efivarfs_file_write+0xd0/0x1a4\n[ 303.305148] vfs_write+0xc4/0x2e4\n[ 303.305601] ksys_write+0x70/0x104\n[ 303.306073] __arm64_sys_write+0x1c/0x28\n[ 303.306622] invoke_syscall+0x48/0x114\n[ 303.307156] el0_svc_common.constprop.0+0x44/0xec\n[ 303.307803] do_el0_svc+0x38/0x98\n[ 303.308268] el0_svc+0x2c/0x84\n[ 303.308702] el0t_64_sync_handler+0xf4/0x120\n[ 303.309293] el0t_64_sync+0x190/0x194\n[ 303.309794] Code: ???????? ???????? ???????? ???????? (????????)\n[ 303.310612] ---[ end trace 0000000000000000 ]---\n\nFix this by adding a .reconfigure() function to the fs operations which\nwe can use to check the requested flags and deny anything that's not RO\nif the firmware doesn't implement SetVariable at runtime.(CVE-2023-52463)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nx86/srso: Add SRSO mitigation for Hygon processors\n\nAdd mitigation for the speculative return stack overflow vulnerability\nwhich exists on Hygon processors too.(CVE-2023-52482)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: scomp - fix req->dst buffer overflow\n\nThe req->dst buffer size should be checked before copying from the\nscomp_scratch->dst to avoid req->dst buffer overflow problem.(CVE-2023-52612)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nllc: verify mac len before reading mac header\n\nLLC reads the mac header with eth_hdr without verifying that the skb\nhas an Ethernet header.\n\nSyzbot was able to enter llc_rcv on a tun device. Tun can insert\npackets without mac len and with user configurable skb->protocol\n(passing a tun_pi header when not configuring IFF_NO_PI).\n\n BUG: KMSAN: uninit-value in llc_station_ac_send_test_r net/llc/llc_station.c:81 [inline]\n BUG: KMSAN: uninit-value in llc_station_rcv+0x6fb/0x1290 net/llc/llc_station.c:111\n llc_station_ac_send_test_r net/llc/llc_station.c:81 [inline]\n llc_station_rcv+0x6fb/0x1290 net/llc/llc_station.c:111\n llc_rcv+0xc5d/0x14a0 net/llc/llc_input.c:218\n __netif_receive_skb_one_core net/core/dev.c:5523 [inline]\n __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5637\n netif_receive_skb_internal net/core/dev.c:5723 [inline]\n netif_receive_skb+0x58/0x660 net/core/dev.c:5782\n tun_rx_batched+0x3ee/0x980 drivers/net/tun.c:1555\n tun_get_user+0x54c5/0x69c0 drivers/net/tun.c:2002\n\nAdd a mac_len test before all three eth_hdr(skb) calls under net/llc.\n\nThere are further uses in include/net/llc_pdu.h. All these are\nprotected by a test skb->protocol == ETH_P_802_2. Which does not\nprotect against this tun scenario.\n\nBut the mac_len test added in this patch in llc_fixup_skb will\nindirectly protect those too. That is called from llc_rcv before any\nother LLC code.\n\nIt is tempting to just add a blanket mac_len check in llc_rcv, but\nnot sure whether that could break valid LLC paths that do not assume\nan Ethernet header. 802.2 LLC may be used on top of non-802.3\nprotocols in principle. The below referenced commit shows that used\nto, on top of Token Ring.\n\nAt least one of the three eth_hdr uses goes back to before the start\nof git history. But the one that syzbot exercises is introduced in\nthis commit. That commit is old enough (2008), that effectively all\nstable kernels should receive this.(CVE-2023-52843)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nhv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed\n\nIf hv_netvsc driver is unloaded and reloaded, the NET_DEVICE_REGISTER\nhandler cannot perform VF register successfully as the register call\nis received before netvsc_probe is finished. This is because we\nregister register_netdevice_notifier() very early( even before\nvmbus_driver_register()).\nTo fix this, we try to register each such matching VF( if it is visible\nas a netdevice) at the end of netvsc_probe.(CVE-2024-26820)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: honor table dormant flag from netdev release event path\n\nCheck for table dormant flag otherwise netdev release event path tries\nto unregister an already unregistered hook.\n\n[524854.857999] ------------[ cut here ]------------\n[524854.858010] WARNING: CPU: 0 PID: 3386599 at net/netfilter/core.c:501 __nf_unregister_net_hook+0x21a/0x260\n[...]\n[524854.858848] CPU: 0 PID: 3386599 Comm: kworker/u32:2 Not tainted 6.9.0-rc3+ #365\n[524854.858869] Workqueue: netns cleanup_net\n[524854.858886] RIP: 0010:__nf_unregister_net_hook+0x21a/0x260\n[524854.858903] Code: 24 e8 aa 73 83 ff 48 63 43 1c 83 f8 01 0f 85 3d ff ff ff e8 98 d1 f0 ff 48 8b 3c 24 e8 8f 73 83 ff 48 63 43 1c e9 26 ff ff ff <0f> 0b 48 83 c4 18 48 c7 c7 00 68 e9 82 5b 5d 41 5c 41 5d 41 5e 41\n[524854.858914] RSP: 0018:ffff8881e36d79e0 EFLAGS: 00010246\n[524854.858926] RAX: 0000000000000000 RBX: ffff8881339ae790 RCX: ffffffff81ba524a\n[524854.858936] RDX: dffffc0000000000 RSI: 0000000000000008 RDI: ffff8881c8a16438\n[524854.858945] RBP: ffff8881c8a16438 R08: 0000000000000001 R09: ffffed103c6daf34\n[524854.858954] R10: ffff8881e36d79a7 R11: 0000000000000000 R12: 0000000000000005\n[524854.858962] R13: ffff8881c8a16000 R14: 0000000000000000 R15: ffff8881351b5a00\n[524854.858971] FS: 0000000000000000(0000) GS:ffff888390800000(0000) knlGS:0000000000000000\n[524854.858982] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[524854.858991] CR2: 00007fc9be0f16f4 CR3: 00000001437cc004 CR4: 00000000001706f0\n[524854.859000] Call Trace:\n[524854.859006] \n[524854.859013] ? __warn+0x9f/0x1a0\n[524854.859027] ? __nf_unregister_net_hook+0x21a/0x260\n[524854.859044] ? report_bug+0x1b1/0x1e0\n[524854.859060] ? handle_bug+0x3c/0x70\n[524854.859071] ? exc_invalid_op+0x17/0x40\n[524854.859083] ? asm_exc_invalid_op+0x1a/0x20\n[524854.859100] ? __nf_unregister_net_hook+0x6a/0x260\n[524854.859116] ? __nf_unregister_net_hook+0x21a/0x260\n[524854.859135] nf_tables_netdev_event+0x337/0x390 [nf_tables]\n[524854.859304] ? __pfx_nf_tables_netdev_event+0x10/0x10 [nf_tables]\n[524854.859461] ? packet_notifier+0xb3/0x360\n[524854.859476] ? _raw_spin_unlock_irqrestore+0x11/0x40\n[524854.859489] ? dcbnl_netdevice_event+0x35/0x140\n[524854.859507] ? __pfx_nf_tables_netdev_event+0x10/0x10 [nf_tables]\n[524854.859661] notifier_call_chain+0x7d/0x140\n[524854.859677] unregister_netdevice_many_notify+0x5e1/0xae0(CVE-2024-36005)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\next4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super()\n\nIn the following concurrency we will access the uninitialized rs->lock:\n\next4_fill_super\n ext4_register_sysfs\n // sysfs registered msg_ratelimit_interval_ms\n // Other processes modify rs->interval to\n // non-zero via msg_ratelimit_interval_ms\n ext4_orphan_cleanup\n ext4_msg(sb, KERN_INFO, \"Errors on filesystem, \"\n __ext4_msg\n ___ratelimit(&(EXT4_SB(sb)->s_msg_ratelimit_state)\n if (!rs->interval) // do nothing if interval is 0\n return 1;\n raw_spin_trylock_irqsave(&rs->lock, flags)\n raw_spin_trylock(lock)\n _raw_spin_trylock\n __raw_spin_trylock\n spin_acquire(&lock->dep_map, 0, 1, _RET_IP_)\n lock_acquire\n __lock_acquire\n register_lock_class\n assign_lock_key\n dump_stack();\n ratelimit_state_init(&sbi->s_msg_ratelimit_state, 5 * HZ, 10);\n raw_spin_lock_init(&rs->lock);\n // init rs->lock here\n\nand get the following dump_stack:\n\n=========================================================\nINFO: trying to register non-static key.\nThe code is fine but needs lockdep annotation, or maybe\nyou didn't initialize this object before use?\nturning off the locking correctness validator.\nCPU: 12 PID: 753 Comm: mount Tainted: G E 6.7.0-rc6-next-20231222 #504\n[...]\nCall Trace:\n dump_stack_lvl+0xc5/0x170\n dump_stack+0x18/0x30\n register_lock_class+0x740/0x7c0\n __lock_acquire+0x69/0x13a0\n lock_acquire+0x120/0x450\n _raw_spin_trylock+0x98/0xd0\n ___ratelimit+0xf6/0x220\n __ext4_msg+0x7f/0x160 [ext4]\n ext4_orphan_cleanup+0x665/0x740 [ext4]\n __ext4_fill_super+0x21ea/0x2b10 [ext4]\n ext4_fill_super+0x14d/0x360 [ext4]\n[...]\n=========================================================\n\nNormally interval is 0 until s_msg_ratelimit_state is initialized, so\n___ratelimit() does nothing. But registering sysfs precedes initializing\nrs->lock, so it is possible to change rs->interval to a non-zero value\nvia the msg_ratelimit_interval_ms interface of sysfs while rs->lock is\nuninitialized, and then a call to ext4_msg triggers the problem by\naccessing an uninitialized rs->lock. Therefore register sysfs after all\ninitializations are complete to avoid such problems.(CVE-2024-40998)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Take return from set_memory_rox() into account with bpf_jit_binary_lock_ro()\n\nset_memory_rox() can fail, leaving memory unprotected.\n\nCheck return and bail out when bpf_jit_binary_lock_ro() returns\nan error.(CVE-2024-42067)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nnet: nexthop: Initialize all fields in dumped nexthops\n\nstruct nexthop_grp contains two reserved fields that are not initialized by\nnla_put_nh_group(), and carry garbage. This can be observed e.g. with\nstrace (edited for clarity):\n\n # ip nexthop add id 1 dev lo\n # ip nexthop add id 101 group 1\n # strace -e recvmsg ip nexthop get id 101\n ...\n recvmsg(... [{nla_len=12, nla_type=NHA_GROUP},\n [{id=1, weight=0, resvd1=0x69, resvd2=0x67}]] ...) = 52\n\nThe fields are reserved and therefore not currently used. But as they are, they\nleak kernel memory, and the fact they are not just zero complicates repurposing\nof the fields for new ends. Initialize the full structure.(CVE-2024-42283)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/imx-irqsteer: Handle runtime power management correctly\n\nThe power domain is automatically activated from clk_prepare(). However, on\ncertain platforms like i.MX8QM and i.MX8QXP, the power-on handling invokes\nsleeping functions, which triggers the 'scheduling while atomic' bug in the\ncontext switch path during device probing:\n\n BUG: scheduling while atomic: kworker/u13:1/48/0x00000002\n Call trace:\n __schedule_bug+0x54/0x6c\n __schedule+0x7f0/0xa94\n schedule+0x5c/0xc4\n schedule_preempt_disabled+0x24/0x40\n __mutex_lock.constprop.0+0x2c0/0x540\n __mutex_lock_slowpath+0x14/0x20\n mutex_lock+0x48/0x54\n clk_prepare_lock+0x44/0xa0\n clk_prepare+0x20/0x44\n imx_irqsteer_resume+0x28/0xe0\n pm_generic_runtime_resume+0x2c/0x44\n __genpd_runtime_resume+0x30/0x80\n genpd_runtime_resume+0xc8/0x2c0\n __rpm_callback+0x48/0x1d8\n rpm_callback+0x6c/0x78\n rpm_resume+0x490/0x6b4\n __pm_runtime_resume+0x50/0x94\n irq_chip_pm_get+0x2c/0xa0\n __irq_do_set_handler+0x178/0x24c\n irq_set_chained_handler_and_data+0x60/0xa4\n mxc_gpio_probe+0x160/0x4b0\n\nCure this by implementing the irq_bus_lock/sync_unlock() interrupt chip\ncallbacks and handle power management in them as they are invoked from\nnon-atomic context.\n\n[ tglx: Rewrote change log, added Fixes tag ](CVE-2024-42290)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nudf: Avoid using corrupted block bitmap buffer\n\nWhen the filesystem block bitmap is corrupted, we detect the corruption\nwhile loading the bitmap and fail the allocation with error. However the\nnext allocation from the same bitmap will notice the bitmap buffer is\nalready loaded and tries to allocate from the bitmap with mixed results\n(depending on the exact nature of the bitmap corruption). Fix the\nproblem by using BH_verified bit to indicate whether the bitmap is valid\nor not.(CVE-2024-42306)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\ndrm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes\n\nIn psb_intel_lvds_get_modes(), the return value of drm_mode_duplicate() is\nassigned to mode, which will lead to a possible NULL pointer dereference\non failure of drm_mode_duplicate(). Add a check to avoid npd.(CVE-2024-42309)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nmedia: venus: fix use after free in vdec_close\n\nThere appears to be a possible use after free with vdec_close().\nThe firmware will add buffer release work to the work queue through\nHFI callbacks as a normal part of decoding. Randomly closing the\ndecoder device from userspace during normal decoding can incur\na read after free for inst.\n\nFix it by cancelling the work in vdec_close.(CVE-2024-42313)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nipvs: properly dereference pe in ip_vs_add_service\n\nUse pe directly to resolve sparse warning:\n\n net/netfilter/ipvs/ip_vs_ctl.c:1471:27: warning: dereference of noderef expression(CVE-2024-42322)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nPCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs()\n\nIf IORESOURCE_MEM is not provided in Device Tree due to\nany error, resource_list_first_type() will return NULL and\npci_parse_request_of_pci_ranges() will just emit a warning.\n\nThis will cause a NULL pointer dereference. Fix this bug by adding NULL\nreturn check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.(CVE-2024-43823)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nleds: trigger: Unregister sysfs attributes before calling deactivate()\n\nTriggers which have trigger specific sysfs attributes typically store\nrelated data in trigger-data allocated by the activate() callback and\nfreed by the deactivate() callback.\n\nCalling device_remove_groups() after calling deactivate() leaves a window\nwhere the sysfs attributes show/store functions could be called after\ndeactivation and then operate on the just freed trigger-data.\n\nMove the device_remove_groups() call to before deactivate() to close\nthis race window.\n\nThis also makes the deactivation path properly do things in reverse order\nof the activation path which calls the activate() callback before calling\ndevice_add_groups().(CVE-2024-43830)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nbpf, arm64: Fix trampoline for BPF_TRAMP_F_CALL_ORIG\n\nWhen BPF_TRAMP_F_CALL_ORIG is set, the trampoline calls\n__bpf_tramp_enter() and __bpf_tramp_exit() functions, passing them\nthe struct bpf_tramp_image *im pointer as an argument in R0.\n\nThe trampoline generation code uses emit_addr_mov_i64() to emit\ninstructions for moving the bpf_tramp_image address into R0, but\nemit_addr_mov_i64() assumes the address to be in the vmalloc() space\nand uses only 48 bits. Because bpf_tramp_image is allocated using\nkzalloc(), its address can use more than 48-bits, in this case the\ntrampoline will pass an invalid address to __bpf_tramp_enter/exit()\ncausing a kernel crash.\n\nFix this by using emit_a64_mov_i64() in place of emit_addr_mov_i64()\nas it can work with addresses that are greater than 48-bits.(CVE-2024-43840)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nmd: fix deadlock between mddev_suspend and flush bio\n\nDeadlock occurs when mddev is being suspended while some flush bio is in\nprogress. It is a complex issue.\n\nT1. the first flush is at the ending stage, it clears 'mddev->flush_bio'\n and tries to submit data, but is blocked because mddev is suspended\n by T4.\nT2. the second flush sets 'mddev->flush_bio', and attempts to queue\n md_submit_flush_data(), which is already running (T1) and won't\n execute again if on the same CPU as T1.\nT3. the third flush inc active_io and tries to flush, but is blocked because\n 'mddev->flush_bio' is not NULL (set by T2).\nT4. mddev_suspend() is called and waits for active_io dec to 0 which is inc\n by T3.\n\n T1\t\tT2\t\tT3\t\tT4\n (flush 1)\t(flush 2)\t(third 3)\t(suspend)\n md_submit_flush_data\n mddev->flush_bio = NULL;\n .\n .\t \tmd_flush_request\n .\t \t mddev->flush_bio = bio\n .\t \t queue submit_flushes\n .\t\t .\n .\t\t .\t\tmd_handle_request\n .\t\t .\t\t active_io + 1\n .\t\t .\t\t md_flush_request\n .\t\t .\t\t wait !mddev->flush_bio\n .\t\t .\n .\t\t .\t\t\t\tmddev_suspend\n .\t\t .\t\t\t\t wait !active_io\n .\t\t .\n .\t\t submit_flushes\n .\t\t queue_work md_submit_flush_data\n .\t\t //md_submit_flush_data is already running (T1)\n .\n md_handle_request\n wait resume\n\nThe root issue is non-atomic inc/dec of active_io during flush process.\nactive_io is dec before md_submit_flush_data is queued, and inc soon\nafter md_submit_flush_data() run.\n md_flush_request\n active_io + 1\n submit_flushes\n active_io - 1\n md_submit_flush_data\n md_handle_request\n active_io + 1\n make_request\n active_io - 1\n\nIf active_io is dec after md_handle_request() instead of within\nsubmit_flushes(), make_request() can be called directly intead of\nmd_handle_request() in md_submit_flush_data(), and active_io will\nonly inc and dec once in the whole flush process. Deadlock will be\nfixed.\n\nAdditionally, the only difference between fixing the issue and before is\nthat there is no return error handling of make_request(). But after\nprevious patch cleaned md_write_start(), make_requst() only return error\nin raid5_make_request() by dm-raid, see commit 41425f96d7aa (\"dm-raid456,\nmd/raid456: fix a deadlock for dm-raid456 while io concurrent with\nreshape)\". Since dm always splits data and flush operation into two\nseparate io, io size of flush submitted by dm always is 0, make_request()\nwill not be called in md_submit_flush_data(). To prevent future\nmodifications from introducing issues, add WARN_ON to ensure\nmake_request() no error is returned in this context.(CVE-2024-43855)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix soft lockup under heavy CEQE load\n\nCEQEs are handled in interrupt handler currently. This may cause the\nCPU core staying in interrupt context too long and lead to soft lockup\nunder heavy load.\n\nHandle CEQEs in BH workqueue and set an upper limit for the number of\nCEQE handled by a single call of work handler.(CVE-2024-43872)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nmemcg: protect concurrent access to mem_cgroup_idr\n\nCommit 73f576c04b94 (\"mm: memcontrol: fix cgroup creation failure after\nmany small jobs\") decoupled the memcg IDs from the CSS ID space to fix the\ncgroup creation failures. It introduced IDR to maintain the memcg ID\nspace. The IDR depends on external synchronization mechanisms for\nmodifications. For the mem_cgroup_idr, the idr_alloc() and idr_replace()\nhappen within css callback and thus are protected through cgroup_mutex\nfrom concurrent modifications. However idr_remove() for mem_cgroup_idr\nwas not protected against concurrency and can be run concurrently for\ndifferent memcgs when they hit their refcnt to zero. Fix that.\n\nWe have been seeing list_lru based kernel crashes at a low frequency in\nour fleet for a long time. These crashes were in different part of\nlist_lru code including list_lru_add(), list_lru_del() and reparenting\ncode. Upon further inspection, it looked like for a given object (dentry\nand inode), the super_block's list_lru didn't have list_lru_one for the\nmemcg of that object. The initial suspicions were either the object is\nnot allocated through kmem_cache_alloc_lru() or somehow\nmemcg_list_lru_alloc() failed to allocate list_lru_one() for a memcg but\nreturned success. No evidence were found for these cases.\n\nLooking more deeply, we started seeing situations where valid memcg's id\nis not present in mem_cgroup_idr and in some cases multiple valid memcgs\nhave same id and mem_cgroup_idr is pointing to one of them. So, the most\nreasonable explanation is that these situations can happen due to race\nbetween multiple idr_remove() calls or race between\nidr_alloc()/idr_replace() and idr_remove(). These races are causing\nmultiple memcgs to acquire the same ID and then offlining of one of them\nwould cleanup list_lrus on the system for all of them. Later access from\nother memcgs to the list_lru cause crashes due to missing list_lru_one.(CVE-2024-43892)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nserial: core: check uartclk for zero to avoid divide by zero\n\nCalling ioctl TIOCSSERIAL with an invalid baud_base can\nresult in uartclk being zero, which will result in a\ndivide by zero error in uart_get_divisor(). The check for\nuartclk being zero in uart_set_info() needs to be done\nbefore other settings are made as subsequent calls to\nioctl TIOCSSERIAL for the same port would be impacted if\nthe uartclk check was done where uartclk gets set.\n\nOops: divide error: 0000 PREEMPT SMP KASAN PTI\nRIP: 0010:uart_get_divisor (drivers/tty/serial/serial_core.c:580)\nCall Trace:\n \nserial8250_get_divisor (drivers/tty/serial/8250/8250_port.c:2576\n drivers/tty/serial/8250/8250_port.c:2589)\nserial8250_do_set_termios (drivers/tty/serial/8250/8250_port.c:502\n drivers/tty/serial/8250/8250_port.c:2741)\nserial8250_set_termios (drivers/tty/serial/8250/8250_port.c:2862)\nuart_change_line_settings (./include/linux/spinlock.h:376\n ./include/linux/serial_core.h:608 drivers/tty/serial/serial_core.c:222)\nuart_port_startup (drivers/tty/serial/serial_core.c:342)\nuart_startup (drivers/tty/serial/serial_core.c:368)\nuart_set_info (drivers/tty/serial/serial_core.c:1034)\nuart_set_info_user (drivers/tty/serial/serial_core.c:1059)\ntty_set_serial (drivers/tty/tty_io.c:2637)\ntty_ioctl (drivers/tty/tty_io.c:2647 drivers/tty/tty_io.c:2791)\n__x64_sys_ioctl (fs/ioctl.c:52 fs/ioctl.c:907\n fs/ioctl.c:893 fs/ioctl.c:893)\ndo_syscall_64 (arch/x86/entry/common.c:52\n (discriminator 1) arch/x86/entry/common.c:83 (discriminator 1))\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\nRule: add(CVE-2024-43893)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nfou: remove warn in gue_gro_receive on unsupported protocol\n\nDrop the WARN_ON_ONCE inn gue_gro_receive if the encapsulated type is\nnot known or does not have a GRO handler.\n\nSuch a packet is easily constructed. Syzbot generates them and sets\noff this warning.\n\nRemove the warning as it is expected and not actionable.\n\nThe warning was previously reduced from WARN_ON to WARN_ON_ONCE in\ncommit 270136613bf7 (\"fou: Do WARN_ON_ONCE in gue_gro_receive for bad\nproto callbacks\").(CVE-2024-44940)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nALSA: line6: Fix racy access to midibuf\n\nThere can be concurrent accesses to line6 midibuf from both the URB\ncompletion callback and the rawmidi API access. This could be a cause\nof KMSAN warning triggered by syzkaller below (so put as reported-by\nhere).\n\nThis patch protects the midibuf call of the former code path with a\nspinlock for avoiding the possible races.(CVE-2024-44954)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\natm: idt77252: prevent use after free in dequeue_rx()\n\nWe can't dereference \"skb\" after calling vcc->push() because the skb\nis released.(CVE-2024-44998)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nxhci: Fix Panther point NULL pointer deref at full-speed re-enumeration\n\nre-enumerating full-speed devices after a failed address device command\ncan trigger a NULL pointer dereference.\n\nFull-speed devices may need to reconfigure the endpoint 0 Max Packet Size\nvalue during enumeration. Usb core calls usb_ep0_reinit() in this case,\nwhich ends up calling xhci_configure_endpoint().\n\nOn Panther point xHC the xhci_configure_endpoint() function will\nadditionally check and reserve bandwidth in software. Other hosts do\nthis in hardware\n\nIf xHC address device command fails then a new xhci_virt_device structure\nis allocated as part of re-enabling the slot, but the bandwidth table\npointers are not set up properly here.\nThis triggers the NULL pointer dereference the next time usb_ep0_reinit()\nis called and xhci_configure_endpoint() tries to check and reserve\nbandwidth\n\n[46710.713538] usb 3-1: new full-speed USB device number 5 using xhci_hcd\n[46710.713699] usb 3-1: Device not responding to setup address.\n[46710.917684] usb 3-1: Device not responding to setup address.\n[46711.125536] usb 3-1: device not accepting address 5, error -71\n[46711.125594] BUG: kernel NULL pointer dereference, address: 0000000000000008\n[46711.125600] #PF: supervisor read access in kernel mode\n[46711.125603] #PF: error_code(0x0000) - not-present page\n[46711.125606] PGD 0 P4D 0\n[46711.125610] Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n[46711.125615] CPU: 1 PID: 25760 Comm: kworker/1:2 Not tainted 6.10.3_2 #1\n[46711.125620] Hardware name: Gigabyte Technology Co., Ltd.\n[46711.125623] Workqueue: usb_hub_wq hub_event [usbcore]\n[46711.125668] RIP: 0010:xhci_reserve_bandwidth (drivers/usb/host/xhci.c\n\nFix this by making sure bandwidth table pointers are set up correctly\nafter a failed address device command, and additionally by avoiding\nchecking for bandwidth in cases like this where no actual endpoints are\nadded or removed, i.e. only context for default control endpoint 0 is\nevaluated.(CVE-2024-45006)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\ns390/dasd: fix error recovery leading to data corruption on ESE devices\n\nExtent Space Efficient (ESE) or thin provisioned volumes need to be\nformatted on demand during usual IO processing.\n\nThe dasd_ese_needs_format function checks for error codes that signal\nthe non existence of a proper track format.\n\nThe check for incorrect length is to imprecise since other error cases\nleading to transport of insufficient data also have this flag set.\nThis might lead to data corruption in certain error cases for example\nduring a storage server warmstart.\n\nFix by removing the check for incorrect length and replacing by\nexplicitly checking for invalid track format in transport mode.\n\nAlso remove the check for file protected since this is not a valid\nESE handling case.(CVE-2024-45026)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nnfc: pn533: Add poll mod list filling check\n\nIn case of im_protocols value is 1 and tm_protocols value is 0 this\ncombination successfully passes the check\n'if (!im_protocols && !tm_protocols)' in the nfc_start_poll().\nBut then after pn533_poll_create_mod_list() call in pn533_start_poll()\npoll mod list will remain empty and dev->poll_mod_count will remain 0\nwhich lead to division by zero.\n\nNormally no im protocol has value 1 in the mask, so this combination is\nnot expected by driver. But these protocol values actually come from\nuserspace via Netlink interface (NFC_CMD_START_POLL operation). So a\nbroken or malicious program may pass a message containing a \"bad\"\ncombination of protocol parameter values so that dev->poll_mod_count\nis not incremented inside pn533_poll_create_mod_list(), thus leading\nto division by zero.\nCall trace looks like:\nnfc_genl_start_poll()\n nfc_start_poll()\n ->start_poll()\n pn533_start_poll()\n\nAdd poll mod list filling check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.(CVE-2024-46676)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Fix null pointer dereference in trace\n\nucsi_register_altmode checks IS_ERR for the alt pointer and treats\nNULL as valid. When CONFIG_TYPEC_DP_ALTMODE is not enabled,\nucsi_register_displayport returns NULL which causes a NULL pointer\ndereference in trace. Rather than return NULL, call\ntypec_port_register_altmode to register DisplayPort alternate mode\nas a non-controllable mode when CONFIG_TYPEC_DP_ALTMODE is not enabled.(CVE-2024-46719)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Remove tst_run from lwt_seg6local_prog_ops.\n\nThe syzbot reported that the lwt_seg6 related BPF ops can be invoked\nvia bpf_test_run() without without entering input_action_end_bpf()\nfirst.\n\nMartin KaFai Lau said that self test for BPF_PROG_TYPE_LWT_SEG6LOCAL\nprobably didn't work since it was introduced in commit 04d4b274e2a\n(\"ipv6: sr: Add seg6local action End.BPF\"). The reason is that the\nper-CPU variable seg6_bpf_srh_states::srh is never assigned in the self\ntest case but each BPF function expects it.\n\nRemove test_run for BPF_PROG_TYPE_LWT_SEG6LOCAL.(CVE-2024-46754)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nice: Add netif_device_attach/detach into PF reset flow\n\nEthtool callbacks can be executed while reset is in progress and try to\naccess deleted resources, e.g. getting coalesce settings can result in a\nNULL pointer dereference seen below.\n\nReproduction steps:\nOnce the driver is fully initialized, trigger reset:\n\t# echo 1 > /sys/class/net//device/reset\nwhen reset is in progress try to get coalesce settings using ethtool:\n\t# ethtool -c \n\nBUG: kernel NULL pointer dereference, address: 0000000000000020\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] PREEMPT SMP PTI\nCPU: 11 PID: 19713 Comm: ethtool Tainted: G S 6.10.0-rc7+ #7\nRIP: 0010:ice_get_q_coalesce+0x2e/0xa0 [ice]\nRSP: 0018:ffffbab1e9bcf6a8 EFLAGS: 00010206\nRAX: 000000000000000c RBX: ffff94512305b028 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: ffff9451c3f2e588 RDI: ffff9451c3f2e588\nRBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\nR10: ffff9451c3f2e580 R11: 000000000000001f R12: ffff945121fa9000\nR13: ffffbab1e9bcf760 R14: 0000000000000013 R15: ffffffff9e65dd40\nFS: 00007faee5fbe740(0000) GS:ffff94546fd80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000020 CR3: 0000000106c2e005 CR4: 00000000001706f0\nCall Trace:\n\nice_get_coalesce+0x17/0x30 [ice]\ncoalesce_prepare_data+0x61/0x80\nethnl_default_doit+0xde/0x340\ngenl_family_rcv_msg_doit+0xf2/0x150\ngenl_rcv_msg+0x1b3/0x2c0\nnetlink_rcv_skb+0x5b/0x110\ngenl_rcv+0x28/0x40\nnetlink_unicast+0x19c/0x290\nnetlink_sendmsg+0x222/0x490\n__sys_sendto+0x1df/0x1f0\n__x64_sys_sendto+0x24/0x30\ndo_syscall_64+0x82/0x160\nentry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7faee60d8e27\n\nCalling netif_device_detach() before reset makes the net core not call\nthe driver when ethtool command is issued, the attempt to execute an\nethtool command during reset will result in the following message:\n\n netlink error: No such device\n\ninstead of NULL pointer dereference. Once reset is done and\nice_rebuild() is executing, the netif_device_attach() is called to allow\nfor ethtool operations to occur again in a safe manner.(CVE-2024-46770)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: unset the binding mark of a reused connection\n\nSteve French reported null pointer dereference error from sha256 lib.\ncifs.ko can send session setup requests on reused connection.\nIf reused connection is used for binding session, conn->binding can\nstill remain true and generate_preauth_hash() will not set\nsess->Preauth_HashValue and it will be NULL.\nIt is used as a material to create an encryption key in\nksmbd_gen_smb311_encryptionkey. ->Preauth_HashValue cause null pointer\ndereference error from crypto_shash_update().\n\nBUG: kernel NULL pointer dereference, address: 0000000000000000\n#PF: supervisor read access in kernel mode\n#PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 8 PID: 429254 Comm: kworker/8:39\nHardware name: LENOVO 20MAS08500/20MAS08500, BIOS N2CET69W (1.52 )\nWorkqueue: ksmbd-io handle_ksmbd_work [ksmbd]\nRIP: 0010:lib_sha256_base_do_update.isra.0+0x11e/0x1d0 [sha256_ssse3]\n\n? show_regs+0x6d/0x80\n? __die+0x24/0x80\n? page_fault_oops+0x99/0x1b0\n? do_user_addr_fault+0x2ee/0x6b0\n? exc_page_fault+0x83/0x1b0\n? asm_exc_page_fault+0x27/0x30\n? __pfx_sha256_transform_rorx+0x10/0x10 [sha256_ssse3]\n? lib_sha256_base_do_update.isra.0+0x11e/0x1d0 [sha256_ssse3]\n? __pfx_sha256_transform_rorx+0x10/0x10 [sha256_ssse3]\n? __pfx_sha256_transform_rorx+0x10/0x10 [sha256_ssse3]\n_sha256_update+0x77/0xa0 [sha256_ssse3]\nsha256_avx2_update+0x15/0x30 [sha256_ssse3]\ncrypto_shash_update+0x1e/0x40\nhmac_update+0x12/0x20\ncrypto_shash_update+0x1e/0x40\ngenerate_key+0x234/0x380 [ksmbd]\ngenerate_smb3encryptionkey+0x40/0x1c0 [ksmbd]\nksmbd_gen_smb311_encryptionkey+0x72/0xa0 [ksmbd]\nntlm_authenticate.isra.0+0x423/0x5d0 [ksmbd]\nsmb2_sess_setup+0x952/0xaa0 [ksmbd]\n__process_request+0xa3/0x1d0 [ksmbd]\n__handle_ksmbd_work+0x1c4/0x2f0 [ksmbd]\nhandle_ksmbd_work+0x2d/0xa0 [ksmbd]\nprocess_one_work+0x16c/0x350\nworker_thread+0x306/0x440\n? __pfx_worker_thread+0x10/0x10\nkthread+0xef/0x120\n? __pfx_kthread+0x10/0x10\nret_from_fork+0x44/0x70\n? __pfx_kthread+0x10/0x10\nret_from_fork_asm+0x1b/0x30\n(CVE-2024-46795)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: the warning dereferencing obj for nbio_v7_4\n\nif ras_manager obj null, don't print NBIO err data(CVE-2024-46819)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nELF: fix kernel.randomize_va_space double read\n\nELF loader uses \"randomize_va_space\" twice. It is sysctl and can change\nat any moment, so 2 loads could see 2 different values in theory with\nunpredictable consequences.\n\nIssue exactly one load for consistent value across one exec.(CVE-2024-46826)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nsched: sch_cake: fix bulk flow accounting logic for host fairness\n\nIn sch_cake, we keep track of the count of active bulk flows per host,\nwhen running in dst/src host fairness mode, which is used as the\nround-robin weight when iterating through flows. The count of active\nbulk flows is updated whenever a flow changes state.\n\nThis has a peculiar interaction with the hash collision handling: when a\nhash collision occurs (after the set-associative hashing), the state of\nthe hash bucket is simply updated to match the new packet that collided,\nand if host fairness is enabled, that also means assigning new per-host\nstate to the flow. For this reason, the bulk flow counters of the\nhost(s) assigned to the flow are decremented, before new state is\nassigned (and the counters, which may not belong to the same host\nanymore, are incremented again).\n\nBack when this code was introduced, the host fairness mode was always\nenabled, so the decrement was unconditional. When the configuration\nflags were introduced the *increment* was made conditional, but\nthe *decrement* was not. Which of course can lead to a spurious\ndecrement (and associated wrap-around to U16_MAX).\n\nAFAICT, when host fairness is disabled, the decrement and wrap-around\nhappens as soon as a hash collision occurs (which is not that common in\nitself, due to the set-associative hashing). However, in most cases this\nis harmless, as the value is only used when host fairness mode is\nenabled. So in order to trigger an array overflow, sch_cake has to first\nbe configured with host fairness disabled, and while running in this\nmode, a hash collision has to occur to cause the overflow. Then, the\nqdisc has to be reconfigured to enable host fairness, which leads to the\narray out-of-bounds because the wrapped-around value is retained and\nused as an array index. It seems that syzbot managed to trigger this,\nwhich is quite impressive in its own right.\n\nThis patch fixes the issue by introducing the same conditional check on\ndecrement as is used on increment.\n\nThe original bug predates the upstreaming of cake, but the commit listed\nin the Fixes tag touched that code, meaning that this patch won't apply\nbefore that.(CVE-2024-46828)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: clean up our handling of refs == 0 in snapshot delete\n\nIn reada we BUG_ON(refs == 0), which could be unkind since we aren't\nholding a lock on the extent leaf and thus could get a transient\nincorrect answer. In walk_down_proc we also BUG_ON(refs == 0), which\ncould happen if we have extent tree corruption. Change that to return\n-EUCLEAN. In do_walk_down() we catch this case and handle it correctly,\nhowever we return -EIO, which -EUCLEAN is a more appropriate error code.\nFinally in walk_up_proc we have the same BUG_ON(refs == 0), so convert\nthat to proper error handling. Also adjust the error message so we can\nactually do something with the information.(CVE-2024-46840)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/intel: Limit the period on Haswell\n\nRunning the ltp test cve-2015-3290 concurrently reports the following\nwarnings.\n\nperfevents: irq loop stuck!\n WARNING: CPU: 31 PID: 32438 at arch/x86/events/intel/core.c:3174\n intel_pmu_handle_irq+0x285/0x370\n Call Trace:\n \n ? __warn+0xa4/0x220\n ? intel_pmu_handle_irq+0x285/0x370\n ? __report_bug+0x123/0x130\n ? intel_pmu_handle_irq+0x285/0x370\n ? __report_bug+0x123/0x130\n ? intel_pmu_handle_irq+0x285/0x370\n ? report_bug+0x3e/0xa0\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x18/0x50\n ? asm_exc_invalid_op+0x1a/0x20\n ? irq_work_claim+0x1e/0x40\n ? intel_pmu_handle_irq+0x285/0x370\n perf_event_nmi_handler+0x3d/0x60\n nmi_handle+0x104/0x330\n\nThanks to Thomas Gleixner's analysis, the issue is caused by the low\ninitial period (1) of the frequency estimation algorithm, which triggers\nthe defects of the HW, specifically erratum HSW11 and HSW143. (For the\ndetails, please refer https://lore.kernel.org/lkml/87plq9l5d2.ffs@tglx/)\n\nThe HSW11 requires a period larger than 100 for the INST_RETIRED.ALL\nevent, but the initial period in the freq mode is 1. The erratum is the\nsame as the BDM11, which has been supported in the kernel. A minimum\nperiod of 128 is enforced as well on HSW.\n\nHSW143 is regarding that the fixed counter 1 may overcount 32 with the\nHyper-Threading is enabled. However, based on the test, the hardware\nhas more issues than it tells. Besides the fixed counter 1, the message\n'interrupt took too long' can be observed on any counter which was armed\nwith a period < 32 and two events expired in the same NMI. A minimum\nperiod of 32 is enforced for the rest of the events.\nThe recommended workaround code of the HSW143 is not implemented.\nBecause it only addresses the issue for the fixed counter. It brings\nextra overhead through extra MSR writing. No related overcounting issue\nhas been reported so far.(CVE-2024-46848)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nnet: dpaa: Pad packets to ETH_ZLEN\n\nWhen sending packets under 60 bytes, up to three bytes of the buffer\nfollowing the data may be leaked. Avoid this by extending all packets to\nETH_ZLEN, ensuring nothing is leaked in the padding. This bug can be\nreproduced by running\n\n\t$ ping -s 11 destination(CVE-2024-46854)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_socket: fix sk refcount leaks\n\nWe must put 'sk' reference before returning.(CVE-2024-46855)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: pm: Fix uaf in __timer_delete_sync\n\nThere are two paths to access mptcp_pm_del_add_timer, result in a race\ncondition:\n\n CPU1\t\t\t\tCPU2\n ==== ====\n net_rx_action\n napi_poll netlink_sendmsg\n __napi_poll netlink_unicast\n process_backlog netlink_unicast_kernel\n __netif_receive_skb genl_rcv\n __netif_receive_skb_one_core netlink_rcv_skb\n NF_HOOK genl_rcv_msg\n ip_local_deliver_finish genl_family_rcv_msg\n ip_protocol_deliver_rcu genl_family_rcv_msg_doit\n tcp_v4_rcv mptcp_pm_nl_flush_addrs_doit\n tcp_v4_do_rcv mptcp_nl_remove_addrs_list\n tcp_rcv_established mptcp_pm_remove_addrs_and_subflows\n tcp_data_queue remove_anno_list_by_saddr\n mptcp_incoming_options mptcp_pm_del_add_timer\n mptcp_pm_del_add_timer kfree(entry)\n\nIn remove_anno_list_by_saddr(running on CPU2), after leaving the critical\nzone protected by \"pm.lock\", the entry will be released, which leads to the\noccurrence of uaf in the mptcp_pm_del_add_timer(running on CPU1).\n\nKeeping a reference to add_timer inside the lock, and calling\nsk_stop_timer_sync() with this reference, instead of \"entry->add_timer\".\n\nMove list_del(&entry->list) to mptcp_pm_del_add_timer and inside the pm lock,\ndo not directly access any members of the entry outside the pm lock, which\ncan avoid similar \"entry->x\" uaf.(CVE-2024-46858)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: stm32/cryp - call finalize with bh disabled\n\nThe finalize operation in interrupt mode produce a produces a spinlock\nrecursion warning. The reason is the fact that BH must be disabled\nduring this process.(CVE-2024-47658)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nspi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware\n\nIf the value of max_speed_hz is 0, it may cause a division by zero\nerror in hisi_calc_effective_speed().\nThe value of max_speed_hz is provided by firmware.\nFirmware is generally considered as a trusted domain. However, as\ndivision by zero errors can cause system failure, for defense measure,\nthe value of max_speed is validated here. So 0 is regarded as invalid\nand an error code is returned.(CVE-2024-47664)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: add bounds checking to ocfs2_xattr_find_entry()\n\nAdd a paranoia check to make sure it doesn't stray beyond valid memory\nregion containing ocfs2 xattr entries when scanning for a match. It will\nprevent out-of-bound access in case of crafted images.(CVE-2024-47670)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nUSB: usbtmc: prevent kernel-usb-infoleak\n\nThe syzbot reported a kernel-usb-infoleak in usbtmc_write,\nwe need to clear the structure before filling fields.(CVE-2024-47671)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: don't wait for tx queues if firmware is dead\n\nThere is a WARNING in iwl_trans_wait_tx_queues_empty() (that was\nrecently converted from just a message), that can be hit if we\nwait for TX queues to become empty after firmware died. Clearly,\nwe can't expect anything from the firmware after it's declared dead.\n\nDon't call iwl_trans_wait_tx_queues_empty() in this case. While it could\nbe a good idea to stop the flow earlier, the flush functions do some\nmaintenance work that is not related to the firmware, so keep that part\nof the code running even when the firmware is not running.\n\n[edit commit message](CVE-2024-47672)", "category":"general", "title":"Description" }, { "text":"An update for kernel is now available for openEuler-22.03-LTS-SP3.\n\nopenEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.", "category":"general", "title":"Topic" }, { "text":"High", "category":"general", "title":"Severity" }, { "text":"kernel", "category":"general", "title":"Affected Component" } ], "publisher":{ "issuing_authority":"openEuler security committee", "name":"openEuler", "namespace":"https://www.openeuler.org", "contact_details":"openeuler-security@openeuler.org", "category":"vendor" }, "references":[ { "summary":"openEuler-SA-2024-2255", "category":"self", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" }, { "summary":"CVE-2022-48893", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2022-48893&packageName=kernel" }, { "summary":"CVE-2023-52444", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2023-52444&packageName=kernel" }, { "summary":"CVE-2023-52463", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2023-52463&packageName=kernel" }, { "summary":"CVE-2023-52482", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2023-52482&packageName=kernel" }, { "summary":"CVE-2023-52612", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2023-52612&packageName=kernel" }, { "summary":"CVE-2023-52843", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2023-52843&packageName=kernel" }, { "summary":"CVE-2024-26820", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-26820&packageName=kernel" }, { "summary":"CVE-2024-36005", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-36005&packageName=kernel" }, { "summary":"CVE-2024-40998", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-40998&packageName=kernel" }, { "summary":"CVE-2024-42067", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-42067&packageName=kernel" }, { "summary":"CVE-2024-42283", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-42283&packageName=kernel" }, { "summary":"CVE-2024-42290", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-42290&packageName=kernel" }, { "summary":"CVE-2024-42306", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-42306&packageName=kernel" }, { "summary":"CVE-2024-42309", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-42309&packageName=kernel" }, { "summary":"CVE-2024-42313", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-42313&packageName=kernel" }, { "summary":"CVE-2024-42322", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-42322&packageName=kernel" }, { "summary":"CVE-2024-43823", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-43823&packageName=kernel" }, { "summary":"CVE-2024-43830", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-43830&packageName=kernel" }, { "summary":"CVE-2024-43840", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-43840&packageName=kernel" }, { "summary":"CVE-2024-43855", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-43855&packageName=kernel" }, { "summary":"CVE-2024-43872", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-43872&packageName=kernel" }, { "summary":"CVE-2024-43892", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-43892&packageName=kernel" }, { "summary":"CVE-2024-43893", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-43893&packageName=kernel" }, { "summary":"CVE-2024-44940", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-44940&packageName=kernel" }, { "summary":"CVE-2024-44954", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-44954&packageName=kernel" }, { "summary":"CVE-2024-44998", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-44998&packageName=kernel" }, { "summary":"CVE-2024-45006", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-45006&packageName=kernel" }, { "summary":"CVE-2024-45026", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-45026&packageName=kernel" }, { "summary":"CVE-2024-46676", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46676&packageName=kernel" }, { "summary":"CVE-2024-46719", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46719&packageName=kernel" }, { "summary":"CVE-2024-46754", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46754&packageName=kernel" }, { "summary":"CVE-2024-46770", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46770&packageName=kernel" }, { "summary":"CVE-2024-46795", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46795&packageName=kernel" }, { "summary":"CVE-2024-46819", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46819&packageName=kernel" }, { "summary":"CVE-2024-46826", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46826&packageName=kernel" }, { "summary":"CVE-2024-46828", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46828&packageName=kernel" }, { "summary":"CVE-2024-46840", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46840&packageName=kernel" }, { "summary":"CVE-2024-46848", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46848&packageName=kernel" }, { "summary":"CVE-2024-46854", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46854&packageName=kernel" }, { "summary":"CVE-2024-46855", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46855&packageName=kernel" }, { "summary":"CVE-2024-46858", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-46858&packageName=kernel" }, { "summary":"CVE-2024-47658", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-47658&packageName=kernel" }, { "summary":"CVE-2024-47664", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-47664&packageName=kernel" }, { "summary":"CVE-2024-47670", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-47670&packageName=kernel" }, { "summary":"CVE-2024-47671", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-47671&packageName=kernel" }, { "summary":"CVE-2024-47672", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-47672&packageName=kernel" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2022-48893" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2023-52444" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2023-52463" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2023-52482" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2023-52612" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2023-52843" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-26820" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-36005" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-40998" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-42067" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-42283" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-42290" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-42306" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-42309" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-42313" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-42322" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43823" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43830" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43840" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43855" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43872" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43892" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43893" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-44940" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-44954" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-44998" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-45006" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-45026" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46676" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46719" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46754" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46770" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46795" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46819" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46826" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46828" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46840" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46848" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46854" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46855" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46858" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-47658" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-47664" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-47670" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-47671" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-47672" }, { "summary":"openEuler-SA-2024-2255 vex file", "category":"self", "url":"https://repo.openeuler.org/security/data/csaf/advisories/2024/csaf-openeuler-sa-2024-2255.json" } ], "title":"An update for kernel is now available for openEuler-22.03-LTS-SP3", "tracking":{ "initial_release_date":"2024-10-18T20:21:15+08:00", "revision_history":[ { "date":"2024-10-18T20:21:15+08:00", "summary":"Initial", "number":"1.0.0" }, { "date":"2024-10-21T11:21:15+08:00", "summary":"final", "number":"2.0.0" } ], "generator":{ "date":"2024-10-21T11:21:15+08:00", "engine":{ "name":"openEuler CSAF Tool V1.0" } }, "current_release_date":"2024-10-21T11:21:15+08:00", "id":"openEuler-SA-2024-2255", "version":"2.0.0", "status":"final" } }, "product_tree":{ "branches":[ { "name":"openEuler", "category":"vendor", "branches":[ { "name":"openEuler", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openEuler-22.03-LTS-SP3", "name":"openEuler-22.03-LTS-SP3" }, "name":"openEuler-22.03-LTS-SP3", "category":"product_version" } ], "category":"product_name" }, { "name":"aarch64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"perf-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"perf-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"perf-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "name":"python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm" }, "name":"python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"src", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-5.10.0-232.0.0.134.oe2203sp3.src.rpm", "name":"kernel-5.10.0-232.0.0.134.oe2203sp3.src.rpm" }, "name":"kernel-5.10.0-232.0.0.134.oe2203sp3.src.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"x86_64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"perf-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"perf-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"perf-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "name":"python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm" }, "name":"python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "category":"product_version" } ], "category":"architecture" } ] } ], "relationships":[ { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"perf-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"perf-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "name":"python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-5.10.0-232.0.0.134.oe2203sp3.src.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "name":"kernel-5.10.0-232.0.0.134.oe2203sp3.src as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"perf-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"perf-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "name":"python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" } ] }, "vulnerabilities":[ { "cve":"CVE-2022-48893", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gt: Cleanup partial engine discovery failures\n\nIf we abort driver initialisation in the middle of gt/engine discovery,\nsome engines will be fully setup and some not. Those incompletely setup\nengines only have 'engine->release == NULL' and so will leak any of the\ncommon objects allocated.\n\nv2:\n - Drop the destroy_pinned_context() helper for now. It's not really\n worth it with just a single callsite at the moment. (Janusz)", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2022-48893" }, { "cve":"CVE-2023-52444", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to avoid dirent corruption\n\nAs Al reported in link[1]:\n\nf2fs_rename()\n...\n\tif (old_dir != new_dir && !whiteout)\n\t\tf2fs_set_link(old_inode, old_dir_entry,\n\t\t\t\t\told_dir_page, new_dir);\n\telse\n\t\tf2fs_put_page(old_dir_page, 0);\n\nYou want correct inumber in the \"..\" link. And cross-directory\nrename does move the source to new parent, even if you'd been asked\nto leave a whiteout in the old place.\n\n[1] https://lore.kernel.org/all/20231017055040.GN800259@ZenIV/\n\nWith below testcase, it may cause dirent corruption, due to it missed\nto call f2fs_set_link() to update \"..\" link to new directory.\n- mkdir -p dir/foo\n- renameat2 -w dir/foo bar\n\n[ASSERT] (__chk_dots_dentries:1421) --> Bad inode number[0x4] for '..', parent parent ino is [0x3]\n[FSCK] other corrupted bugs [Fail]", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2023-52444" }, { "cve":"CVE-2023-52463", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nefivarfs: force RO when remounting if SetVariable is not supported\n\nIf SetVariable at runtime is not supported by the firmware we never assign\na callback for that function. At the same time mount the efivarfs as\nRO so no one can call that. However, we never check the permission flags\nwhen someone remounts the filesystem as RW. As a result this leads to a\ncrash looking like this:\n\n$ mount -o remount,rw /sys/firmware/efi/efivars\n$ efi-updatevar -f PK.auth PK\n\n[ 303.279166] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n[ 303.280482] Mem abort info:\n[ 303.280854] ESR = 0x0000000086000004\n[ 303.281338] EC = 0x21: IABT (current EL), IL = 32 bits\n[ 303.282016] SET = 0, FnV = 0\n[ 303.282414] EA = 0, S1PTW = 0\n[ 303.282821] FSC = 0x04: level 0 translation fault\n[ 303.283771] user pgtable: 4k pages, 48-bit VAs, pgdp=000000004258c000\n[ 303.284913] [0000000000000000] pgd=0000000000000000, p4d=0000000000000000\n[ 303.286076] Internal error: Oops: 0000000086000004 [#1] PREEMPT SMP\n[ 303.286936] Modules linked in: qrtr tpm_tis tpm_tis_core crct10dif_ce arm_smccc_trng rng_core drm fuse ip_tables x_tables ipv6\n[ 303.288586] CPU: 1 PID: 755 Comm: efi-updatevar Not tainted 6.3.0-rc1-00108-gc7d0c4695c68 #1\n[ 303.289748] Hardware name: Unknown Unknown Product/Unknown Product, BIOS 2023.04-00627-g88336918701d 04/01/2023\n[ 303.291150] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 303.292123] pc : 0x0\n[ 303.292443] lr : efivar_set_variable_locked+0x74/0xec\n[ 303.293156] sp : ffff800008673c10\n[ 303.293619] x29: ffff800008673c10 x28: ffff0000037e8000 x27: 0000000000000000\n[ 303.294592] x26: 0000000000000800 x25: ffff000002467400 x24: 0000000000000027\n[ 303.295572] x23: ffffd49ea9832000 x22: ffff0000020c9800 x21: ffff000002467000\n[ 303.296566] x20: 0000000000000001 x19: 00000000000007fc x18: 0000000000000000\n[ 303.297531] x17: 0000000000000000 x16: 0000000000000000 x15: 0000aaaac807ab54\n[ 303.298495] x14: ed37489f673633c0 x13: 71c45c606de13f80 x12: 47464259e219acf4\n[ 303.299453] x11: ffff000002af7b01 x10: 0000000000000003 x9 : 0000000000000002\n[ 303.300431] x8 : 0000000000000010 x7 : ffffd49ea8973230 x6 : 0000000000a85201\n[ 303.301412] x5 : 0000000000000000 x4 : ffff0000020c9800 x3 : 00000000000007fc\n[ 303.302370] x2 : 0000000000000027 x1 : ffff000002467400 x0 : ffff000002467000\n[ 303.303341] Call trace:\n[ 303.303679] 0x0\n[ 303.303938] efivar_entry_set_get_size+0x98/0x16c\n[ 303.304585] efivarfs_file_write+0xd0/0x1a4\n[ 303.305148] vfs_write+0xc4/0x2e4\n[ 303.305601] ksys_write+0x70/0x104\n[ 303.306073] __arm64_sys_write+0x1c/0x28\n[ 303.306622] invoke_syscall+0x48/0x114\n[ 303.307156] el0_svc_common.constprop.0+0x44/0xec\n[ 303.307803] do_el0_svc+0x38/0x98\n[ 303.308268] el0_svc+0x2c/0x84\n[ 303.308702] el0t_64_sync_handler+0xf4/0x120\n[ 303.309293] el0t_64_sync+0x190/0x194\n[ 303.309794] Code: ???????? ???????? ???????? ???????? (????????)\n[ 303.310612] ---[ end trace 0000000000000000 ]---\n\nFix this by adding a .reconfigure() function to the fs operations which\nwe can use to check the requested flags and deny anything that's not RO\nif the firmware doesn't implement SetVariable at runtime.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2023-52463" }, { "cve":"CVE-2023-52482", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nx86/srso: Add SRSO mitigation for Hygon processors\n\nAdd mitigation for the speculative return stack overflow vulnerability\nwhich exists on Hygon processors too.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.9, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"low", "category":"impact" } ], "title":"CVE-2023-52482" }, { "cve":"CVE-2023-52612", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: scomp - fix req->dst buffer overflow\n\nThe req->dst buffer size should be checked before copying from the\nscomp_scratch->dst to avoid req->dst buffer overflow problem.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":6.0, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2023-52612" }, { "cve":"CVE-2023-52843", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nllc: verify mac len before reading mac header\n\nLLC reads the mac header with eth_hdr without verifying that the skb\nhas an Ethernet header.\n\nSyzbot was able to enter llc_rcv on a tun device. Tun can insert\npackets without mac len and with user configurable skb->protocol\n(passing a tun_pi header when not configuring IFF_NO_PI).\n\n BUG: KMSAN: uninit-value in llc_station_ac_send_test_r net/llc/llc_station.c:81 [inline]\n BUG: KMSAN: uninit-value in llc_station_rcv+0x6fb/0x1290 net/llc/llc_station.c:111\n llc_station_ac_send_test_r net/llc/llc_station.c:81 [inline]\n llc_station_rcv+0x6fb/0x1290 net/llc/llc_station.c:111\n llc_rcv+0xc5d/0x14a0 net/llc/llc_input.c:218\n __netif_receive_skb_one_core net/core/dev.c:5523 [inline]\n __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5637\n netif_receive_skb_internal net/core/dev.c:5723 [inline]\n netif_receive_skb+0x58/0x660 net/core/dev.c:5782\n tun_rx_batched+0x3ee/0x980 drivers/net/tun.c:1555\n tun_get_user+0x54c5/0x69c0 drivers/net/tun.c:2002\n\nAdd a mac_len test before all three eth_hdr(skb) calls under net/llc.\n\nThere are further uses in include/net/llc_pdu.h. All these are\nprotected by a test skb->protocol == ETH_P_802_2. Which does not\nprotect against this tun scenario.\n\nBut the mac_len test added in this patch in llc_fixup_skb will\nindirectly protect those too. That is called from llc_rcv before any\nother LLC code.\n\nIt is tempting to just add a blanket mac_len check in llc_rcv, but\nnot sure whether that could break valid LLC paths that do not assume\nan Ethernet header. 802.2 LLC may be used on top of non-802.3\nprotocols in principle. The below referenced commit shows that used\nto, on top of Token Ring.\n\nAt least one of the three eth_hdr uses goes back to before the start\nof git history. But the one that syzbot exercises is introduced in\nthis commit. That commit is old enough (2008), that effectively all\nstable kernels should receive this.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2023-52843" }, { "cve":"CVE-2024-26820", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nhv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed\n\nIf hv_netvsc driver is unloaded and reloaded, the NET_DEVICE_REGISTER\nhandler cannot perform VF register successfully as the register call\nis received before netvsc_probe is finished. This is because we\nregister register_netdevice_notifier() very early( even before\nvmbus_driver_register()).\nTo fix this, we try to register each such matching VF( if it is visible\nas a netdevice) at the end of netvsc_probe.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":4.4, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-26820" }, { "cve":"CVE-2024-36005", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: honor table dormant flag from netdev release event path\n\nCheck for table dormant flag otherwise netdev release event path tries\nto unregister an already unregistered hook.\n\n[524854.857999] ------------[ cut here ]------------\n[524854.858010] WARNING: CPU: 0 PID: 3386599 at net/netfilter/core.c:501 __nf_unregister_net_hook+0x21a/0x260\n[...]\n[524854.858848] CPU: 0 PID: 3386599 Comm: kworker/u32:2 Not tainted 6.9.0-rc3+ #365\n[524854.858869] Workqueue: netns cleanup_net\n[524854.858886] RIP: 0010:__nf_unregister_net_hook+0x21a/0x260\n[524854.858903] Code: 24 e8 aa 73 83 ff 48 63 43 1c 83 f8 01 0f 85 3d ff ff ff e8 98 d1 f0 ff 48 8b 3c 24 e8 8f 73 83 ff 48 63 43 1c e9 26 ff ff ff <0f> 0b 48 83 c4 18 48 c7 c7 00 68 e9 82 5b 5d 41 5c 41 5d 41 5e 41\n[524854.858914] RSP: 0018:ffff8881e36d79e0 EFLAGS: 00010246\n[524854.858926] RAX: 0000000000000000 RBX: ffff8881339ae790 RCX: ffffffff81ba524a\n[524854.858936] RDX: dffffc0000000000 RSI: 0000000000000008 RDI: ffff8881c8a16438\n[524854.858945] RBP: ffff8881c8a16438 R08: 0000000000000001 R09: ffffed103c6daf34\n[524854.858954] R10: ffff8881e36d79a7 R11: 0000000000000000 R12: 0000000000000005\n[524854.858962] R13: ffff8881c8a16000 R14: 0000000000000000 R15: ffff8881351b5a00\n[524854.858971] FS: 0000000000000000(0000) GS:ffff888390800000(0000) knlGS:0000000000000000\n[524854.858982] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[524854.858991] CR2: 00007fc9be0f16f4 CR3: 00000001437cc004 CR4: 00000000001706f0\n[524854.859000] Call Trace:\n[524854.859006] \n[524854.859013] ? __warn+0x9f/0x1a0\n[524854.859027] ? __nf_unregister_net_hook+0x21a/0x260\n[524854.859044] ? report_bug+0x1b1/0x1e0\n[524854.859060] ? handle_bug+0x3c/0x70\n[524854.859071] ? exc_invalid_op+0x17/0x40\n[524854.859083] ? asm_exc_invalid_op+0x1a/0x20\n[524854.859100] ? __nf_unregister_net_hook+0x6a/0x260\n[524854.859116] ? __nf_unregister_net_hook+0x21a/0x260\n[524854.859135] nf_tables_netdev_event+0x337/0x390 [nf_tables]\n[524854.859304] ? __pfx_nf_tables_netdev_event+0x10/0x10 [nf_tables]\n[524854.859461] ? packet_notifier+0xb3/0x360\n[524854.859476] ? _raw_spin_unlock_irqrestore+0x11/0x40\n[524854.859489] ? dcbnl_netdevice_event+0x35/0x140\n[524854.859507] ? __pfx_nf_tables_netdev_event+0x10/0x10 [nf_tables]\n[524854.859661] notifier_call_chain+0x7d/0x140\n[524854.859677] unregister_netdevice_many_notify+0x5e1/0xae0", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-36005" }, { "cve":"CVE-2024-40998", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super()\n\nIn the following concurrency we will access the uninitialized rs->lock:\n\next4_fill_super\n ext4_register_sysfs\n // sysfs registered msg_ratelimit_interval_ms\n // Other processes modify rs->interval to\n // non-zero via msg_ratelimit_interval_ms\n ext4_orphan_cleanup\n ext4_msg(sb, KERN_INFO, \"Errors on filesystem, \"\n __ext4_msg\n ___ratelimit(&(EXT4_SB(sb)->s_msg_ratelimit_state)\n if (!rs->interval) // do nothing if interval is 0\n return 1;\n raw_spin_trylock_irqsave(&rs->lock, flags)\n raw_spin_trylock(lock)\n _raw_spin_trylock\n __raw_spin_trylock\n spin_acquire(&lock->dep_map, 0, 1, _RET_IP_)\n lock_acquire\n __lock_acquire\n register_lock_class\n assign_lock_key\n dump_stack();\n ratelimit_state_init(&sbi->s_msg_ratelimit_state, 5 * HZ, 10);\n raw_spin_lock_init(&rs->lock);\n // init rs->lock here\n\nand get the following dump_stack:\n\n=========================================================\nINFO: trying to register non-static key.\nThe code is fine but needs lockdep annotation, or maybe\nyou didn't initialize this object before use?\nturning off the locking correctness validator.\nCPU: 12 PID: 753 Comm: mount Tainted: G E 6.7.0-rc6-next-20231222 #504\n[...]\nCall Trace:\n dump_stack_lvl+0xc5/0x170\n dump_stack+0x18/0x30\n register_lock_class+0x740/0x7c0\n __lock_acquire+0x69/0x13a0\n lock_acquire+0x120/0x450\n _raw_spin_trylock+0x98/0xd0\n ___ratelimit+0xf6/0x220\n __ext4_msg+0x7f/0x160 [ext4]\n ext4_orphan_cleanup+0x665/0x740 [ext4]\n __ext4_fill_super+0x21ea/0x2b10 [ext4]\n ext4_fill_super+0x14d/0x360 [ext4]\n[...]\n=========================================================\n\nNormally interval is 0 until s_msg_ratelimit_state is initialized, so\n___ratelimit() does nothing. But registering sysfs precedes initializing\nrs->lock, so it is possible to change rs->interval to a non-zero value\nvia the msg_ratelimit_interval_ms interface of sysfs while rs->lock is\nuninitialized, and then a call to ext4_msg triggers the problem by\naccessing an uninitialized rs->lock. Therefore register sysfs after all\ninitializations are complete to avoid such problems.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.9, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Low", "category":"impact" } ], "title":"CVE-2024-40998" }, { "cve":"CVE-2024-42067", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Take return from set_memory_rox() into account with bpf_jit_binary_lock_ro()\n\nset_memory_rox() can fail, leaving memory unprotected.\n\nCheck return and bail out when bpf_jit_binary_lock_ro() returns\nan error.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-42067" }, { "cve":"CVE-2024-42283", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:net: nexthop: Initialize all fields in dumped nexthopsstruct nexthop_grp contains two reserved fields that are not initialized bynla_put_nh_group(), and carry garbage. This can be observed e.g. withstrace (edited for clarity): # ip nexthop add id 1 dev lo # ip nexthop add id 101 group 1 # strace -e recvmsg ip nexthop get id 101 ... recvmsg(... [{nla_len=12, nla_type=NHA_GROUP}, [{id=1, weight=0, resvd1=0x69, resvd2=0x67}]] ...) = 52The fields are reserved and therefore not currently used. But as they are, theyleak kernel memory, and the fact they are not just zero complicates repurposingof the fields for new ends. Initialize the full structure.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-42283" }, { "cve":"CVE-2024-42290", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/imx-irqsteer: Handle runtime power management correctly\n\nThe power domain is automatically activated from clk_prepare(). However, on\ncertain platforms like i.MX8QM and i.MX8QXP, the power-on handling invokes\nsleeping functions, which triggers the 'scheduling while atomic' bug in the\ncontext switch path during device probing:\n\n BUG: scheduling while atomic: kworker/u13:1/48/0x00000002\n Call trace:\n __schedule_bug+0x54/0x6c\n __schedule+0x7f0/0xa94\n schedule+0x5c/0xc4\n schedule_preempt_disabled+0x24/0x40\n __mutex_lock.constprop.0+0x2c0/0x540\n __mutex_lock_slowpath+0x14/0x20\n mutex_lock+0x48/0x54\n clk_prepare_lock+0x44/0xa0\n clk_prepare+0x20/0x44\n imx_irqsteer_resume+0x28/0xe0\n pm_generic_runtime_resume+0x2c/0x44\n __genpd_runtime_resume+0x30/0x80\n genpd_runtime_resume+0xc8/0x2c0\n __rpm_callback+0x48/0x1d8\n rpm_callback+0x6c/0x78\n rpm_resume+0x490/0x6b4\n __pm_runtime_resume+0x50/0x94\n irq_chip_pm_get+0x2c/0xa0\n __irq_do_set_handler+0x178/0x24c\n irq_set_chained_handler_and_data+0x60/0xa4\n mxc_gpio_probe+0x160/0x4b0\n\nCure this by implementing the irq_bus_lock/sync_unlock() interrupt chip\ncallbacks and handle power management in them as they are invoked from\nnon-atomic context.\n\n[ tglx: Rewrote change log, added Fixes tag ]", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.9, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Low", "category":"impact" } ], "title":"CVE-2024-42290" }, { "cve":"CVE-2024-42306", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Avoid using corrupted block bitmap buffer\n\nWhen the filesystem block bitmap is corrupted, we detect the corruption\nwhile loading the bitmap and fail the allocation with error. However the\nnext allocation from the same bitmap will notice the bitmap buffer is\nalready loaded and tries to allocate from the bitmap with mixed results\n(depending on the exact nature of the bitmap corruption). Fix the\nproblem by using BH_verified bit to indicate whether the bitmap is valid\nor not.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.9, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Low", "category":"impact" } ], "title":"CVE-2024-42306" }, { "cve":"CVE-2024-42309", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modesIn psb_intel_lvds_get_modes(), the return value of drm_mode_duplicate() isassigned to mode, which will lead to a possible NULL pointer dereferenceon failure of drm_mode_duplicate(). Add a check to avoid npd.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-42309" }, { "cve":"CVE-2024-42313", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:media: venus: fix use after free in vdec_closeThere appears to be a possible use after free with vdec_close().The firmware will add buffer release work to the work queue throughHFI callbacks as a normal part of decoding. Randomly closing thedecoder device from userspace during normal decoding can incura read after free for inst.Fix it by cancelling the work in vdec_close.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-42313" }, { "cve":"CVE-2024-42322", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: properly dereference pe in ip_vs_add_service\n\nUse pe directly to resolve sparse warning:\n\n net/netfilter/ipvs/ip_vs_ctl.c:1471:27: warning: dereference of noderef expression", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-42322" }, { "cve":"CVE-2024-43823", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs()If IORESOURCE_MEM is not provided in Device Tree due toany error, resource_list_first_type() will return NULL andpci_parse_request_of_pci_ranges() will just emit a warning.This will cause a NULL pointer dereference. Fix this bug by adding NULLreturn check.Found by Linux Verification Center (linuxtesting.org) with SVACE.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.9, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Low", "category":"impact" } ], "title":"CVE-2024-43823" }, { "cve":"CVE-2024-43830", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nleds: trigger: Unregister sysfs attributes before calling deactivate()\n\nTriggers which have trigger specific sysfs attributes typically store\nrelated data in trigger-data allocated by the activate() callback and\nfreed by the deactivate() callback.\n\nCalling device_remove_groups() after calling deactivate() leaves a window\nwhere the sysfs attributes show/store functions could be called after\ndeactivation and then operate on the just freed trigger-data.\n\nMove the device_remove_groups() call to before deactivate() to close\nthis race window.\n\nThis also makes the deactivation path properly do things in reverse order\nof the activation path which calls the activate() callback before calling\ndevice_add_groups().", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.9, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Low", "category":"impact" } ], "title":"CVE-2024-43830" }, { "cve":"CVE-2024-43840", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, arm64: Fix trampoline for BPF_TRAMP_F_CALL_ORIG\n\nWhen BPF_TRAMP_F_CALL_ORIG is set, the trampoline calls\n__bpf_tramp_enter() and __bpf_tramp_exit() functions, passing them\nthe struct bpf_tramp_image *im pointer as an argument in R0.\n\nThe trampoline generation code uses emit_addr_mov_i64() to emit\ninstructions for moving the bpf_tramp_image address into R0, but\nemit_addr_mov_i64() assumes the address to be in the vmalloc() space\nand uses only 48 bits. Because bpf_tramp_image is allocated using\nkzalloc(), its address can use more than 48-bits, in this case the\ntrampoline will pass an invalid address to __bpf_tramp_enter/exit()\ncausing a kernel crash.\n\nFix this by using emit_a64_mov_i64() in place of emit_addr_mov_i64()\nas it can work with addresses that are greater than 48-bits.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.9, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Low", "category":"impact" } ], "title":"CVE-2024-43840" }, { "cve":"CVE-2024-43855", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nmd: fix deadlock between mddev_suspend and flush bio\n\nDeadlock occurs when mddev is being suspended while some flush bio is in\nprogress. It is a complex issue.\n\nT1. the first flush is at the ending stage, it clears 'mddev->flush_bio'\n and tries to submit data, but is blocked because mddev is suspended\n by T4.\nT2. the second flush sets 'mddev->flush_bio', and attempts to queue\n md_submit_flush_data(), which is already running (T1) and won't\n execute again if on the same CPU as T1.\nT3. the third flush inc active_io and tries to flush, but is blocked because\n 'mddev->flush_bio' is not NULL (set by T2).\nT4. mddev_suspend() is called and waits for active_io dec to 0 which is inc\n by T3.\n\n T1\t\tT2\t\tT3\t\tT4\n (flush 1)\t(flush 2)\t(third 3)\t(suspend)\n md_submit_flush_data\n mddev->flush_bio = NULL;\n .\n .\t \tmd_flush_request\n .\t \t mddev->flush_bio = bio\n .\t \t queue submit_flushes\n .\t\t .\n .\t\t .\t\tmd_handle_request\n .\t\t .\t\t active_io + 1\n .\t\t .\t\t md_flush_request\n .\t\t .\t\t wait !mddev->flush_bio\n .\t\t .\n .\t\t .\t\t\t\tmddev_suspend\n .\t\t .\t\t\t\t wait !active_io\n .\t\t .\n .\t\t submit_flushes\n .\t\t queue_work md_submit_flush_data\n .\t\t //md_submit_flush_data is already running (T1)\n .\n md_handle_request\n wait resume\n\nThe root issue is non-atomic inc/dec of active_io during flush process.\nactive_io is dec before md_submit_flush_data is queued, and inc soon\nafter md_submit_flush_data() run.\n md_flush_request\n active_io + 1\n submit_flushes\n active_io - 1\n md_submit_flush_data\n md_handle_request\n active_io + 1\n make_request\n active_io - 1\n\nIf active_io is dec after md_handle_request() instead of within\nsubmit_flushes(), make_request() can be called directly intead of\nmd_handle_request() in md_submit_flush_data(), and active_io will\nonly inc and dec once in the whole flush process. Deadlock will be\nfixed.\n\nAdditionally, the only difference between fixing the issue and before is\nthat there is no return error handling of make_request(). But after\nprevious patch cleaned md_write_start(), make_requst() only return error\nin raid5_make_request() by dm-raid, see commit 41425f96d7aa (\"dm-raid456,\nmd/raid456: fix a deadlock for dm-raid456 while io concurrent with\nreshape)\". Since dm always splits data and flush operation into two\nseparate io, io size of flush submitted by dm always is 0, make_request()\nwill not be called in md_submit_flush_data(). To prevent future\nmodifications from introducing issues, add WARN_ON to ensure\nmake_request() no error is returned in this context.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-43855" }, { "cve":"CVE-2024-43872", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix soft lockup under heavy CEQE load\n\nCEQEs are handled in interrupt handler currently. This may cause the\nCPU core staying in interrupt context too long and lead to soft lockup\nunder heavy load.\n\nHandle CEQEs in BH workqueue and set an upper limit for the number of\nCEQE handled by a single call of work handler.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-43872" }, { "cve":"CVE-2024-43892", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:memcg: protect concurrent access to mem_cgroup_idrCommit 73f576c04b94 ( mm: memcontrol: fix cgroup creation failure aftermany small jobs ) decoupled the memcg IDs from the CSS ID space to fix thecgroup creation failures. It introduced IDR to maintain the memcg IDspace. The IDR depends on external synchronization mechanisms formodifications. For the mem_cgroup_idr, the idr_alloc() and idr_replace()happen within css callback and thus are protected through cgroup_mutexfrom concurrent modifications. However idr_remove() for mem_cgroup_idrwas not protected against concurrency and can be run concurrently fordifferent memcgs when they hit their refcnt to zero. Fix that.We have been seeing list_lru based kernel crashes at a low frequency inour fleet for a long time. These crashes were in different part oflist_lru code including list_lru_add(), list_lru_del() and reparentingcode. Upon further inspection, it looked like for a given object (dentryand inode), the super_block s list_lru didn t have list_lru_one for thememcg of that object. The initial suspicions were either the object isnot allocated through kmem_cache_alloc_lru() or somehowmemcg_list_lru_alloc() failed to allocate list_lru_one() for a memcg butreturned success. No evidence were found for these cases.Looking more deeply, we started seeing situations where valid memcg s idis not present in mem_cgroup_idr and in some cases multiple valid memcgshave same id and mem_cgroup_idr is pointing to one of them. So, the mostreasonable explanation is that these situations can happen due to racebetween multiple idr_remove() calls or race betweenidr_alloc()/idr_replace() and idr_remove(). These races are causingmultiple memcgs to acquire the same ID and then offlining of one of themwould cleanup list_lrus on the system for all of them. Later access fromother memcgs to the list_lru cause crashes due to missing list_lru_one.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":4.7, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-43892" }, { "cve":"CVE-2024-43893", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:serial: core: check uartclk for zero to avoid divide by zeroCalling ioctl TIOCSSERIAL with an invalid baud_base canresult in uartclk being zero, which will result in adivide by zero error in uart_get_divisor(). The check foruartclk being zero in uart_set_info() needs to be donebefore other settings are made as subsequent calls toioctl TIOCSSERIAL for the same port would be impacted ifthe uartclk check was done where uartclk gets set.Oops: divide error: 0000 PREEMPT SMP KASAN PTIRIP: 0010:uart_get_divisor (drivers/tty/serial/serial_core.c:580)Call Trace: serial8250_get_divisor (drivers/tty/serial/8250/8250_port.c:2576 drivers/tty/serial/8250/8250_port.c:2589)serial8250_do_set_termios (drivers/tty/serial/8250/8250_port.c:502 drivers/tty/serial/8250/8250_port.c:2741)serial8250_set_termios (drivers/tty/serial/8250/8250_port.c:2862)uart_change_line_settings (./include/linux/spinlock.h:376 ./include/linux/serial_core.h:608 drivers/tty/serial/serial_core.c:222)uart_port_startup (drivers/tty/serial/serial_core.c:342)uart_startup (drivers/tty/serial/serial_core.c:368)uart_set_info (drivers/tty/serial/serial_core.c:1034)uart_set_info_user (drivers/tty/serial/serial_core.c:1059)tty_set_serial (drivers/tty/tty_io.c:2637)tty_ioctl (drivers/tty/tty_io.c:2647 drivers/tty/tty_io.c:2791)__x64_sys_ioctl (fs/ioctl.c:52 fs/ioctl.c:907 fs/ioctl.c:893 fs/ioctl.c:893)do_syscall_64 (arch/x86/entry/common.c:52 (discriminator 1) arch/x86/entry/common.c:83 (discriminator 1))entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)Rule: add", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-43893" }, { "cve":"CVE-2024-44940", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nfou: remove warn in gue_gro_receive on unsupported protocol\n\nDrop the WARN_ON_ONCE inn gue_gro_receive if the encapsulated type is\nnot known or does not have a GRO handler.\n\nSuch a packet is easily constructed. Syzbot generates them and sets\noff this warning.\n\nRemove the warning as it is expected and not actionable.\n\nThe warning was previously reduced from WARN_ON to WARN_ON_ONCE in\ncommit 270136613bf7 (\"fou: Do WARN_ON_ONCE in gue_gro_receive for bad\nproto callbacks\").", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-44940" }, { "cve":"CVE-2024-44954", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: line6: Fix racy access to midibuf\n\nThere can be concurrent accesses to line6 midibuf from both the URB\ncompletion callback and the rawmidi API access. This could be a cause\nof KMSAN warning triggered by syzkaller below (so put as reported-by\nhere).\n\nThis patch protects the midibuf call of the former code path with a\nspinlock for avoiding the possible races.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":4.7, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-44954" }, { "cve":"CVE-2024-44998", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\natm: idt77252: prevent use after free in dequeue_rx()\n\nWe can't dereference \"skb\" after calling vcc->push() because the skb\nis released.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-44998" }, { "cve":"CVE-2024-45006", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nxhci: Fix Panther point NULL pointer deref at full-speed re-enumeration\n\nre-enumerating full-speed devices after a failed address device command\ncan trigger a NULL pointer dereference.\n\nFull-speed devices may need to reconfigure the endpoint 0 Max Packet Size\nvalue during enumeration. Usb core calls usb_ep0_reinit() in this case,\nwhich ends up calling xhci_configure_endpoint().\n\nOn Panther point xHC the xhci_configure_endpoint() function will\nadditionally check and reserve bandwidth in software. Other hosts do\nthis in hardware\n\nIf xHC address device command fails then a new xhci_virt_device structure\nis allocated as part of re-enabling the slot, but the bandwidth table\npointers are not set up properly here.\nThis triggers the NULL pointer dereference the next time usb_ep0_reinit()\nis called and xhci_configure_endpoint() tries to check and reserve\nbandwidth\n\n[46710.713538] usb 3-1: new full-speed USB device number 5 using xhci_hcd\n[46710.713699] usb 3-1: Device not responding to setup address.\n[46710.917684] usb 3-1: Device not responding to setup address.\n[46711.125536] usb 3-1: device not accepting address 5, error -71\n[46711.125594] BUG: kernel NULL pointer dereference, address: 0000000000000008\n[46711.125600] #PF: supervisor read access in kernel mode\n[46711.125603] #PF: error_code(0x0000) - not-present page\n[46711.125606] PGD 0 P4D 0\n[46711.125610] Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n[46711.125615] CPU: 1 PID: 25760 Comm: kworker/1:2 Not tainted 6.10.3_2 #1\n[46711.125620] Hardware name: Gigabyte Technology Co., Ltd.\n[46711.125623] Workqueue: usb_hub_wq hub_event [usbcore]\n[46711.125668] RIP: 0010:xhci_reserve_bandwidth (drivers/usb/host/xhci.c\n\nFix this by making sure bandwidth table pointers are set up correctly\nafter a failed address device command, and additionally by avoiding\nchecking for bandwidth in cases like this where no actual endpoints are\nadded or removed, i.e. only context for default control endpoint 0 is\nevaluated.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-45006" }, { "cve":"CVE-2024-45026", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dasd: fix error recovery leading to data corruption on ESE devices\n\nExtent Space Efficient (ESE) or thin provisioned volumes need to be\nformatted on demand during usual IO processing.\n\nThe dasd_ese_needs_format function checks for error codes that signal\nthe non existence of a proper track format.\n\nThe check for incorrect length is to imprecise since other error cases\nleading to transport of insufficient data also have this flag set.\nThis might lead to data corruption in certain error cases for example\nduring a storage server warmstart.\n\nFix by removing the check for incorrect length and replacing by\nexplicitly checking for invalid track format in transport mode.\n\nAlso remove the check for file protected since this is not a valid\nESE handling case.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-45026" }, { "cve":"CVE-2024-46676", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: pn533: Add poll mod list filling check\n\nIn case of im_protocols value is 1 and tm_protocols value is 0 this\ncombination successfully passes the check\n'if (!im_protocols && !tm_protocols)' in the nfc_start_poll().\nBut then after pn533_poll_create_mod_list() call in pn533_start_poll()\npoll mod list will remain empty and dev->poll_mod_count will remain 0\nwhich lead to division by zero.\n\nNormally no im protocol has value 1 in the mask, so this combination is\nnot expected by driver. But these protocol values actually come from\nuserspace via Netlink interface (NFC_CMD_START_POLL operation). So a\nbroken or malicious program may pass a message containing a \"bad\"\ncombination of protocol parameter values so that dev->poll_mod_count\nis not incremented inside pn533_poll_create_mod_list(), thus leading\nto division by zero.\nCall trace looks like:\nnfc_genl_start_poll()\n nfc_start_poll()\n ->start_poll()\n pn533_start_poll()\n\nAdd poll mod list filling check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-46676" }, { "cve":"CVE-2024-46719", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Fix null pointer dereference in trace\n\nucsi_register_altmode checks IS_ERR for the alt pointer and treats\nNULL as valid. When CONFIG_TYPEC_DP_ALTMODE is not enabled,\nucsi_register_displayport returns NULL which causes a NULL pointer\ndereference in trace. Rather than return NULL, call\ntypec_port_register_altmode to register DisplayPort alternate mode\nas a non-controllable mode when CONFIG_TYPEC_DP_ALTMODE is not enabled.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-46719" }, { "cve":"CVE-2024-46754", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Remove tst_run from lwt_seg6local_prog_ops.\n\nThe syzbot reported that the lwt_seg6 related BPF ops can be invoked\nvia bpf_test_run() without without entering input_action_end_bpf()\nfirst.\n\nMartin KaFai Lau said that self test for BPF_PROG_TYPE_LWT_SEG6LOCAL\nprobably didn't work since it was introduced in commit 04d4b274e2a\n(\"ipv6: sr: Add seg6local action End.BPF\"). The reason is that the\nper-CPU variable seg6_bpf_srh_states::srh is never assigned in the self\ntest case but each BPF function expects it.\n\nRemove test_run for BPF_PROG_TYPE_LWT_SEG6LOCAL.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":4.4, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-46754" }, { "cve":"CVE-2024-46770", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nice: Add netif_device_attach/detach into PF reset flow\n\nEthtool callbacks can be executed while reset is in progress and try to\naccess deleted resources, e.g. getting coalesce settings can result in a\nNULL pointer dereference seen below.\n\nReproduction steps:\nOnce the driver is fully initialized, trigger reset:\n\t# echo 1 > /sys/class/net//device/reset\nwhen reset is in progress try to get coalesce settings using ethtool:\n\t# ethtool -c \n\nBUG: kernel NULL pointer dereference, address: 0000000000000020\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] PREEMPT SMP PTI\nCPU: 11 PID: 19713 Comm: ethtool Tainted: G S 6.10.0-rc7+ #7\nRIP: 0010:ice_get_q_coalesce+0x2e/0xa0 [ice]\nRSP: 0018:ffffbab1e9bcf6a8 EFLAGS: 00010206\nRAX: 000000000000000c RBX: ffff94512305b028 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: ffff9451c3f2e588 RDI: ffff9451c3f2e588\nRBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\nR10: ffff9451c3f2e580 R11: 000000000000001f R12: ffff945121fa9000\nR13: ffffbab1e9bcf760 R14: 0000000000000013 R15: ffffffff9e65dd40\nFS: 00007faee5fbe740(0000) GS:ffff94546fd80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000020 CR3: 0000000106c2e005 CR4: 00000000001706f0\nCall Trace:\n\nice_get_coalesce+0x17/0x30 [ice]\ncoalesce_prepare_data+0x61/0x80\nethnl_default_doit+0xde/0x340\ngenl_family_rcv_msg_doit+0xf2/0x150\ngenl_rcv_msg+0x1b3/0x2c0\nnetlink_rcv_skb+0x5b/0x110\ngenl_rcv+0x28/0x40\nnetlink_unicast+0x19c/0x290\nnetlink_sendmsg+0x222/0x490\n__sys_sendto+0x1df/0x1f0\n__x64_sys_sendto+0x24/0x30\ndo_syscall_64+0x82/0x160\nentry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7faee60d8e27\n\nCalling netif_device_detach() before reset makes the net core not call\nthe driver when ethtool command is issued, the attempt to execute an\nethtool command during reset will result in the following message:\n\n netlink error: No such device\n\ninstead of NULL pointer dereference. Once reset is done and\nice_rebuild() is executing, the netif_device_attach() is called to allow\nfor ethtool operations to occur again in a safe manner.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-46770" }, { "cve":"CVE-2024-46795", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: unset the binding mark of a reused connection\n\nSteve French reported null pointer dereference error from sha256 lib.\ncifs.ko can send session setup requests on reused connection.\nIf reused connection is used for binding session, conn->binding can\nstill remain true and generate_preauth_hash() will not set\nsess->Preauth_HashValue and it will be NULL.\nIt is used as a material to create an encryption key in\nksmbd_gen_smb311_encryptionkey. ->Preauth_HashValue cause null pointer\ndereference error from crypto_shash_update().\n\nBUG: kernel NULL pointer dereference, address: 0000000000000000\n#PF: supervisor read access in kernel mode\n#PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 8 PID: 429254 Comm: kworker/8:39\nHardware name: LENOVO 20MAS08500/20MAS08500, BIOS N2CET69W (1.52 )\nWorkqueue: ksmbd-io handle_ksmbd_work [ksmbd]\nRIP: 0010:lib_sha256_base_do_update.isra.0+0x11e/0x1d0 [sha256_ssse3]\n\n? show_regs+0x6d/0x80\n? __die+0x24/0x80\n? page_fault_oops+0x99/0x1b0\n? do_user_addr_fault+0x2ee/0x6b0\n? exc_page_fault+0x83/0x1b0\n? asm_exc_page_fault+0x27/0x30\n? __pfx_sha256_transform_rorx+0x10/0x10 [sha256_ssse3]\n? lib_sha256_base_do_update.isra.0+0x11e/0x1d0 [sha256_ssse3]\n? __pfx_sha256_transform_rorx+0x10/0x10 [sha256_ssse3]\n? __pfx_sha256_transform_rorx+0x10/0x10 [sha256_ssse3]\n_sha256_update+0x77/0xa0 [sha256_ssse3]\nsha256_avx2_update+0x15/0x30 [sha256_ssse3]\ncrypto_shash_update+0x1e/0x40\nhmac_update+0x12/0x20\ncrypto_shash_update+0x1e/0x40\ngenerate_key+0x234/0x380 [ksmbd]\ngenerate_smb3encryptionkey+0x40/0x1c0 [ksmbd]\nksmbd_gen_smb311_encryptionkey+0x72/0xa0 [ksmbd]\nntlm_authenticate.isra.0+0x423/0x5d0 [ksmbd]\nsmb2_sess_setup+0x952/0xaa0 [ksmbd]\n__process_request+0xa3/0x1d0 [ksmbd]\n__handle_ksmbd_work+0x1c4/0x2f0 [ksmbd]\nhandle_ksmbd_work+0x2d/0xa0 [ksmbd]\nprocess_one_work+0x16c/0x350\nworker_thread+0x306/0x440\n? __pfx_worker_thread+0x10/0x10\nkthread+0xef/0x120\n? __pfx_kthread+0x10/0x10\nret_from_fork+0x44/0x70\n? __pfx_kthread+0x10/0x10\nret_from_fork_asm+0x1b/0x30\n", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-46795" }, { "cve":"CVE-2024-46819", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: the warning dereferencing obj for nbio_v7_4\n\nif ras_manager obj null, don't print NBIO err data", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-46819" }, { "cve":"CVE-2024-46826", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nELF: fix kernel.randomize_va_space double read\n\nELF loader uses \"randomize_va_space\" twice. It is sysctl and can change\nat any moment, so 2 loads could see 2 different values in theory with\nunpredictable consequences.\n\nIssue exactly one load for consistent value across one exec.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-46826" }, { "cve":"CVE-2024-46828", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nsched: sch_cake: fix bulk flow accounting logic for host fairness\n\nIn sch_cake, we keep track of the count of active bulk flows per host,\nwhen running in dst/src host fairness mode, which is used as the\nround-robin weight when iterating through flows. The count of active\nbulk flows is updated whenever a flow changes state.\n\nThis has a peculiar interaction with the hash collision handling: when a\nhash collision occurs (after the set-associative hashing), the state of\nthe hash bucket is simply updated to match the new packet that collided,\nand if host fairness is enabled, that also means assigning new per-host\nstate to the flow. For this reason, the bulk flow counters of the\nhost(s) assigned to the flow are decremented, before new state is\nassigned (and the counters, which may not belong to the same host\nanymore, are incremented again).\n\nBack when this code was introduced, the host fairness mode was always\nenabled, so the decrement was unconditional. When the configuration\nflags were introduced the *increment* was made conditional, but\nthe *decrement* was not. Which of course can lead to a spurious\ndecrement (and associated wrap-around to U16_MAX).\n\nAFAICT, when host fairness is disabled, the decrement and wrap-around\nhappens as soon as a hash collision occurs (which is not that common in\nitself, due to the set-associative hashing). However, in most cases this\nis harmless, as the value is only used when host fairness mode is\nenabled. So in order to trigger an array overflow, sch_cake has to first\nbe configured with host fairness disabled, and while running in this\nmode, a hash collision has to occur to cause the overflow. Then, the\nqdisc has to be reconfigured to enable host fairness, which leads to the\narray out-of-bounds because the wrapped-around value is retained and\nused as an array index. It seems that syzbot managed to trigger this,\nwhich is quite impressive in its own right.\n\nThis patch fixes the issue by introducing the same conditional check on\ndecrement as is used on increment.\n\nThe original bug predates the upstreaming of cake, but the commit listed\nin the Fixes tag touched that code, meaning that this patch won't apply\nbefore that.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-46828" }, { "cve":"CVE-2024-46840", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: clean up our handling of refs == 0 in snapshot delete\n\nIn reada we BUG_ON(refs == 0), which could be unkind since we aren't\nholding a lock on the extent leaf and thus could get a transient\nincorrect answer. In walk_down_proc we also BUG_ON(refs == 0), which\ncould happen if we have extent tree corruption. Change that to return\n-EUCLEAN. In do_walk_down() we catch this case and handle it correctly,\nhowever we return -EIO, which -EUCLEAN is a more appropriate error code.\nFinally in walk_up_proc we have the same BUG_ON(refs == 0), so convert\nthat to proper error handling. Also adjust the error message so we can\nactually do something with the information.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-46840" }, { "cve":"CVE-2024-46848", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/intel: Limit the period on Haswell\n\nRunning the ltp test cve-2015-3290 concurrently reports the following\nwarnings.\n\nperfevents: irq loop stuck!\n WARNING: CPU: 31 PID: 32438 at arch/x86/events/intel/core.c:3174\n intel_pmu_handle_irq+0x285/0x370\n Call Trace:\n \n ? __warn+0xa4/0x220\n ? intel_pmu_handle_irq+0x285/0x370\n ? __report_bug+0x123/0x130\n ? intel_pmu_handle_irq+0x285/0x370\n ? __report_bug+0x123/0x130\n ? intel_pmu_handle_irq+0x285/0x370\n ? report_bug+0x3e/0xa0\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x18/0x50\n ? asm_exc_invalid_op+0x1a/0x20\n ? irq_work_claim+0x1e/0x40\n ? intel_pmu_handle_irq+0x285/0x370\n perf_event_nmi_handler+0x3d/0x60\n nmi_handle+0x104/0x330\n\nThanks to Thomas Gleixner's analysis, the issue is caused by the low\ninitial period (1) of the frequency estimation algorithm, which triggers\nthe defects of the HW, specifically erratum HSW11 and HSW143. (For the\ndetails, please refer https://lore.kernel.org/lkml/87plq9l5d2.ffs@tglx/)\n\nThe HSW11 requires a period larger than 100 for the INST_RETIRED.ALL\nevent, but the initial period in the freq mode is 1. The erratum is the\nsame as the BDM11, which has been supported in the kernel. A minimum\nperiod of 128 is enforced as well on HSW.\n\nHSW143 is regarding that the fixed counter 1 may overcount 32 with the\nHyper-Threading is enabled. However, based on the test, the hardware\nhas more issues than it tells. Besides the fixed counter 1, the message\n'interrupt took too long' can be observed on any counter which was armed\nwith a period < 32 and two events expired in the same NMI. A minimum\nperiod of 32 is enforced for the rest of the events.\nThe recommended workaround code of the HSW143 is not implemented.\nBecause it only addresses the issue for the fixed counter. It brings\nextra overhead through extra MSR writing. No related overcounting issue\nhas been reported so far.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-46848" }, { "cve":"CVE-2024-46854", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dpaa: Pad packets to ETH_ZLEN\n\nWhen sending packets under 60 bytes, up to three bytes of the buffer\nfollowing the data may be leaked. Avoid this by extending all packets to\nETH_ZLEN, ensuring nothing is leaked in the padding. This bug can be\nreproduced by running\n\n\t$ ping -s 11 destination", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.1, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-46854" }, { "cve":"CVE-2024-46855", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_socket: fix sk refcount leaks\n\nWe must put 'sk' reference before returning.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-46855" }, { "cve":"CVE-2024-46858", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: pm: Fix uaf in __timer_delete_sync\n\nThere are two paths to access mptcp_pm_del_add_timer, result in a race\ncondition:\n\n CPU1\t\t\t\tCPU2\n ==== ====\n net_rx_action\n napi_poll netlink_sendmsg\n __napi_poll netlink_unicast\n process_backlog netlink_unicast_kernel\n __netif_receive_skb genl_rcv\n __netif_receive_skb_one_core netlink_rcv_skb\n NF_HOOK genl_rcv_msg\n ip_local_deliver_finish genl_family_rcv_msg\n ip_protocol_deliver_rcu genl_family_rcv_msg_doit\n tcp_v4_rcv mptcp_pm_nl_flush_addrs_doit\n tcp_v4_do_rcv mptcp_nl_remove_addrs_list\n tcp_rcv_established mptcp_pm_remove_addrs_and_subflows\n tcp_data_queue remove_anno_list_by_saddr\n mptcp_incoming_options mptcp_pm_del_add_timer\n mptcp_pm_del_add_timer kfree(entry)\n\nIn remove_anno_list_by_saddr(running on CPU2), after leaving the critical\nzone protected by \"pm.lock\", the entry will be released, which leads to the\noccurrence of uaf in the mptcp_pm_del_add_timer(running on CPU1).\n\nKeeping a reference to add_timer inside the lock, and calling\nsk_stop_timer_sync() with this reference, instead of \"entry->add_timer\".\n\nMove list_del(&entry->list) to mptcp_pm_del_add_timer and inside the pm lock,\ndo not directly access any members of the entry outside the pm lock, which\ncan avoid similar \"entry->x\" uaf.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.0, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-46858" }, { "cve":"CVE-2024-47658", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: stm32/cryp - call finalize with bh disabled\n\nThe finalize operation in interrupt mode produce a produces a spinlock\nrecursion warning. The reason is the fact that BH must be disabled\nduring this process.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.9, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Low", "category":"impact" } ], "title":"CVE-2024-47658" }, { "cve":"CVE-2024-47664", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nspi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware\n\nIf the value of max_speed_hz is 0, it may cause a division by zero\nerror in hisi_calc_effective_speed().\nThe value of max_speed_hz is provided by firmware.\nFirmware is generally considered as a trusted domain. However, as\ndivision by zero errors can cause system failure, for defense measure,\nthe value of max_speed is validated here. So 0 is regarded as invalid\nand an error code is returned.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":4.1, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-47664" }, { "cve":"CVE-2024-47670", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: add bounds checking to ocfs2_xattr_find_entry()\n\nAdd a paranoia check to make sure it doesn't stray beyond valid memory\nregion containing ocfs2 xattr entries when scanning for a match. It will\nprevent out-of-bound access in case of crafted images.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.9, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Low", "category":"impact" } ], "title":"CVE-2024-47670" }, { "cve":"CVE-2024-47671", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: usbtmc: prevent kernel-usb-infoleak\n\nThe syzbot reported a kernel-usb-infoleak in usbtmc_write,\nwe need to clear the structure before filling fields.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.3, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Low", "category":"impact" } ], "title":"CVE-2024-47671" }, { "cve":"CVE-2024-47672", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: don't wait for tx queues if firmware is dead\n\nThere is a WARNING in iwl_trans_wait_tx_queues_empty() (that was\nrecently converted from just a message), that can be hit if we\nwait for TX queues to become empty after firmware died. Clearly,\nwe can't expect anything from the firmware after it's declared dead.\n\nDon't call iwl_trans_wait_tx_queues_empty() in this case. While it could\nbe a good idea to stop the flow earlier, the flush functions do some\nmaintenance work that is not related to the firmware, so keep that part\nof the code running even when the firmware is not running.\n\n[edit commit message]", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2255" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.9, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-232.0.0.134.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-232.0.0.134.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Low", "category":"impact" } ], "title":"CVE-2024-47672" } ] }