kernel-5.14.0-70.26.1.el9_0
エラータID: AXSA:2022-4303:19
リリース日:
2022/12/05 Monday - 23:54
題名:
kernel-5.14.0-70.26.1.el9_0
影響のあるチャネル:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- net/netfilter/nf_tables_api.c の nft_set_desc_concat_parse() には、
バッファオーバーフローの問題があるため、ローカルの攻撃者により、
サービス拒否 (システムクラッシュ) 状態、およびコード実行が可能
となる脆弱性が存在します。(CVE-2022-2078)
- Netfilter サブシステムの net/netfilter/nf_tables_api.c の
nft_set_elem_init () には、型の取り違え (Type Confusion) によるヒープ
バッファーオーバーフローの問題があるため、ローカルの攻撃者により、
NFT_DATA_VERDICT タイプの不正な入力を介して、クラッシュやシス
テム上の特権昇格を可能とする脆弱性が存在します。(CVE-2022-34918)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2022-2078
A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw allows an attacker to trigger a buffer overflow via nft_set_desc_concat_parse() , causing a denial of service and possibly to run code.
A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw allows an attacker to trigger a buffer overflow via nft_set_desc_concat_parse() , causing a denial of service and possibly to run code.
CVE-2022-34918
An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nft_set_elem_init (leading to a buffer overflow) could be used by a local attacker to escalate privileges, a different vulnerability than CVE-2022-32250. (The attacker can obtain root access, but must start with an unprivileged user namespace to obtain CAP_NET_ADMIN access.) This can be fixed in nft_setelem_parse_data in net/netfilter/nf_tables_api.c.
An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nft_set_elem_init (leading to a buffer overflow) could be used by a local attacker to escalate privileges, a different vulnerability than CVE-2022-32250. (The attacker can obtain root access, but must start with an unprivileged user namespace to obtain CAP_NET_ADMIN access.) This can be fixed in nft_setelem_parse_data in net/netfilter/nf_tables_api.c.
追加情報:
N/A
ダウンロード:
SRPMS
- kernel-5.14.0-70.26.1.el9_0.src.rpm
MD5: 3fe2dab74567e700d2064b13b39238f2
SHA-256: f3c13ef03af707922431a9a1d4378cf554b1351445a00a414f49554de13044f0
Size: 127.18 MB
Asianux Server 9 for x86_64
- bpftool-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: 8acf78892866d5df9469f7a4da000a8c
SHA-256: f26e918ffdbf5b2acc70b231d47d4e76d9687096fad8ee3f068f3448f36ea4b5
Size: 1.32 MB - kernel-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: 9ac0e5996cc90c650c064ba978f07eab
SHA-256: d3d0d4abd38a27bc979459d0c32cf034b7e81dbe64589c6018e7102ea7eab02a
Size: 625.01 kB - kernel-abi-stablelists-5.14.0-70.26.1.el9_0.noarch.rpm
MD5: 1f460513f5dd151f7e01f4ddc903167c
SHA-256: b4575ea551e243cccb675b90d500f9a2636d97cbe36eafb7d8da168dddf11f02
Size: 626.33 kB - kernel-core-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: a511cdf685201081eb3d5c1dc394fdea
SHA-256: 9605affceb64b1db3072c8e000a4d2cbd78902a8b6bf693c1ec559e741195c5e
Size: 33.87 MB - kernel-cross-headers-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: fcf01a8ac1154ecbcec7d4082a3bfc34
SHA-256: b701a3a5b55bc2c070f07a23be5b4da1a17799d364e605a0bf4a5c4c2e2bdfb9
Size: 5.99 MB - kernel-debug-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: a700ca57af3d705806893fd52583eb35
SHA-256: 7432428bbb8c216de44c53690271da9eeff21dcc2f1a055c75124957bb71f9cd
Size: 625.11 kB - kernel-debug-core-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: 73182adff0a700812c994b8f34f1453e
SHA-256: c380c26a57d7066080c1b6eeca574c2f70ba4cd4d870afff9c32901709a70a88
Size: 58.72 MB - kernel-debug-devel-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: 63841fe4fe4a16a9877834bb4e3c3a31
SHA-256: 89f38bb50e195bf0ff50e90339c51e7cca6ef00405b13eedf1c45f77adaa9269
Size: 15.18 MB - kernel-debug-devel-matched-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: 67a3440ff83d884b1a81fa0fc82b2e18
SHA-256: e177c9877ed5b86519767ec21ef1fb3bb00532f1700b78d7b2ff410dc1e068d5
Size: 625.17 kB - kernel-debug-modules-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: 6c6f4dc9a5cc3e7251dd68b4229cd546
SHA-256: 3df7914a98a1d4d93ee76c374cb30673bd9cf9fc724898ab7d162cd0e7d7db8e
Size: 40.82 MB - kernel-debug-modules-extra-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: df5310e3e6625202da5338d823399546
SHA-256: 504b052b297cd948a9a1936d148778e6cb49f5b912798756194641e2e8d66c38
Size: 1.31 MB - kernel-devel-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: 62330ef31d0bacf4e6043719b69c1f63
SHA-256: cd4b975540a3aeda3d135a649cfa63f6d749ec3fae7deee520a792b010a7873a
Size: 15.06 MB - kernel-devel-matched-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: 551a792a16355ecfc18962f0a5effdf7
SHA-256: 8ce88a020a4c0152d8ad6388fab09060e46943a01d4ebdeec5af45d6d34f5b65
Size: 625.14 kB - kernel-doc-5.14.0-70.26.1.el9_0.noarch.rpm
MD5: 01fed7be8a1553e1be08eafc95066945
SHA-256: 34443ca5b59f76eaa92bc8a900586d3b99d298c854239639deb722a99a2f4a0a
Size: 28.56 MB - kernel-headers-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: 1a56fdb55dfb565143a931033863f97d
SHA-256: 32cb87a42fc03a6b9908ab1766cf2cb64f9324a9f474549107bed0c2ae5b475d
Size: 1.97 MB - kernel-modules-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: 3cbb8ea0e98896be9a394155d61b68d5
SHA-256: 145907a4cd9dcb6fb050577d9c8b7ce3b5fd6f533403fb3d5840d85cfe415c0c
Size: 21.12 MB - kernel-modules-extra-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: c21f7b3364bddc1f052268cd8a5a8076
SHA-256: 43e5890c19ba4b72f880311d66cad9142bdf3a78d1172baedcb52fb6fab49141
Size: 0.97 MB - kernel-tools-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: f189bab9ab89a266215f9034b4fdd18f
SHA-256: 9d9482bc397c3eb16baef52dda263ec3e8f7e127ff5370f913394b2b57449573
Size: 845.49 kB - kernel-tools-libs-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: 00375ebe275de3fc2449fc9d979e9373
SHA-256: d4459965bf504da7432d55672cb3291344442c415291b316400e88d6efce40b1
Size: 634.89 kB - kernel-tools-libs-devel-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: c8338664b2858628703218fc550998d6
SHA-256: 93bf866770e8d0fcc3d578699520cf6e4b4193e848366da9e8f64c781d2786ce
Size: 627.42 kB - perf-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: 1bbd9144eda79fa17a0d2eeb0d03f6f8
SHA-256: 05a0acb778a3a17c7067887750746683bcdc7b97a12b1eb1758382ba178b9582
Size: 2.89 MB - python3-perf-5.14.0-70.26.1.el9_0.x86_64.rpm
MD5: d447c511aa9e56eb53b425e46b1b7b96
SHA-256: 26d214750532888e50ed728064ec8d1b46571270c2dbf64927e6b6102871e859
Size: 754.53 kB
English