- kernel-uek-5.15.0-204.147.6.2.el8uek (oel8-uek7)
- 5.15.0-300.163.18.1.el8uek
- 2024-10-09 11:30:29
- 2024-10-10 08:46:35
- K20241009_03
- CVE-2024-1086, CVSSv2 Score: 7.0
- Description:
netfilter: nf_tables: reject QUEUE/DROP verdict parameters
- CVE: https://linux.oracle.com/cve/CVE-2024-1086.html
- Patch: oel9-uek7/5.15.0-204.147.6.3.el9uek/CVE-2024-1086-netfilter-nf_tables-reject-QUEUE-DROP-verdict-parameters.patch
- From: 5.15.0-204.147.6.3
- N/A, CVSSv2 Score: N/A
- Description:
kpatch add alt asm definitions
- CVE: https://www.kernel.org
- Patch: 5.15.0/kpatch-add-alt-asm-definitions.patch
- From: N/A
- CVE-2024-2201, CVSSv2 Score: 4.7
- Description:
x86/bugs: Change commas to semicolons in 'spectre_v2' sysfs file
- CVE: https://linux.oracle.com/cve/CVE-2024-2201.html
- Patch: 5.15.0/CVE-2024-2201-x86-bugs-Change-commas-to-semicolons-in-spectre_v2-sysfs-file.patch
- From: kernel-uek-5.15.0-205.149.5.1.el8uek
- N/A, CVSSv2 Score: N/A
- Description:
kpatch: entry: add asm headers
- CVE: https://www.kernel.org
- Patch: 5.15.0/kpatch-entry-add-asm-headers.patch
- From: N/A
- CVE-2024-2201, CVSSv2 Score: 4.7
- Description:
x86/bhi: Add support for clearing branch history at syscall entry
- CVE: https://linux.oracle.com/cve/CVE-2024-2201.html
- Patch: 5.15.0/CVE-2024-2201-x86-bhi-Add-support-for-clearing-branch-history-at-syscall-entry-uek.patch
- From: kernel-uek-5.15.0-205.149.5.1.el8uek
- CVE-2024-41090, CVSSv2 Score: 7.1
- Description:
tap: add missing verification for short frame
- CVE: https://access.redhat.com/security/cve/CVE-2024-41090
- Patch: 5.15.0/CVE-2024-41090-tap-add-missing-verification-for-short-frame.patch
- From: 5.15.0-208.159.3.2
- CVE-2024-41091, CVSSv2 Score: 7.1
- Description:
tun: add missing verification for short frame
- CVE: https://access.redhat.com/security/cve/CVE-2024-41091
- Patch: 5.15.0/CVE-2024-41091-tun-add-missing-verification-for-short-frame.patch
- From: 5.15.0-208.159.3.2
- CVE-2024-21823, CVSSv2 Score: 7.5
- Description:
VFIO: Add the SPR_DSA and SPR_IAX devices to the denylist
- CVE: https://linux.oracle.com/cve/CVE-2024-21823.html
- Patch: oel9-uek7/5.15.0-300.163.18.el9uek/CVE-2024-21823-vfio-add-the-spr-dsa-and-spr-iax-devices-to-the-denylist.patch
- From: 5.15.0-300.163.18.el9uek
- CVE-2024-42159, CVSSv2 Score: 7.8
- Description:
scsi: mpi3mr: Sanitise num_phys
- CVE: https://linux.oracle.com/cve/CVE-2024-42159.html
- Patch: oel9-uek7/5.15.0-300.163.18.el9uek/CVE-2024-42159-scsi-mpi3mr-sanitise-num-phys.patch
- From: 5.15.0-300.163.18.el9uek
- N/A, CVSSv2 Score: N/A
- Description:
vhost/scsi: null-ptr-dereference in vhost_scsi_get_req()
- CVE: https://linux.oracle.com/errata/ELSA-2024-12713.html
- Patch: oel9-uek7/5.15.0-300.163.18.1.el9uek/vhost-scsi-null-ptr-dereference-in-vhost_scsi_get_req-uek7.patch
- From: 5.15.0-300.163.18.1
- N/A, CVSSv2 Score: N/A
- Description:
kpatch add paravirt asm definitions
- CVE: N/A
- Patch: 5.15.0/kpatch-add-paravirt-asm-definitions.patch
- From: N/A