Anolis OS update for kernel

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the hw_atl_utils_fw_rpc_wait() function in drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_utils.c in Linux kernel. A local user can attach a specially crafted device to the system, trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Double Free

EUVDB-ID: #VU63160

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-28388

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code with elevated privileges.

The vulnerability exists due to boundary error in the usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c. A local user can pass specially crafted data to the application, trigger double free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Buffer overflow

EUVDB-ID: #VU69758

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-3545

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the area_cache_get() function in drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c. A local user can trigger memory corruption and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Inclusion of Sensitive Information in Log Files

EUVDB-ID: #VU69707

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-3594

CWE-ID: CWE-532 - Information Exposure Through Log Files

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to the intr_callback() function in drivers/net/usb/r8152.c can be forced to include excessive data info the log files. A local user can read the log files and gain access to sensitive data.

Note, the vulnerability can be triggered remotely.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Use-after-free

EUVDB-ID: #VU70463

Risk: Medium

CVSSv4.0: 4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-3640

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows an attacker to compromise the affected system.

The vulnerability exists due to a use-after-free error in the 2cap_conn_del() function in net/bluetooth/l2cap_core.c in Linux kernel. An attacker with physical proximity to device can trigger a use-after-free error and execute arbitrary code on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Integer overflow

EUVDB-ID: #VU80799

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-36402

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to integer overflow in drivers/gpu/vmxgfx/vmxgfx_execbuf.c. A local user can trigger an integer overflow and crash the kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Use-after-free

EUVDB-ID: #VU80790

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-38457

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the vmw_cmd_res_check() function in drivers/gpu/vmxgfx/vmxgfx_execbuf.c. A local user can trigger a use-after-free error and crash the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Use-after-free

EUVDB-ID: #VU80794

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-40133

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the vmw_execbuf_tie_context() function in drivers/gpu/vmxgfx/vmxgfx_execbuf.c. A local user can run a specially crafted program on the system and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Information exposure through microarchitectural state after transient execution

EUVDB-ID: #VU79262

Risk: Medium

CVSSv4.0: 2.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-40982

CWE-ID: CWE-1342 - Information Exposure through Microarchitectural State after Transient Execution

Exploit availability: No

Description

The vulnerability allows a malicious guest to escalate privileges on the system.

The vulnerability exists due to the way data is shared between threads whereby the AVX GATHER instructions on Intel processors can forward the content of stale vector registers to dependent instructions. A malicious guest can infer data from different contexts on the same core and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) NULL pointer dereference

EUVDB-ID: #VU70467

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-41858

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the sl_tx_timeout() function in drivers/net/slip in Linux kernel. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Access of Uninitialized Pointer

EUVDB-ID: #VU69796

Risk: Low

CVSSv4.0: 0.4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-42895

CWE-ID: CWE-824 - Access of Uninitialized Pointer

Exploit availability: No

Description

The vulnerability allows an attacker to gain access to sensitive information.

The vulnerability exists due to unauthorized access of uninitialized pointer within the l2cap_parse_conf_req() function in net/bluetooth/l2cap_core.c. An attacker with physical proximity to the affected device can gain access to sensitive information.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Race condition

EUVDB-ID: #VU70502

Risk: Medium

CVSSv4.0: 4.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-45869

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a remote user to escalate privileges on the system.

The vulnerability exists due to a race condition within the x86 KVM subsystem in the Linux kernel when nested virtualisation and the TDP MMU are enabled. A remote user on the guest OS can exploit the race and crash the host OS.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) Use-after-free

EUVDB-ID: #VU75333

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-45884

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in drivers/media/dvb-core/dvbdev.c in Linux kernel related to dvb_register_device() function dynamically allocating fops. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

14) Use-after-free

EUVDB-ID: #VU75336

Risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-45886

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in drivers/media/dvb-core/dvb_net.c in Linux kernel. A local user can trigger a race condition and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

15) Race condition

EUVDB-ID: #VU75338

Risk: Low

CVSSv4.0: 1.9 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-45887

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a race condition in drivers/media/usb/ttusb-dec/ttusb_dec.c in Linux kernel. A local user can exploit the race and crash the kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

16) Use-after-free

EUVDB-ID: #VU75337

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-45919

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in drivers/media/dvb-core/dvb_ca_en50221.c in Linux kernel. A local user can trigger a race condition and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

17) Double Free

EUVDB-ID: #VU74053

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-4744

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the tun_free_netdev() function in the Linux kernel’s TUN/TAP device driver. A local user can trigger a double free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

18) NULL pointer dereference

EUVDB-ID: #VU76223

Risk: Low

CVSSv4.0: 1.9 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-0458

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in the do_prlimit() function. A local user can pass specially crafted data to the system and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

19) Use-after-free

EUVDB-ID: #VU72098

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-0590

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the qdisc_graft() function in net/sched/sch_api.c. A local user can trigger a use-after-free error and crash the kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

20) Memory leak

EUVDB-ID: #VU73765

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-0597

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to memory leak within the Linux kernel cpu_entry_area mapping of X86 CPU data. A local user can gain access to sensitive information.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

21) Buffer overflow

EUVDB-ID: #VU74123

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1073

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows an attacker to compromise the affected system.

The vulnerability exists due to a boundary error in the Linux kernel human interface device (HID) subsystem. An attacker with physical access to the system can insert in a specific way malicious USB device, trigger memory corruption and execute arbitrary code.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

22) Memory leak

EUVDB-ID: #VU74124

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1074

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform DoS attack on the target system.

The vulnerability exists due memory leak in Linux kernel Stream Control Transmission Protocol. A local user can start a malicious network service and then connect to remotely, forcing the kernel to leak memory.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

23) Type Confusion

EUVDB-ID: #VU72700

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1075

CWE-ID: CWE-843 - Type confusion

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a type confusion error within the tls_is_tx_ready() function in the net/tls stack of the Linux Kernel. A local user can trigger a type confusion error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

24) Use-after-free

EUVDB-ID: #VU72741

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1079

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows an attacker to compromise the vulnerable system.

The vulnerability exists due to a use-after-free error within the asus_kbd_backlight_set() function when plugging in a malicious USB device. An attacker with physical access to the system can inject a malicious USB device, trigger a use-after-free error and execute arbitrary code.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

25) Use-after-free

EUVDB-ID: #VU71764

Risk: Low

CVSSv4.0: 1.7 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-25012

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows an attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the bigben_remove() function in drivers/hid/hid-bigbenff.c. An attacker with physical access to the system can attach a specially crafted USB device to the system and cause a denial of service condition.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

26) Use-after-free

EUVDB-ID: #VU72734

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1118

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in the Linux kernel integrated infrared receiver/transceiver driver "drivers/media/rc/ene_ir.c" when detaching rc device. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

27) Use-after-free

EUVDB-ID: #VU81923

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1192

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the smb2_is_status_io_timeout() function in Linux kernel. A local user can set environment variable to a specific value, trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

28) Resource exhaustion

EUVDB-ID: #VU77953

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-1206

CWE-ID: CWE-400 - Resource exhaustion

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a hash collision flaw in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when an attacker makes a new kind of SYN flood attack. A remote attacker can increase the CPU usage of the server that accepts IPV6 connections up to 95%.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

29) Use-after-free

EUVDB-ID: #VU82761

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1252

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local authenticated user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the Linux kernel’s Ext4 File System in how a user triggers several file operations simultaneously with the overlay FS usage. A local authenticated user can trigger a use-after-free error and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

30) NULL pointer dereference

EUVDB-ID: #VU74550

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1382

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in net/tipc/topsrv.c within the TIPC protocol implementation in the Linux kernel. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

31) Use-after-free

EUVDB-ID: #VU75205

Risk: Low

CVSSv4.0: 1.9 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1838

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the vhost_net_set_backend() function in drivers/vhost/net.c. A local user can trigger a use-after-free error and crash the kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

32) Use-after-free

EUVDB-ID: #VU75451

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1855

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the xgene_hwmon_remove() function in drivers/hwmon/xgene-hwmon.c in the Hardware Monitoring Linux Kernel Driver (xgene-hwmon). A local user can trigger a use-after-free error and execute arbitrary code on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

33) Use-after-free

EUVDB-ID: #VU75452

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1989

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the btsdio_remove() function in driversluetoothtsdio.c. A local user can trigger a use-after-free error and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

34) Security features bypass

EUVDB-ID: #VU75454

Risk: Low

CVSSv4.0: 5.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2023-1998

CWE-ID: CWE-254 - Security Features

Exploit availability: Yes

Description

The vulnerability allows a local user to bypass implemented security restrictions.

The vulnerability exists due to incorrect implementation of the Spectre v2 SMT mitigations, related to calling prctl with PR_SET_SPECULATION_CTRL. An attacker can gain unauthorized access to kernel memory from userspace.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

35) Information disclosure

EUVDB-ID: #VU79263

Risk: Low

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-20569

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a remote user to gain access to potentially sensitive information.

The vulnerability exists due to a side channel issue in AMD CPUs. A remote user can influence the return address prediction and gain unauthorized access to sensitive information on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

36) Use-after-free

EUVDB-ID: #VU75994

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-2162

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a use-after-free error within the scsi_sw_tcp_session_create() function in drivers/scsi/iscsi_tcp.c in SCSI sub-component in the Linux Kernel. A local user can trigger a use-after-free error and gain access to sensitive information.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

37) Out-of-bounds write

EUVDB-ID: #VU79673

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-2163

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in BPF verifier caused by improper marking of registers for precision tracking in certain situations. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

38) NULL pointer dereference

EUVDB-ID: #VU79495

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-2166

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in net/can/af_can.c when processing CAN frames. A local user can pass specially crafted data to the system and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

39) Out-of-bounds read

EUVDB-ID: #VU75995

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-2176

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition within the compare_netdev_and_ip() function in drivers/infiniband/core/cma.c in RDMA in the Linux Kernel. A local user can trigger an out-of-bounds read error and read contents of memory on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

40) Improper locking

EUVDB-ID: #VU77243

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-2269

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service attack (DoS).

The vulnerability exists due to double-locking error in table_clear in drivers/md/dm-ioctl.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

41) Type Confusion

EUVDB-ID: #VU71477

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-23455

CWE-ID: CWE-843 - Type confusion

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a type confusion error within the atm_tc_enqueue() function in net/sched/sch_atm.c in the Linux kernel. A local user can trigger a type confusion error and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

42) Use-after-free

EUVDB-ID: #VU76455

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-2513

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ext4 filesystem in the way it handled the extra inode size for extended attributes. A local user can trigger a use-after-free error and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

43) Double Free

EUVDB-ID: #VU73766

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-26545

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a double free in net/mpls/af_mpls.c during the renaming of a device. A local user can trigger a double free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

44) NULL pointer dereference

EUVDB-ID: #VU74126

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-28328

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. A local user can pass specially crafted data to the application and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

45) Buffer overflow

EUVDB-ID: #VU74627

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-28772

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the seq_buf_putmem_hex() function in lib/seq_buf.c. A local user can trigger memory corruption and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

46) Input validation error

EUVDB-ID: #VU75456

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-30456

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to insufficient validation of consistency for for CR0 and CR4 in arch/x86/kvm/vmx/nested.c in the Linux kernel. A local user can execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

47) Deadlock

EUVDB-ID: #VU77246

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-31084

CWE-ID: CWE-833 - Deadlock

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a deadlock in drivers/media/dvb-core/dvb_frontend.c when a task is in !TASK_RUNNING. A local user can trigger a deadlock and crash the kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

48) Use-after-free

EUVDB-ID: #VU77955

Risk: Low

CVSSv4.0: 4.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3141

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the r592_remove() function of drivers/memstick/host/r592.c in media access in the Linux kernel. A local user can trigger a use-after-free error and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

49) Out-of-bounds write

EUVDB-ID: #VU76098

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-31436

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the qfq_change_class() function in net/sched/sch_qfq.c when handling the MTU value provided to the QFQ Scheduler. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

50) Incorrect calculation

EUVDB-ID: #VU77956

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3161

CWE-ID: CWE-682 - Incorrect Calculation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect calculation in the Framebuffer Console (fbcon) in the Linux kernel. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

51) NULL pointer dereference

EUVDB-ID: #VU78009

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3212

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the gfs2 file system in the Linux kernel. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

52) Out-of-bounds read

EUVDB-ID: #VU78008

Risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3268

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition within the relay_file_read_start_pos() function in kernel/relay.c in the relayfs. A local user can trigger an out-of-bounds read error and read contents of memory on the system or crash the kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

53) Race condition

EUVDB-ID: #VU77496

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-33203

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows an attacker to escalate privileges on the system.

The vulnerability exists due to a race condition in drivers/net/ethernet/qualcomm/emac/emac.c. An attacker with physical access to the system can exploit the race by unplugging an emac based device and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

54) Race condition

EUVDB-ID: #VU78539

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-33951

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a race condition when handling GEM objects within the vmw_user_bo_lookup() function in drivers/gpu/drm/vmwgfx/vmwgfx_bo.c. A local user can exploit the race and gain unauthorized access to sensitive information on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

55) Double free

EUVDB-ID: #VU78528

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-33952

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error when handling vmw_buffer_object objects within the vmw_user_bo_lookup() function in drivers/gpu/drm/vmwgfx/vmwgfx_bo.c. A local user can trigger a double free error and execute arbitrary code on the target system with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

56) Race condition

EUVDB-ID: #VU77957

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-35823

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the saa7134_finidev() function in drivers/media/pci/saa7134/saa7134-core.c. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

57) Use-after-free

EUVDB-ID: #VU78062

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-35824

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the dm1105_remove() function in drivers/media/pci/dm1105/dm1105.c. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

58) Use-after-free

EUVDB-ID: #VU78941

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3609

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the the Linux kernel net/sched: cls_u32 component. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

59) Out-of-bounds write

EUVDB-ID: #VU78943

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3611

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in the qfq_change_agg() function in net/sched/sch_qfq.c within the Linux kernel net/sched: sch_qfq component. A local user trigger an out-of-bounds write and execute arbitrary code on the target system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

60) NULL pointer dereference

EUVDB-ID: #VU80578

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3772

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the xfrm_update_ae_params() function in the IP framework for transforming packets (XFRM subsystem). A local user with CAP_NET_ADMIN privileges can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

61) Out-of-bounds write

EUVDB-ID: #VU78928

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3812

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the TUN/TAP device driver in Linux kernel. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

62) Use-after-free

EUVDB-ID: #VU79714

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-40283

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the l2cap_sock_release() function in net/bluetooth/l2cap_sock.c. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

63) Use-after-free

EUVDB-ID: #VU79486

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4128

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within net/sched/cls_fw.c in classifiers (cls_fw, cls_u32, and cls_route) in the Linux Kernel. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

64) Use-after-free

EUVDB-ID: #VU80580

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4206

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the the cls_route component in Linux kernel packet scheduler. A local user can trigger a use-after-free error and execute arbitrary code on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

65) Use-after-free

EUVDB-ID: #VU80587

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4207

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the the cls_fw component in Linux kernel packet scheduler. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

66) Use-after-free

EUVDB-ID: #VU80586

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4208

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the the cls_u32 component in Linux kernel packet scheduler. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

67) Use-after-free

EUVDB-ID: #VU79712

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4132

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the siano smsusb module in the Linux kernel. A local user can trigger a use-after-free error and crash the kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

68) Race condition

EUVDB-ID: #VU79488

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4155

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition in KVM AMD Secure Encrypted Virtualization (SEV) in Linux kernel. A local user can exploit the race and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

69) Out-of-bounds write

EUVDB-ID: #VU81663

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-42753

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in the netfilter subsystem in Linux kernel. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

70) Buffer overflow

EUVDB-ID: #VU83381

Risk: High

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-45871

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within the IGB driver in drivers/net/ethernet/intel/igb/igb_main.c when handling frames larger than the MTU. A remote attacker can send specially crafted traffic to the system, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

71) Use-after-free

EUVDB-ID: #VU80583

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4622

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the unix_stream_sendpage() function in af_unix component. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

72) Use-after-free

EUVDB-ID: #VU81664

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4623

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the the Linux kernel net/sched: sch_hfsc (HFSC qdisc traffic control) component. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

73) Improper access control

EUVDB-ID: #VU82764

Risk: Low

CVSSv4.0: 7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2023-46813

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper access checking in the #VC handler and instruction emulation of the SEV-ES emulation of MMIO accesses. A local user can gain arbitrary write access to kernel memory and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

74) Race condition

EUVDB-ID: #VU83479

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4732

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a race condition caused by a BUG statement referencing pmd_t x within the pfn_swap_entry_to_page () function. A local user can exploit the race and crash the kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

75) Use-after-free

EUVDB-ID: #VU81693

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-4921

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in the qfq_dequeue() function within the the Linux kernel's net/sched: sch_qfq component. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

76) Use-after-free

EUVDB-ID: #VU86268

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-51043

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in drivers/gpu/drm/drm_atomic.c. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

77) Use-after-free

EUVDB-ID: #VU82658

Risk: Low

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2023-5178

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a local authenticated user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the drivers/nvme/target/tcp.c in nvmet_tcp_free_crypto due to a logical bug in the NVMe-oF/TCP subsystem in the Linux kernel. A local authenticated user can trigger a use-after-free error and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

78) Use-after-free

EUVDB-ID: #VU83384

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-5633

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error when running inside a VMware guest with 3D acceleration enabled. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

79) Out-of-bounds write

EUVDB-ID: #VU83311

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-5717

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in the Linux kernel's Linux Kernel Performance Events (perf) component. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

80) NULL pointer dereference

EUVDB-ID: #VU85854

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-6356

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the nvmet_tcp_build_iovec() function in the Linux kernel's NVMe driver. A remote attacker can pass specially crafted TCP packets to the system and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

81) NULL pointer dereference

EUVDB-ID: #VU85853

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-6535

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the nvmet_tcp_execute_request() function in the Linux kernel's NVMe driver. A remote attacker can send specially crafted NVMe-oF/TCP packets to the system and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

82) NULL pointer dereference

EUVDB-ID: #VU85852

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-6536

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the __nvmet_req_complete() function in the Linux kernel's NVMe driver. A remote attacker can send specially crafted NVMe-oF/TCP packets to the system and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

83) Out-of-bounds read

EUVDB-ID: #VU85442

Risk: Low

CVSSv4.0: 4.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-6606

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a boundary condition within the smbCalcSize() function in fs/smb/client/netmisc.c file. A local user can trigger an out-of-bounds read error and gain access to sensitive information or crash the kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

84) Out-of-bounds read

EUVDB-ID: #VU85443

Risk: Low

CVSSv4.0: 4.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-6610

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a boundary condition within the smb2_dump_detail() function in fs/smb/client/smb2ops.c. A local user can trigger an out-of-bounds read error and gain access to sensitive information or crash the kernel.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

85) Use-after-free

EUVDB-ID: #VU84586

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-6817

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local authenticated user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the netfilter nf_tables component in Linux kernel. A local authenticated user can trigger a use-after-free error and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

86) Memory leak

EUVDB-ID: #VU85581

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-0443

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform DoS attack on the target system.

The vulnerability exists due memory leak in the blkgs destruction path in block/blk-cgroup.c. A local user can perform denial of service attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-513.18.1.0.1

kernel-abi-stablelists: before 4.18.0-513.18.1.0.1

python3-perf: before 4.18.0-513.18.1.0.1

perf: before 4.18.0-513.18.1.0.1

kernel-tools-libs-devel: before 4.18.0-513.18.1.0.1

kernel-tools-libs: before 4.18.0-513.18.1.0.1

kernel-tools: before 4.18.0-513.18.1.0.1

kernel-modules-extra: before 4.18.0-513.18.1.0.1

kernel-modules: before 4.18.0-513.18.1.0.1

kernel-headers: before 4.18.0-513.18.1.0.1

kernel-devel: before 4.18.0-513.18.1.0.1

kernel-debug-modules-extra: before 4.18.0-513.18.1.0.1

kernel-debug-modules: before 4.18.0-513.18.1.0.1

kernel-debug-devel: before 4.18.0-513.18.1.0.1

kernel-debug-core: before 4.18.0-513.18.1.0.1

kernel-debug: before 4.18.0-513.18.1.0.1

kernel-cross-headers: before 4.18.0-513.18.1.0.1

kernel-core: before 4.18.0-513.18.1.0.1

kernel: before 4.18.0-513.18.1.0.1

bpftool: before 4.18.0-513.18.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0133

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

87) Out-of-bounds write

EUVDB-ID: #VU86246

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-0646