KernelCare Directory

kernel-4.18.0-553.lve.el7h (cl7h)
Kernel Update Version: 4.18.0-553.5.1.lve.1.el7h
Build Date: 2024-06-19 16:16:24
Release Date: 2024-07-10 07:24:47
Release: K20240619_22

CVE-2021-47153, CVSSv2 Score: 6.0
Description:
i2c: i801: Don't generate an interrupt on bus reset
CVE: https://access.redhat.com/security/cve/CVE-2021-47153
Patch: rhel8/4.18.0-553.5.1.el8_10/CVE-2021-47153-i2c-i801-don-t-generate-an-interrupt-on-bus-reset.patch
From: 4.18.0-553.5.1.el8_10

CVE-2020-36777, CVSSv2 Score: 5.5
Description:
media: dvbdev: Fix memory leak in dvb_media_device_free()
CVE: https://access.redhat.com/security/cve/CVE-2020-36777
Patch: rhel8/4.18.0-553.5.1.el8_10/CVE-2020-36777-media-dvbdev-fix-memory-leak-in-dvb_media_device_free.patch
From: 4.18.0-553.5.1.el8_10

CVE-2021-47171, CVSSv2 Score: 5.5
Description:
net: usb: fix memory leak in smsc75xx_bind
CVE: https://access.redhat.com/security/cve/CVE-2021-47171
Patch: rhel8/4.18.0-553.5.1.el8_10/CVE-2021-47171-net-usb-fix-memory-leak-in-smsc75xx-bind.patch
From: 4.18.0-553.5.1.el8_10

CVE-2021-47171, CVSSv2 Score: 5.5
Description:
net: usb: fix possible use-after-free in
CVE: https://access.redhat.com/security/cve/CVE-2021-47171
Patch: rhel8/4.18.0-553.5.1.el8_10/CVE-2021-47171-net-usb-fix-possible-use-after-free-in-smsc75xx_bind.patch
From: 4.18.0-553.5.1.el8_10

CVE-2023-6240, CVSSv2 Score: 6.5
Description:
crypto: akcipher - default implementations for request callbacks
CVE: https://access.redhat.com/security/cve/CVE-2023-6240
Patch: rhel8/4.18.0-553.5.1.el8_10/CVE-2023-6240-crypto-akcipher-default-implementations-for-request-callbacks.patch
From: 4.18.0-553.5.1.el8_10

CVE-2023-6240, CVSSv2 Score: 6.5
Description:
crypto: testmgr - split akcipher tests by a key type
CVE: https://access.redhat.com/security/cve/CVE-2023-6240
Patch: rhel8/4.18.0-553.5.1.el8_10/CVE-2023-6240-crypto-testmgr-split-akcipher-tests-by-a-key-type.patch
From: 4.18.0-553.5.1.el8_10

CVE-2023-6240, CVSSv2 Score: 6.5
Description:
crypto: akcipher - Disable signing and decryption
CVE: https://access.redhat.com/security/cve/CVE-2023-6240
Patch: rhel8/4.18.0-553.5.1.el8_10/CVE-2023-6240-crypto-akcipher-disable-signing-and-decryption.patch
From: 4.18.0-553.5.1.el8_10

CVE-2023-52520, CVSSv2 Score: 5.5
Description:
platform/x86: think-lmi: Fix reference leak
CVE: https://access.redhat.com/security/cve/CVE-2023-52520
Patch: rhel8/4.18.0-553.5.1.el8_10/CVE-2023-52520-platform-x86-think-lmi-fix-reference-leak.patch
From: 4.18.0-553.5.1.el8_10

CVE-2024-26610, CVSSv2 Score: 6.1
Description:
wifi: iwlwifi: fix a memory corruption
CVE: https://access.redhat.com/security/cve/CVE-2024-26610
Patch: rhel8/4.18.0-553.5.1.el8_10/CVE-2024-26610-wifi-iwlwifi-fix-a-memory-corruption.patch
From: 4.18.0-553.5.1.el8_10

CVE-2023-52610, CVSSv2 Score: 6.4
Description:
net/sched: act_ct: fix skb leak and crash on ooo frags
CVE: https://access.redhat.com/security/cve/CVE-2023-52610
Patch: rhel8/4.18.0-553.5.1.el8_10/CVE-2023-52610-net-sched-act-ct-fix-skb-leak-and-crash-on-ooo-frags.patch
From: 4.18.0-553.5.1.el8_10

CVE-2023-52598, CVSSv2 Score:
Description:
Out of scope as the patch is for s390 arch only, x86_64 is not affected
CVE:
Patch: skipped/CVE-2023-52598.patch
From:

CVE-2022-48669, CVSSv2 Score:
Description:
Out of scope as the patch is for powerpc arch only, x86_64 is not affected
CVE:
Patch: skipped/CVE-2022-48669.patch
From:

CVE-2023-52607, CVSSv2 Score:
Description:
Out of scope as the patch is for powerpc arch only, x86_64 is not affected
CVE:
Patch: skipped/CVE-2023-52607.patch
From:

N/A, CVSSv2 Score: N/A
Description:
x86 xen add xenpv restore regs and return to usermode
CVE: N/A
Patch: 4.18.0/x86-xen-Add-xenpv_restore_regs_and_return_to_usermode-el8-372.patch
From: N/A

N/A, CVSSv2 Score: N/A
Description:
kpatch add alt asm definitions
CVE: N/A
Patch: 4.18.0/kpatch-add-alt-asm-definitions-el8-372.patch
From: N/A

N/A, CVSSv2 Score: N/A
Description:
kpatch add paravirt asm definitions
CVE: N/A
Patch: 4.18.0/0003-kpatch-add-paravirt-asm-definitions.patch
From: N/A