Anolis OS update for kernel

Published: 2023-12-25 | Updated: 2025-03-28

Risk	Medium
Patch available	YES
Number of vulnerabilities	13
CVE-ID	CVE-2022-40982 CVE-2022-45884 CVE-2022-45886 CVE-2022-45919 CVE-2023-1192 CVE-2023-3609 CVE-2023-38409 CVE-2023-4128 CVE-2023-4206 CVE-2023-4207 CVE-2023-4208 CVE-2023-42753 CVE-2023-4732
CWE-ID	CWE-1342 CWE-416 CWE-119 CWE-787 CWE-362
Exploitation vector	Network
Public exploit	N/A
Vulnerable software	Anolis OS Operating systems & Components / Operating system kernel-doc Operating systems & Components / Operating system package or component kernel-abi-stablelists Operating systems & Components / Operating system package or component python3-perf Operating systems & Components / Operating system package or component perf Operating systems & Components / Operating system package or component kernel-tools-libs-devel Operating systems & Components / Operating system package or component kernel-tools-libs Operating systems & Components / Operating system package or component kernel-tools Operating systems & Components / Operating system package or component kernel-modules-extra Operating systems & Components / Operating system package or component kernel-modules Operating systems & Components / Operating system package or component kernel-headers Operating systems & Components / Operating system package or component kernel-devel Operating systems & Components / Operating system package or component kernel-debug-modules-extra Operating systems & Components / Operating system package or component kernel-debug-modules Operating systems & Components / Operating system package or component kernel-debug-devel Operating systems & Components / Operating system package or component kernel-debug-core Operating systems & Components / Operating system package or component kernel-debug Operating systems & Components / Operating system package or component kernel-cross-headers Operating systems & Components / Operating system package or component kernel-core Operating systems & Components / Operating system package or component kernel Operating systems & Components / Operating system package or component bpftool Operating systems & Components / Operating system package or component
Vendor	OpenAnolis

Security Bulletin

This security bulletin contains information about 13 vulnerabilities.

1) Information exposure through microarchitectural state after transient execution

EUVDB-ID: #VU79262

Risk: Medium

CVSSv4.0: 2.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-40982

CWE-ID: CWE-1342 - Information Exposure through Microarchitectural State after Transient Execution

Exploit availability: No

Description

The vulnerability allows a malicious guest to escalate privileges on the system.

The vulnerability exists due to the way data is shared between threads whereby the AVX GATHER instructions on Intel processors can forward the content of stale vector registers to dependent instructions. A malicious guest can infer data from different contexts on the same core and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Use-after-free

EUVDB-ID: #VU75333

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-45884

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in drivers/media/dvb-core/dvbdev.c in Linux kernel related to dvb_register_device() function dynamically allocating fops. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Use-after-free

EUVDB-ID: #VU75336

Risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-45886

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in drivers/media/dvb-core/dvb_net.c in Linux kernel. A local user can trigger a race condition and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Use-after-free

EUVDB-ID: #VU75337

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-45919

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in drivers/media/dvb-core/dvb_ca_en50221.c in Linux kernel. A local user can trigger a race condition and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Use-after-free

EUVDB-ID: #VU81923

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1192

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the smb2_is_status_io_timeout() function in Linux kernel. A local user can set environment variable to a specific value, trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Use-after-free

EUVDB-ID: #VU78941

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3609

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the the Linux kernel net/sched: cls_u32 component. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Buffer overflow

EUVDB-ID: #VU79497

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-38409

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error within the set_con2fb_map() function in drivers/video/fbdev/core/fbcon.c. A local user can trigger memory corruption and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Use-after-free

EUVDB-ID: #VU79486

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4128

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within net/sched/cls_fw.c in classifiers (cls_fw, cls_u32, and cls_route) in the Linux Kernel. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Use-after-free

EUVDB-ID: #VU80580

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4206

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the the cls_route component in Linux kernel packet scheduler. A local user can trigger a use-after-free error and execute arbitrary code on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Use-after-free

EUVDB-ID: #VU80587

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4207

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the the cls_fw component in Linux kernel packet scheduler. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Use-after-free

EUVDB-ID: #VU80586

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4208

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the the cls_u32 component in Linux kernel packet scheduler. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Out-of-bounds write

EUVDB-ID: #VU81663

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-42753

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in the netfilter subsystem in Linux kernel. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) Race condition

EUVDB-ID: #VU83479

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4732

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a race condition caused by a BUG statement referencing pmd_t x within the pfn_swap_entry_to_page () function. A local user can exploit the race and crash the kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-477.36.1.0.1

kernel-abi-stablelists: before 4.18.0-477.36.1.0.1

python3-perf: before 4.18.0-477.36.1.0.1

perf: before 4.18.0-477.36.1.0.1

kernel-tools-libs-devel: before 4.18.0-477.36.1.0.1

kernel-tools-libs: before 4.18.0-477.36.1.0.1

kernel-tools: before 4.18.0-477.36.1.0.1

kernel-modules-extra: before 4.18.0-477.36.1.0.1

kernel-modules: before 4.18.0-477.36.1.0.1

kernel-headers: before 4.18.0-477.36.1.0.1

kernel-devel: before 4.18.0-477.36.1.0.1

kernel-debug-modules-extra: before 4.18.0-477.36.1.0.1

kernel-debug-modules: before 4.18.0-477.36.1.0.1

kernel-debug-devel: before 4.18.0-477.36.1.0.1

kernel-debug-core: before 4.18.0-477.36.1.0.1

kernel-debug: before 4.18.0-477.36.1.0.1

kernel-cross-headers: before 4.18.0-477.36.1.0.1

kernel-core: before 4.18.0-477.36.1.0.1

kernel: before 4.18.0-477.36.1.0.1

bpftool: before 4.18.0-477.36.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0966

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.