Main Vulnerability Database SB2024122778

SB2024122778 - openEuler 20.03 LTS SP4 update for kernel

Published: December 27, 2024

Security Bulletin ID SB2024122778

Severity

Low

Patch available

YES

Number of vulnerabilities 5

Exploitation vector Local access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 5 secuirty vulnerabilities.

1) Use-after-free (CVE-ID: CVE-2024-39508)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the WORKER_IDLE_TIMEOUT(), io_work_get_acct(), io_worker_exit(), io_wq_dec_running(), __io_worker_busy(), io_wq_worker(), io_wq_worker_running(), io_wq_worker_sleeping(), io_init_new_worker(), init_completion() and io_wq_work_match_item() functions in io_uring/io-wq.c. A local user can escalate privileges on the system.

2) Memory leak (CVE-ID: CVE-2024-46733)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the btrfs_qgroup_free_data() and extent_clear_unlock_delalloc() functions in fs/btrfs/inode.c. A local user can perform a denial of service (DoS) attack.

3) Buffer overflow (CVE-ID: CVE-2024-50194)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the arch_uprobe_analyze_insn() and arch_uprobe_skip_sstep() functions in arch/arm64/kernel/probes/uprobes.c. A local user can perform a denial of service (DoS) attack.

4) Input validation error (CVE-ID: CVE-2024-50218)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ocfs2_remove_inode_range() function in fs/ocfs2/file.c. A local user can perform a denial of service (DoS) attack.

5) Use-after-free (CVE-ID: CVE-2024-53095)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the clean_demultiplex_info(), cifs_put_tcp_session() and generic_ip_connect() functions in fs/smb/client/connect.c. A local user can escalate privileges on the system.

Remediation

Install update from vendor's website.

References

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-2589

Vulnerable Software

openEuler: 20.03 LTS SP4
python3-perf-debuginfo: before 4.19.90-2412.4.0.0309
python3-perf: before 4.19.90-2412.4.0.0309
python2-perf-debuginfo: before 4.19.90-2412.4.0.0309
python2-perf: before 4.19.90-2412.4.0.0309
perf-debuginfo: before 4.19.90-2412.4.0.0309
perf: before 4.19.90-2412.4.0.0309
kernel-tools-devel: before 4.19.90-2412.4.0.0309
kernel-tools-debuginfo: before 4.19.90-2412.4.0.0309
kernel-tools: before 4.19.90-2412.4.0.0309
kernel-source: before 4.19.90-2412.4.0.0309
kernel-devel: before 4.19.90-2412.4.0.0309
kernel-debugsource: before 4.19.90-2412.4.0.0309
kernel-debuginfo: before 4.19.90-2412.4.0.0309
bpftool-debuginfo: before 4.19.90-2412.4.0.0309
bpftool: before 4.19.90-2412.4.0.0309
kernel: before 4.19.90-2412.4.0.0309

SB2024122778 - openEuler 20.03 LTS SP4 update for kernel

Breakdown by Severity

Description

Remediation

References

Please verify you're human