rpm package
almalinux/kernel-rt-debug
pkg:rpm/almalinux/kernel-rt-debug
Vulnerabilities (1,061)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-30594 | — | < 5.14.0-70.30.1.rt21.102.el9_0 | 5.14.0-70.30.1.rt21.102.el9_0 | May 12, 2022 | The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended restrictions on setting the PT_SUSPEND_SECCOMP flag. | ||
| CVE-2022-1353 | — | < 4.18.0-372.32.1.rt7.189.el8_6 | 4.18.0-372.32.1.rt7.189.el8_6 | Apr 29, 2022 | A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel. This flaw allows a local, unprivileged user to gain access to kernel memory, leading to a system crash or a leak of internal kernel information. | ||
| CVE-2022-1048 | — | < 4.18.0-425.3.1.rt7.213.el8 | 4.18.0-425.3.1.rt7.213.el8 | Apr 29, 2022 | A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hw_params. The hw_free ioctls or similar race condition happens inside ALSA PCM for other ioctls. This flaw allows a local user to crash or potentially escalat | ||
| CVE-2022-1280 | — | < 5.14.0-162.6.1.rt21.168.el9_1 | 5.14.0-162.6.1.rt21.168.el9_1 | Apr 13, 2022 | A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the Linux kernel due to a race problem. This flaw allows a local user privilege attacker to cause a denial of service (DoS) or a kernel information leak. | ||
| CVE-2022-28893 | — | < 4.18.0-425.3.1.rt7.213.el8 | 4.18.0-425.3.1.rt7.213.el8 | Apr 11, 2022 | The SUNRPC subsystem in the Linux kernel through 5.17.2 can call xs_xprt_free before ensuring that sockets are in the intended state. | ||
| CVE-2022-28388 | — | < 5.14.0-284.11.1.rt14.296.el9_2 | 5.14.0-284.11.1.rt14.296.el9_2 | Apr 3, 2022 | usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free. | ||
| CVE-2022-28390 | — | < 4.18.0-425.3.1.rt7.213.el8 | 4.18.0-425.3.1.rt7.213.el8 | Apr 3, 2022 | ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free. | ||
| CVE-2022-1055 | — | < 5.14.0-70.22.1.rt21.94.el9_0 | 5.14.0-70.22.1.rt21.94.el9_0 | Mar 29, 2022 | A use-after-free exists in the Linux Kernel in tc_new_tfilter that could allow a local attacker to gain privilege escalation. The exploit requires unprivileged user namespaces. We recommend upgrading past commit 04c2a47ffb13c29778e2a14e414ad4cb5a5db4b5 | ||
| CVE-2022-27950 | — | < 4.18.0-425.3.1.rt7.213.el8 | 4.18.0-425.3.1.rt7.213.el8 | Mar 28, 2022 | In drivers/hid/hid-elo.c in the Linux kernel before 5.16.11, a memory leak exists for a certain hid_parse error condition. | ||
| CVE-2022-0494 | — | < 5.14.0-70.22.1.rt21.94.el9_0 | 5.14.0-70.22.1.rt21.94.el9_0 | Mar 25, 2022 | A kernel information leak flaw was identified in the scsi_ioctl function in drivers/scsi/scsi_ioctl.c in the Linux kernel. This flaw allows a local attacker with a special user privilege (CAP_SYS_ADMIN or CAP_SYS_RAWIO) to create issues with confidentiality. | ||
| CVE-2022-0854 | — | < 4.18.0-425.3.1.rt7.213.el8 | 4.18.0-425.3.1.rt7.213.el8 | Mar 23, 2022 | A memory leak flaw was found in the Linux kernel’s DMA subsystem, in the way a user calls DMA_FROM_DEVICE. This flaw allows a local user to read random memory from the kernel space. | ||
| CVE-2022-27666 | — | < 5.14.0-70.17.1.rt21.89.el9_0 | 5.14.0-70.17.1.rt21.89.el9_0 | Mar 23, 2022 | A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat. | ||
| CVE-2021-26341 | — | < 5.14.0-284.11.1.rt14.296.el9_2 | 5.14.0-284.11.1.rt14.296.el9_2 | Mar 11, 2022 | Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage. | ||
| CVE-2021-3640 | — | < 4.18.0-425.3.1.rt7.213.el8 | 4.18.0-425.3.1.rt7.213.el8 | Mar 3, 2022 | A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable fau | ||
| CVE-2020-36516 | — | < 4.18.0-425.3.1.rt7.213.el8 | 4.18.0-425.3.1.rt7.213.el8 | Feb 26, 2022 | An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment policy allows an off-path attacker to inject data into a victim's TCP session or terminate that session. | ||
| CVE-2022-25265 | — | < 4.18.0-477.10.1.rt7.274.el8_8 | 4.18.0-477.10.1.rt7.274.el8_8 | Feb 16, 2022 | In the Linux kernel through 5.16.10, certain binary files may have the exec-all attribute if they were built in approximately 2003 (e.g., with GCC 3.2.2 and Linux kernel 2.4.20). This can cause execution of bytes located in supposedly non-executable regions of a file. | ||
| CVE-2022-0617 | — | < 4.18.0-425.3.1.rt7.213.el8 | 4.18.0-425.3.1.rt7.213.el8 | Feb 16, 2022 | A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udf_file_write_iter function for the malicious UDF image. A local user could use this flaw to crash the system. Actual from Linux kernel 4.2-rc1 till 5.17-rc2. | ||
| CVE-2022-24448 | — | < 4.18.0-425.3.1.rt7.213.el8 | 4.18.0-425.3.1.rt7.213.el8 | Feb 4, 2022 | An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5. If an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should occur, but the server instead returns | ||
| CVE-2020-26555 | — | < 5.14.0-427.13.1.el9_4 | 5.14.0-427.13.1.el9_4 | May 24, 2021 | Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN. | ||
| CVE-2021-30002 | — | < 4.18.0-425.3.1.rt7.213.el8 | 4.18.0-425.3.1.rt7.213.el8 | Apr 2, 2021 | An issue was discovered in the Linux kernel before 5.11.3 when a webcam device exists. video_usercopy in drivers/media/v4l2-core/v4l2-ioctl.c has a memory leak for large arguments, aka CID-fb18802a338b. |
- CVE-2022-30594May 12, 2022affected < 5.14.0-70.30.1.rt21.102.el9_0fixed 5.14.0-70.30.1.rt21.102.el9_0
The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended restrictions on setting the PT_SUSPEND_SECCOMP flag.
- CVE-2022-1353Apr 29, 2022affected < 4.18.0-372.32.1.rt7.189.el8_6fixed 4.18.0-372.32.1.rt7.189.el8_6
A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel. This flaw allows a local, unprivileged user to gain access to kernel memory, leading to a system crash or a leak of internal kernel information.
- CVE-2022-1048Apr 29, 2022affected < 4.18.0-425.3.1.rt7.213.el8fixed 4.18.0-425.3.1.rt7.213.el8
A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hw_params. The hw_free ioctls or similar race condition happens inside ALSA PCM for other ioctls. This flaw allows a local user to crash or potentially escalat
- CVE-2022-1280Apr 13, 2022affected < 5.14.0-162.6.1.rt21.168.el9_1fixed 5.14.0-162.6.1.rt21.168.el9_1
A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the Linux kernel due to a race problem. This flaw allows a local user privilege attacker to cause a denial of service (DoS) or a kernel information leak.
- CVE-2022-28893Apr 11, 2022affected < 4.18.0-425.3.1.rt7.213.el8fixed 4.18.0-425.3.1.rt7.213.el8
The SUNRPC subsystem in the Linux kernel through 5.17.2 can call xs_xprt_free before ensuring that sockets are in the intended state.
- CVE-2022-28388Apr 3, 2022affected < 5.14.0-284.11.1.rt14.296.el9_2fixed 5.14.0-284.11.1.rt14.296.el9_2
usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free.
- CVE-2022-28390Apr 3, 2022affected < 4.18.0-425.3.1.rt7.213.el8fixed 4.18.0-425.3.1.rt7.213.el8
ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free.
- CVE-2022-1055Mar 29, 2022affected < 5.14.0-70.22.1.rt21.94.el9_0fixed 5.14.0-70.22.1.rt21.94.el9_0
A use-after-free exists in the Linux Kernel in tc_new_tfilter that could allow a local attacker to gain privilege escalation. The exploit requires unprivileged user namespaces. We recommend upgrading past commit 04c2a47ffb13c29778e2a14e414ad4cb5a5db4b5
- CVE-2022-27950Mar 28, 2022affected < 4.18.0-425.3.1.rt7.213.el8fixed 4.18.0-425.3.1.rt7.213.el8
In drivers/hid/hid-elo.c in the Linux kernel before 5.16.11, a memory leak exists for a certain hid_parse error condition.
- CVE-2022-0494Mar 25, 2022affected < 5.14.0-70.22.1.rt21.94.el9_0fixed 5.14.0-70.22.1.rt21.94.el9_0
A kernel information leak flaw was identified in the scsi_ioctl function in drivers/scsi/scsi_ioctl.c in the Linux kernel. This flaw allows a local attacker with a special user privilege (CAP_SYS_ADMIN or CAP_SYS_RAWIO) to create issues with confidentiality.
- CVE-2022-0854Mar 23, 2022affected < 4.18.0-425.3.1.rt7.213.el8fixed 4.18.0-425.3.1.rt7.213.el8
A memory leak flaw was found in the Linux kernel’s DMA subsystem, in the way a user calls DMA_FROM_DEVICE. This flaw allows a local user to read random memory from the kernel space.
- CVE-2022-27666Mar 23, 2022affected < 5.14.0-70.17.1.rt21.89.el9_0fixed 5.14.0-70.17.1.rt21.89.el9_0
A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat.
- CVE-2021-26341Mar 11, 2022affected < 5.14.0-284.11.1.rt14.296.el9_2fixed 5.14.0-284.11.1.rt14.296.el9_2
Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage.
- CVE-2021-3640Mar 3, 2022affected < 4.18.0-425.3.1.rt7.213.el8fixed 4.18.0-425.3.1.rt7.213.el8
A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable fau
- CVE-2020-36516Feb 26, 2022affected < 4.18.0-425.3.1.rt7.213.el8fixed 4.18.0-425.3.1.rt7.213.el8
An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment policy allows an off-path attacker to inject data into a victim's TCP session or terminate that session.
- CVE-2022-25265Feb 16, 2022affected < 4.18.0-477.10.1.rt7.274.el8_8fixed 4.18.0-477.10.1.rt7.274.el8_8
In the Linux kernel through 5.16.10, certain binary files may have the exec-all attribute if they were built in approximately 2003 (e.g., with GCC 3.2.2 and Linux kernel 2.4.20). This can cause execution of bytes located in supposedly non-executable regions of a file.
- CVE-2022-0617Feb 16, 2022affected < 4.18.0-425.3.1.rt7.213.el8fixed 4.18.0-425.3.1.rt7.213.el8
A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udf_file_write_iter function for the malicious UDF image. A local user could use this flaw to crash the system. Actual from Linux kernel 4.2-rc1 till 5.17-rc2.
- CVE-2022-24448Feb 4, 2022affected < 4.18.0-425.3.1.rt7.213.el8fixed 4.18.0-425.3.1.rt7.213.el8
An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5. If an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should occur, but the server instead returns
- CVE-2020-26555May 24, 2021affected < 5.14.0-427.13.1.el9_4fixed 5.14.0-427.13.1.el9_4
Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN.
- CVE-2021-30002Apr 2, 2021affected < 4.18.0-425.3.1.rt7.213.el8fixed 4.18.0-425.3.1.rt7.213.el8
An issue was discovered in the Linux kernel before 5.11.3 when a webcam device exists. video_usercopy in drivers/media/v4l2-core/v4l2-ioctl.c has a memory leak for large arguments, aka CID-fb18802a338b.
Page 53 of 54