Anolis OS update for kernel

Published: 2024-03-27 | Updated: 2025-03-29

Risk	High
Patch available	YES
Number of vulnerabilities	18
CVE-ID	CVE-2023-20588 CVE-2023-28464 CVE-2023-39192 CVE-2023-45863 CVE-2023-45871 CVE-2023-4622 CVE-2023-51779 CVE-2023-5178 CVE-2023-52438 CVE-2023-5717 CVE-2023-6176 CVE-2023-6931 CVE-2023-6932 CVE-2024-1086 CVE-2024-22099 CVE-2024-24855 CVE-2024-24860 CVE-2024-26597
CWE-ID	CWE-369 CWE-415 CWE-125 CWE-787 CWE-119 CWE-416 CWE-476 CWE-362
Exploitation vector	Network
Public exploit	Public exploit code for vulnerability #8 is available. Vulnerability #14 is being exploited in the wild.
Vulnerable software	Anolis OS Operating systems & Components / Operating system python3-perf Operating systems & Components / Operating system package or component perf Operating systems & Components / Operating system package or component kernel-tools-libs-devel Operating systems & Components / Operating system package or component kernel-tools-libs Operating systems & Components / Operating system package or component kernel-tools Operating systems & Components / Operating system package or component kernel-modules-internal Operating systems & Components / Operating system package or component kernel-modules-extra Operating systems & Components / Operating system package or component kernel-modules Operating systems & Components / Operating system package or component kernel-headers Operating systems & Components / Operating system package or component kernel-devel Operating systems & Components / Operating system package or component kernel-debug-modules-extra Operating systems & Components / Operating system package or component kernel-debug-modules Operating systems & Components / Operating system package or component kernel-debug-devel Operating systems & Components / Operating system package or component kernel-debug-core Operating systems & Components / Operating system package or component kernel-debug Operating systems & Components / Operating system package or component kernel-core Operating systems & Components / Operating system package or component kernel Operating systems & Components / Operating system package or component bpftool Operating systems & Components / Operating system package or component
Vendor	OpenAnolis

Security Bulletin

This security bulletin contains information about 18 vulnerabilities.

1) Division by zero

EUVDB-ID: #VU79239

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-20588

CWE-ID: CWE-369 - Divide By Zero

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a divide by zero error that can return speculative data. A local user can gain access to potentially sensitive information.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Double Free

EUVDB-ID: #VU74147

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-28464

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the hci_conn_cleanup() function in net/bluetooth/hci_conn.c in Linux kernel. A local user can trigger a double free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Out-of-bounds read

EUVDB-ID: #VU81921

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-39192

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a boundary condition within the the u32_match_it() function in Netfilter subsystem in Linux kernel. A local user can trigger an out-of-bounds read error and gain access to sensitive information.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Out-of-bounds write

EUVDB-ID: #VU84354

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-45863

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the fill_kobj_path() function in lib/kobject.c. A local user can can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Buffer overflow

EUVDB-ID: #VU83381

Risk: High

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-45871

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within the IGB driver in drivers/net/ethernet/intel/igb/igb_main.c when handling frames larger than the MTU. A remote attacker can send specially crafted traffic to the system, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Use-after-free

EUVDB-ID: #VU80583

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4622

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the unix_stream_sendpage() function in af_unix component. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Use-after-free

EUVDB-ID: #VU85023

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-51779

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error when handling bt_sock_ioctl in the Bluetooth subsystem. A local user can trigger a use-after-free error and execute arbitrary code on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Use-after-free

EUVDB-ID: #VU82658

Risk: Low

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2023-5178

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a local authenticated user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the drivers/nvme/target/tcp.c in nvmet_tcp_free_crypto due to a logical bug in the NVMe-oF/TCP subsystem in the Linux kernel. A local authenticated user can trigger a use-after-free error and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

9) Use-after-free

EUVDB-ID: #VU87593

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52438

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the binder_alloc_free_page() function in drivers/android/binder_alloc.c. A local user can trigger a race condition and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Out-of-bounds write

EUVDB-ID: #VU83311

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-5717

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in the Linux kernel's Linux Kernel Performance Events (perf) component. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) NULL pointer dereference

EUVDB-ID: #VU84096

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-6176

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in the Linux kernel API for the cryptographic algorithm scatterwalk functionality in scatterwalk_copychunks(). A local user can send a malicious packet with specific socket configuration and crash the OS kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Out-of-bounds write

EUVDB-ID: #VU85021

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-6931

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in the Linux kernel's Performance Events system component. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) Use-after-free

EUVDB-ID: #VU84585

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-6932

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local authenticated user to execute arbitrary code.

The vulnerability exists due to a use-after-free error within the ipv4 igmp component in Linux kernel. A local authenticated user can trigger a use-after-free error and execute arbitrary code.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

14) Use-after-free

EUVDB-ID: #VU86577

Risk: High

CVSSv4.0: 8.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber]

CVE-ID: CVE-2024-1086

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the netfilter nf_tables component in Linux kernel. A local user can trigger a use-after-free error and execute arbitrary code on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

15) NULL pointer dereference

EUVDB-ID: #VU87192

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-22099

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the rfcomm_check_security() function in /net/bluetooth/rfcomm/core.c. A local user can pass specially crafted data to the application and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

16) Race condition

EUVDB-ID: #VU87602

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-24855

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the lpfc_unregister_fcf_rescan() function in scsi device driver. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

17) Race condition

EUVDB-ID: #VU86580

Risk: Medium

CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-24860

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a race condition within the {min,max}_key_size_set() function in the Linux kernel bluetooth device driver. A remote attacker with physical proximity to device can send specially crafted packets to the system and crash the kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

18) Out-of-bounds read

EUVDB-ID: #VU87682

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26597

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary condition in drivers/net/ethernet/qualcomm/rmnet/rmnet_config.c when parsing the netlink attributes. A local user can trigger an out-of-bounds read error and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-16.3

perf: before 5.10.134-16.3

kernel-tools-libs-devel: before 5.10.134-16.3

kernel-tools-libs: before 5.10.134-16.3

kernel-tools: before 5.10.134-16.3

kernel-modules-internal: before 5.10.134-16.3

kernel-modules-extra: before 5.10.134-16.3

kernel-modules: before 5.10.134-16.3

kernel-headers: before 5.10.134-16.3

kernel-devel: before 5.10.134-16.3

kernel-debug-modules-extra: before 5.10.134-16.3

kernel-debug-modules: before 5.10.134-16.3

kernel-debug-devel: before 5.10.134-16.3

kernel-debug-core: before 5.10.134-16.3

kernel-debug: before 5.10.134-16.3

kernel-core: before 5.10.134-16.3

kernel: before 5.10.134-16.3

bpftool: before 5.10.134-16.3

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0112

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.