openEuler 22.03 LTS SP4 update for kernel



Published: 2024-07-21
Risk Low
Patch available YES
Number of vulnerabilities 5
CVE-ID CVE-2021-47618
CVE-2024-38554
CVE-2024-38582
CVE-2024-38583
CVE-2024-38625
CWE-ID CWE-476
CWE-401
CWE-667
CWE-416
Exploitation vector Local
Public exploit N/A
Vulnerable software
Subscribe
openEuler
Operating systems & Components / Operating system

python3-perf-debuginfo
Operating systems & Components / Operating system package or component

python3-perf
Operating systems & Components / Operating system package or component

perf-debuginfo
Operating systems & Components / Operating system package or component

perf
Operating systems & Components / Operating system package or component

kernel-tools-devel
Operating systems & Components / Operating system package or component

kernel-tools-debuginfo
Operating systems & Components / Operating system package or component

kernel-tools
Operating systems & Components / Operating system package or component

kernel-source
Operating systems & Components / Operating system package or component

kernel-headers
Operating systems & Components / Operating system package or component

kernel-devel
Operating systems & Components / Operating system package or component

kernel-debugsource
Operating systems & Components / Operating system package or component

kernel-debuginfo
Operating systems & Components / Operating system package or component

bpftool-debuginfo
Operating systems & Components / Operating system package or component

bpftool
Operating systems & Components / Operating system package or component

kernel
Operating systems & Components / Operating system package or component

Vendor openEuler

Security Bulletin

This security bulletin contains information about 5 vulnerabilities.

1) NULL pointer dereference

EUVDB-ID: #VU92918

Risk: Low

CVSSv3.1: 4.8 [AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-47618

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the obj-$() function in arch/arm/probes/kprobes/Makefile. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 22.03 LTS SP4

python3-perf-debuginfo: before 5.10.0-218.0.0.117

python3-perf: before 5.10.0-218.0.0.117

perf-debuginfo: before 5.10.0-218.0.0.117

perf: before 5.10.0-218.0.0.117

kernel-tools-devel: before 5.10.0-218.0.0.117

kernel-tools-debuginfo: before 5.10.0-218.0.0.117

kernel-tools: before 5.10.0-218.0.0.117

kernel-source: before 5.10.0-218.0.0.117

kernel-headers: before 5.10.0-218.0.0.117

kernel-devel: before 5.10.0-218.0.0.117

kernel-debugsource: before 5.10.0-218.0.0.117

kernel-debuginfo: before 5.10.0-218.0.0.117

bpftool-debuginfo: before 5.10.0-218.0.0.117

bpftool: before 5.10.0-218.0.0.117

kernel: before 5.10.0-218.0.0.117

CPE2.3 External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1837


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Memory leak

EUVDB-ID: #VU92294

Risk: Low

CVSSv3.1: 4.8 [AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-38554

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ax25_dev_device_down() function in net/ax25/ax25_dev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 22.03 LTS SP4

python3-perf-debuginfo: before 5.10.0-218.0.0.117

python3-perf: before 5.10.0-218.0.0.117

perf-debuginfo: before 5.10.0-218.0.0.117

perf: before 5.10.0-218.0.0.117

kernel-tools-devel: before 5.10.0-218.0.0.117

kernel-tools-debuginfo: before 5.10.0-218.0.0.117

kernel-tools: before 5.10.0-218.0.0.117

kernel-source: before 5.10.0-218.0.0.117

kernel-headers: before 5.10.0-218.0.0.117

kernel-devel: before 5.10.0-218.0.0.117

kernel-debugsource: before 5.10.0-218.0.0.117

kernel-debuginfo: before 5.10.0-218.0.0.117

bpftool-debuginfo: before 5.10.0-218.0.0.117

bpftool: before 5.10.0-218.0.0.117

kernel: before 5.10.0-218.0.0.117

CPE2.3 External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1837


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Improper locking

EUVDB-ID: #VU92366

Risk: Low

CVSSv3.1: 4.8 [AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-38582

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the nilfs_segctor_sync(), nilfs_segctor_wakeup(), nilfs_segctor_notify() and nilfs_segctor_destroy() functions in fs/nilfs2/segment.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 22.03 LTS SP4

python3-perf-debuginfo: before 5.10.0-218.0.0.117

python3-perf: before 5.10.0-218.0.0.117

perf-debuginfo: before 5.10.0-218.0.0.117

perf: before 5.10.0-218.0.0.117

kernel-tools-devel: before 5.10.0-218.0.0.117

kernel-tools-debuginfo: before 5.10.0-218.0.0.117

kernel-tools: before 5.10.0-218.0.0.117

kernel-source: before 5.10.0-218.0.0.117

kernel-headers: before 5.10.0-218.0.0.117

kernel-devel: before 5.10.0-218.0.0.117

kernel-debugsource: before 5.10.0-218.0.0.117

kernel-debuginfo: before 5.10.0-218.0.0.117

bpftool-debuginfo: before 5.10.0-218.0.0.117

bpftool: before 5.10.0-218.0.0.117

kernel: before 5.10.0-218.0.0.117

CPE2.3 External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1837


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Use-after-free

EUVDB-ID: #VU92311

Risk: Low

CVSSv3.1: 7.7 [AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-38583

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nilfs_segctor_start_timer(), nilfs_construct_dsync_segment(), nilfs_segctor_notify(), nilfs_segctor_thread(), nilfs_segctor_new() and nilfs_segctor_destroy() functions in fs/nilfs2/segment.c. A local user can escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 22.03 LTS SP4

python3-perf-debuginfo: before 5.10.0-218.0.0.117

python3-perf: before 5.10.0-218.0.0.117

perf-debuginfo: before 5.10.0-218.0.0.117

perf: before 5.10.0-218.0.0.117

kernel-tools-devel: before 5.10.0-218.0.0.117

kernel-tools-debuginfo: before 5.10.0-218.0.0.117

kernel-tools: before 5.10.0-218.0.0.117

kernel-source: before 5.10.0-218.0.0.117

kernel-headers: before 5.10.0-218.0.0.117

kernel-devel: before 5.10.0-218.0.0.117

kernel-debugsource: before 5.10.0-218.0.0.117

kernel-debuginfo: before 5.10.0-218.0.0.117

bpftool-debuginfo: before 5.10.0-218.0.0.117

bpftool: before 5.10.0-218.0.0.117

kernel: before 5.10.0-218.0.0.117

CPE2.3 External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1837


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) NULL pointer dereference

EUVDB-ID: #VU93045

Risk: Low

CVSSv3.1: 4.8 [AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-38625

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ntfs_get_block_vbo() function in fs/ntfs3/inode.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 22.03 LTS SP4

python3-perf-debuginfo: before 5.10.0-218.0.0.117

python3-perf: before 5.10.0-218.0.0.117

perf-debuginfo: before 5.10.0-218.0.0.117

perf: before 5.10.0-218.0.0.117

kernel-tools-devel: before 5.10.0-218.0.0.117

kernel-tools-debuginfo: before 5.10.0-218.0.0.117

kernel-tools: before 5.10.0-218.0.0.117

kernel-source: before 5.10.0-218.0.0.117

kernel-headers: before 5.10.0-218.0.0.117

kernel-devel: before 5.10.0-218.0.0.117

kernel-debugsource: before 5.10.0-218.0.0.117

kernel-debuginfo: before 5.10.0-218.0.0.117

bpftool-debuginfo: before 5.10.0-218.0.0.117

bpftool: before 5.10.0-218.0.0.117

kernel: before 5.10.0-218.0.0.117

CPE2.3 External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1837


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###