kernel-5.14.0-162.22.2.el9_1
エラータID: AXSA:2023-5243:10
リリース日:
2023/03/30 Thursday - 04:24
題名:
kernel-5.14.0-162.22.2.el9_1
影響のあるチャネル:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- Traffic Control サブシステムには、CPU ソフトロックアップ (ABBA
デッドロック) を引き起こす問題があるため、ローカルの非特権ユーザー
により、送信パケットを入力インターフェースにリダイレクトする特定
のネットワーク設定を介して、サービス拒否攻撃を可能とする脆弱性が
存在します。(CVE-2022-4269)
- TUN/TAP デバイスドライバーの register_netdevice() には、TUN/TAP
デバイスの登録失敗時にメモリ領域を二重解放してしまう問題がある
ため、ローカルの攻撃者により、特権昇格やクラッシュの発生に起因する
サービス拒否攻撃を可能とする脆弱性が存在します。(CVE-2022-4744)
- sound サブシステムには、ロック処理が漏れていたことに起因する
解放後利用の問題があるため、ローカルの攻撃者により、特権昇格を
可能とする脆弱性が存在します。(CVE-2023-0266)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2022-4269
A flaw was found in the Linux kernel Traffic Control (TC) subsystem. Using a specific networking configuration (redirecting egress packets to ingress using TC action "mirred") a local unprivileged user could trigger a CPU soft lockup (ABBA deadlock) when the transport protocol in use (TCP or SCTP) does a retransmission, resulting in a denial of service condition.
A flaw was found in the Linux kernel Traffic Control (TC) subsystem. Using a specific networking configuration (redirecting egress packets to ingress using TC action "mirred") a local unprivileged user could trigger a CPU soft lockup (ABBA deadlock) when the transport protocol in use (TCP or SCTP) does a retransmission, resulting in a denial of service condition.
CVE-2022-4744
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE-2023-0266
A use after free vulnerability exists in the ALSA PCM package in the Linux Kernel. SNDRV_CTL_IOCTL_ELEM_{READ|WRITE}32 is missing locks that can be used in a use-after-free that can result in a priviledge escalation to gain ring0 access from the system user. We recommend upgrading past commit 56b88b50565cd8b946a2d00b0c83927b7ebb055e
A use after free vulnerability exists in the ALSA PCM package in the Linux Kernel. SNDRV_CTL_IOCTL_ELEM_{READ|WRITE}32 is missing locks that can be used in a use-after-free that can result in a priviledge escalation to gain ring0 access from the system user. We recommend upgrading past commit 56b88b50565cd8b946a2d00b0c83927b7ebb055e
追加情報:
N/A
ダウンロード:
SRPMS
- kernel-5.14.0-162.22.2.el9_1.src.rpm
MD5: d3ddddc9f90398a4c1d39d5cb0a4e8e3
SHA-256: e75483863ed3b29d44eafd49557d9af5b04bfedc656c9b003b8c1bfad32c3773
Size: 131.28 MB
Asianux Server 9 for x86_64
- bpftool-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 76c582a994355510312722d4ac2f0111
SHA-256: 303b8842113a9c7a95da0528157f072b59bd8b42e2e2ee93fe130363555c9d12
Size: 2.58 MB - kernel-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: ec7d4a2a4691fa95ec41853dc6e017ad
SHA-256: fbabe14535c5840821389301fd3fef044afa61663b93143f51a3f0d742b406de
Size: 1.86 MB - kernel-abi-stablelists-5.14.0-162.22.2.el9_1.noarch.rpm
MD5: 12b9073879b8b24a6d4ba869c160f177
SHA-256: 69ebef2df5c92abcd8aed970ce23248e9ca8da21addcf73f4abc8e27f10b47af
Size: 1.86 MB - kernel-core-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: da7d409a790766bcbb60812d9902e79f
SHA-256: caec33066ac4a855c863ef9c1ea011329a77265661bec884c18fbb83fb5d7235
Size: 45.44 MB - kernel-cross-headers-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: dcd8dcbb4a5ba8834597408646d653ed
SHA-256: f4d17df90d3da23c9f27f2bf6cecff216161e1074172c814afe7d40a976433b8
Size: 7.34 MB - kernel-debug-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 0d736bad4f1610e075d4192a6beb7958
SHA-256: 97bbe5835a60bd01bd7622bd2ea59a10de2a8cbe61c7e9ae5e8a84521cf85188
Size: 1.86 MB - kernel-debug-core-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 75bcfe4ba2e4ce354ef490fcabd6179b
SHA-256: 22e21812396c744d50021b34cc1d24ef6a0ba498bcbf96fe2e5a36c3a6dc93a8
Size: 67.12 MB - kernel-debug-devel-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 87de63230e6f4c42fd5235a66938d5a3
SHA-256: b845aa882130ec6302751c65e352768642bb1c9343fa21002d1c167785e29e35
Size: 16.70 MB - kernel-debug-devel-matched-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 05a0bdb9e227a99f10320fbada95660b
SHA-256: 31e57e54cfc06b7b533f9efcf5b540069ce892f1c38cbee0c884d981b6a56dbe
Size: 1.86 MB - kernel-debug-modules-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 0fe5e077799b1f843d9cad24341e6ff2
SHA-256: fa2814a1962b8a2b8ea220e3ebdd1fdac7057ff2d08aebaff805ee2f4b2a1a05
Size: 52.28 MB - kernel-debug-modules-extra-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 7e0f4732643769cee0df9b971be35ebb
SHA-256: f5ad252718e15a990231e3c6a5f701eaba4afc29932e7298b95ddeea24efcc6b
Size: 2.68 MB - kernel-devel-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: d7d769987437125df27b912d80e3c6b0
SHA-256: c8047dbaf50c0ca0c38207867f8239bb1a54e993bffdfee1f7120698e16ddd18
Size: 16.58 MB - kernel-devel-matched-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 59541c7e1a41ec7d7c98d9301580d8df
SHA-256: d2415762842aae4701c3c59d875cda1ecc2125b6badd2b76dc2555442d417b46
Size: 1.86 MB - kernel-doc-5.14.0-162.22.2.el9_1.noarch.rpm
MD5: 49bbcbc6ff85ea789c0d57fdabb99c1b
SHA-256: 6e31fd796892ebf26230c6fca827f1b4415fa83b7715eeb12d65ef9361fe9297
Size: 29.91 MB - kernel-headers-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 08c03619069bd286821a851e3b3e0b63
SHA-256: 5bf0d08bfe067ccb7d5d08adc66baaffd82c42fa0395524a0a9a7052dfe6f20f
Size: 3.25 MB - kernel-modules-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 2bbc1cdee941692511a6047887d9d42e
SHA-256: 7fd4475c51a74761a59431f56818f17990d462dd85a22e91d5c649f6e877f19b
Size: 33.44 MB - kernel-modules-extra-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 484c2c59f6911c9a192a14a4be3e1d32
SHA-256: e4411e4329bad26212a6a3e50d63db1e8d135f6ac51896eeda2ec05ee946d884
Size: 2.58 MB - kernel-tools-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 664cc81b03efa6a37b6ac9f3e810291c
SHA-256: b5b1fc511b227046bf587ff7de042d39d2a3b0fd96e69ef4cffa665b3194d6a8
Size: 2.08 MB - kernel-tools-libs-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: e759b689fa73bc390e18f3bae3a8d9d3
SHA-256: 60aeea01b6a3177014b846370409266246252357c61673f2b3e554a1600ffdd7
Size: 1.87 MB - kernel-tools-libs-devel-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 53f2f8864c9e43501b8430889c65566f
SHA-256: ad331abab0e04205a39b343deab52018df645fb92b6dd252a0f233e1dd020b87
Size: 1.86 MB - perf-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 0a27d2e48286b070eab7fd0b6f69527b
SHA-256: 3c4ec93dd7f74a03e6ca19d66f42b931c481bb32f39bde929ab50def1e393e27
Size: 4.18 MB - python3-perf-5.14.0-162.22.2.el9_1.x86_64.rpm
MD5: 11e45744f02ae9d3c32fbb98b84f88a3
SHA-256: 8aa74e80a507e824d2afe6f52b3f1719d8f1b5dce554a9c43089de2823f66bec
Size: 1.99 MB