rpm package

almalinux/kernel-abi-stablelists

pkg:rpm/almalinux/kernel-abi-stablelists

Vulnerabilities (1,161)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2022-0002	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Mar 11, 2022	Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
CVE-2021-26341	—	< 5.14.0-284.11.1.el9_2	5.14.0-284.11.1.el9_2	Mar 11, 2022	Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage.
CVE-2021-26401	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Mar 11, 2022	LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.
CVE-2022-0001	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Mar 11, 2022	Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
CVE-2021-3744	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Mar 4, 2022	A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). This vulnerability is similar with the older CVE-2019-18808.
CVE-2021-3743	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Mar 4, 2022	An out-of-bounds (OOB) memory read flaw was found in the Qualcomm IPC router protocol in the Linux kernel. A missing sanity check allows a local attacker to gain access to out-of-bounds memory, leading to a system crash or a leak of internal kernel information. The highest threat
CVE-2021-3640	—	< 4.18.0-425.3.1.el8	4.18.0-425.3.1.el8	Mar 3, 2022	A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable fau
CVE-2021-4002	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Mar 3, 2022	A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way the user maps some regions of memory twice using shmget() which are aligned to PUD alignment with the fault of some of the memory pages. A local user could use this flaw to get unauthorized acces
CVE-2021-3772	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Mar 2, 2022	A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses.
CVE-2020-36516	—	< 4.18.0-425.3.1.el8	4.18.0-425.3.1.el8	Feb 26, 2022	An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment policy allows an off-path attacker to inject data into a victim's TCP session or terminate that session.
CVE-2021-20322	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Feb 18, 2022	A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomizat
CVE-2022-25265	—	< 4.18.0-477.10.1.el8_8	4.18.0-477.10.1.el8_8	Feb 16, 2022	In the Linux kernel through 5.16.10, certain binary files may have the exec-all attribute if they were built in approximately 2003 (e.g., with GCC 3.2.2 and Linux kernel 2.4.20). This can cause execution of bytes located in supposedly non-executable regions of a file.
CVE-2021-3752	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Feb 16, 2022	A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The highest threat from this vuln
CVE-2021-3773	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Feb 16, 2022	A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks.
CVE-2022-0617	—	< 4.18.0-425.3.1.el8	4.18.0-425.3.1.el8	Feb 16, 2022	A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udf_file_write_iter function for the malicious UDF image. A local user could use this flaw to crash the system. Actual from Linux kernel 4.2-rc1 till 5.17-rc2.
CVE-2022-24448	—	< 4.18.0-425.3.1.el8	4.18.0-425.3.1.el8	Feb 4, 2022	An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5. If an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should occur, but the server instead returns
CVE-2022-0286	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Jan 31, 2022	A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead to local denial of service.
CVE-2021-4083	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Jan 18, 2022	A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition. This flaw allows a local user to crash the system or escalat
CVE-2021-45485	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Dec 25, 2021	In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses.
CVE-2021-45486	—	< 4.18.0-372.9.1.el8	4.18.0-372.9.1.el8	Dec 25, 2021	In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small.

CVE-2022-0002Mar 11, 2022
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
CVE-2021-26341Mar 11, 2022
affected < 5.14.0-284.11.1.el9_2fixed 5.14.0-284.11.1.el9_2
Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage.
CVE-2021-26401Mar 11, 2022
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.
CVE-2022-0001Mar 11, 2022
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
CVE-2021-3744Mar 4, 2022
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). This vulnerability is similar with the older CVE-2019-18808.
CVE-2021-3743Mar 4, 2022
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
An out-of-bounds (OOB) memory read flaw was found in the Qualcomm IPC router protocol in the Linux kernel. A missing sanity check allows a local attacker to gain access to out-of-bounds memory, leading to a system crash or a leak of internal kernel information. The highest threat
CVE-2021-3640Mar 3, 2022
affected < 4.18.0-425.3.1.el8fixed 4.18.0-425.3.1.el8
A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable fau
CVE-2021-4002Mar 3, 2022
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way the user maps some regions of memory twice using shmget() which are aligned to PUD alignment with the fault of some of the memory pages. A local user could use this flaw to get unauthorized acces
CVE-2021-3772Mar 2, 2022
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses.
CVE-2020-36516Feb 26, 2022
affected < 4.18.0-425.3.1.el8fixed 4.18.0-425.3.1.el8
An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment policy allows an off-path attacker to inject data into a victim's TCP session or terminate that session.
CVE-2021-20322Feb 18, 2022
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomizat
CVE-2022-25265Feb 16, 2022
affected < 4.18.0-477.10.1.el8_8fixed 4.18.0-477.10.1.el8_8
In the Linux kernel through 5.16.10, certain binary files may have the exec-all attribute if they were built in approximately 2003 (e.g., with GCC 3.2.2 and Linux kernel 2.4.20). This can cause execution of bytes located in supposedly non-executable regions of a file.
CVE-2021-3752Feb 16, 2022
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The highest threat from this vuln
CVE-2021-3773Feb 16, 2022
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks.
CVE-2022-0617Feb 16, 2022
affected < 4.18.0-425.3.1.el8fixed 4.18.0-425.3.1.el8
A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udf_file_write_iter function for the malicious UDF image. A local user could use this flaw to crash the system. Actual from Linux kernel 4.2-rc1 till 5.17-rc2.
CVE-2022-24448Feb 4, 2022
affected < 4.18.0-425.3.1.el8fixed 4.18.0-425.3.1.el8
An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5. If an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should occur, but the server instead returns
CVE-2022-0286Jan 31, 2022
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead to local denial of service.
CVE-2021-4083Jan 18, 2022
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition. This flaw allows a local user to crash the system or escalat
CVE-2021-45485Dec 25, 2021
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses.
CVE-2021-45486Dec 25, 2021
affected < 4.18.0-372.9.1.el8fixed 4.18.0-372.9.1.el8
In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small.

Page 57 of 59