SB2024112949 - openEuler 20.03 LTS SP4 update for kernel

Main Vulnerability Database SB2024112949

SB2024112949 - openEuler 20.03 LTS SP4 update for kernel

Published: November 29, 2024

Security Bulletin ID SB2024112949

Severity

Low

Patch available

YES

Number of vulnerabilities 6

Exploitation vector Local access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 6 secuirty vulnerabilities.

1) Input validation error (CVE-ID: CVE-2024-47745)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the SYSCALL_DEFINE5() function in mm/mmap.c. A local user can perform a denial of service (DoS) attack.

2) Out-of-bounds read (CVE-ID: CVE-2024-50115)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the nested_svm_get_tdp_pdptr() function in arch/x86/kvm/svm/nested.c. A local user can perform a denial of service (DoS) attack.

3) NULL pointer dereference (CVE-ID: CVE-2024-50117)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the amdgpu_atif_call() function in drivers/gpu/drm/amd/amdgpu/amdgpu_acpi.c. A local user can perform a denial of service (DoS) attack.

4) Resource management error (CVE-ID: CVE-2024-50195)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the pc_clock_settime() function in kernel/time/posix-clock.c. A local user can perform a denial of service (DoS) attack.

5) Use of uninitialized resource (CVE-ID: CVE-2024-50237)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the ieee80211_get_tx_power() function in net/mac80211/cfg.c. A local user can perform a denial of service (DoS) attack.

6) Permissions, Privileges, and Access Controls (CVE-ID: CVE-2016-10044)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper privilege management within the aio_mount() function in fs/aio.c. A local user can bypass SELinux W^X policy restrictions and execute arbitrary code with elevated privileges.

Remediation

Install update from vendor's website.

References

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-2449

Vulnerable Software

openEuler: 20.03 LTS SP4
python3-perf-debuginfo: before 4.19.90-2411.4.0.0304
python3-perf: before 4.19.90-2411.4.0.0304
python2-perf-debuginfo: before 4.19.90-2411.4.0.0304
python2-perf: before 4.19.90-2411.4.0.0304
perf-debuginfo: before 4.19.90-2411.4.0.0304
perf: before 4.19.90-2411.4.0.0304
kernel-tools-devel: before 4.19.90-2411.4.0.0304
kernel-tools-debuginfo: before 4.19.90-2411.4.0.0304
kernel-tools: before 4.19.90-2411.4.0.0304
kernel-source: before 4.19.90-2411.4.0.0304
kernel-devel: before 4.19.90-2411.4.0.0304
kernel-debugsource: before 4.19.90-2411.4.0.0304
kernel-debuginfo: before 4.19.90-2411.4.0.0304
bpftool-debuginfo: before 4.19.90-2411.4.0.0304
bpftool: before 4.19.90-2411.4.0.0304
kernel: before 4.19.90-2411.4.0.0304