2024-04-16 14:26:14 +00:00

252 lines
12 KiB
JSON
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20213485",
"Version": "oval:org.altlinux.errata:def:20213485",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2021-3485: package `kernel-image-std-def` update to version 5.10.83-alt0.c9f.2",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c9f2"
],
"Products": [
"ALT SPWorkstation",
"ALT SPServer"
]
}
],
"References": [
{
"RefID": "ALT-PU-2021-3485",
"RefURL": "https://errata.altlinux.org/ALT-PU-2021-3485",
"Source": "ALTPU"
},
{
"RefID": "BDU:2021-03902",
"RefURL": "https://bdu.fstec.ru/vul/2021-03902",
"Source": "BDU"
},
{
"RefID": "BDU:2021-05673",
"RefURL": "https://bdu.fstec.ru/vul/2021-05673",
"Source": "BDU"
},
{
"RefID": "BDU:2022-00828",
"RefURL": "https://bdu.fstec.ru/vul/2022-00828",
"Source": "BDU"
},
{
"RefID": "BDU:2022-05887",
"RefURL": "https://bdu.fstec.ru/vul/2022-05887",
"Source": "BDU"
},
{
"RefID": "BDU:2023-01273",
"RefURL": "https://bdu.fstec.ru/vul/2023-01273",
"Source": "BDU"
},
{
"RefID": "CVE-2020-27820",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2020-27820",
"Source": "CVE"
},
{
"RefID": "CVE-2021-3640",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-3640",
"Source": "CVE"
},
{
"RefID": "CVE-2021-4001",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-4001",
"Source": "CVE"
},
{
"RefID": "CVE-2021-43267",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-43267",
"Source": "CVE"
},
{
"RefID": "CVE-2023-1252",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-1252",
"Source": "CVE"
}
],
"Description": "This update upgrades kernel-image-std-def to version 5.10.83-alt0.c9f.2. \nSecurity Fix(es):\n\n * BDU:2021-03902: Уязвимость функции sco_sock_sendmsg() подсистемы HCI ядра операционной системы Linux, позволяющая нарушителю вызвать аварийное завершение системы или повысить свои привилегии\n\n * BDU:2021-05673: Уязвимость реализации функции tipc_crypto_key_rcv() протокола для внутрикластерного взаимодействия Transparent Inter-Process Communication (TIPC) ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании или повысить свои привилегии\n\n * BDU:2022-00828: Уязвимость функции postclose() ядра операционной системы Linux, позволяющая нарушителю выполнить произвольный код\n\n * BDU:2022-05887: Уязвимость верификатора ebpf компонента bpf_map_update_elem и bpf_map_freeze (kernel/bpf/syscall.c) ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на целостность данных\n\n * BDU:2023-01273: Уязвимость функции ovl_write_iter() файловой системы overlayfs ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании или повысить свои привилегии\n\n * CVE-2020-27820: A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose() handler could happen if removing device (that is not common to remove video card physically without power-off, but same happens if \"unbind\" the driver).\n\n * CVE-2021-3640: A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. A privileged local user could use this flaw to crash the system or escalate their privileges on the system.\n\n * CVE-2021-4001: A race condition was found in the Linux kernel's ebpf verifier between bpf_map_update_elem and bpf_map_freeze due to a missing lock in kernel/bpf/syscall.c. In this flaw, a local user with a special privilege (cap_sys_admin or cap_bpf) can modify the frozen mapped address space. This flaw affects kernel versions prior to 5.16 rc2.\n\n * CVE-2021-43267: An issue was discovered in net/tipc/crypto.c in the Linux kernel before 5.14.16. The Transparent Inter-Process Communication (TIPC) functionality allows remote attackers to exploit insufficient validation of user-supplied sizes for the MSG_CRYPTO message type.\n\n * CVE-2023-1252: A use-after-free flaw was found in the Linux kernels Ext4 File System in how a user triggers several file operations simultaneously with the overlay FS usage. This flaw allows a local user to crash or potentially escalate their privileges on the system. Only if patch 9a2544037600 (\"ovl: fix use after free in struct ovl_aio_req\") not applied yet, the kernel could be affected.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Critical",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2021-12-06"
},
"Updated": {
"Date": "2021-12-06"
},
"BDUs": [
{
"ID": "BDU:2021-03902",
"CVSS": "AV:L/AC:H/Au:S/C:C/I:C/A:C",
"CVSS3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-362, CWE-416",
"Href": "https://bdu.fstec.ru/vul/2021-03902",
"Impact": "High",
"Public": "20210722"
},
{
"ID": "BDU:2021-05673",
"CVSS": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-20, CWE-1284",
"Href": "https://bdu.fstec.ru/vul/2021-05673",
"Impact": "Critical",
"Public": "20211026"
},
{
"ID": "BDU:2022-00828",
"CVSS": "AV:L/AC:H/Au:S/C:N/I:N/A:C",
"CVSS3": "AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-416",
"Href": "https://bdu.fstec.ru/vul/2022-00828",
"Impact": "Low",
"Public": "20211103"
},
{
"ID": "BDU:2022-05887",
"CVSS": "AV:L/AC:M/Au:S/C:N/I:C/A:N",
"CVSS3": "AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N",
"CWE": "CWE-367",
"Href": "https://bdu.fstec.ru/vul/2022-05887",
"Impact": "Low",
"Public": "20211109"
},
{
"ID": "BDU:2023-01273",
"CVSS": "AV:L/AC:H/Au:S/C:C/I:C/A:C",
"CVSS3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-416",
"Href": "https://bdu.fstec.ru/vul/2023-01273",
"Impact": "High",
"Public": "20211029"
}
],
"CVEs": [
{
"ID": "CVE-2020-27820",
"CVSS": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
"CVSS3": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-416",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2020-27820",
"Impact": "Low",
"Public": "20211103"
},
{
"ID": "CVE-2021-3640",
"CVSS": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"CVSS3": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-362",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-3640",
"Impact": "High",
"Public": "20220303"
},
{
"ID": "CVE-2021-4001",
"CVSS": "AV:L/AC:M/Au:N/C:N/I:C/A:N",
"CVSS3": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N",
"CWE": "CWE-367",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-4001",
"Impact": "Low",
"Public": "20220121"
},
{
"ID": "CVE-2021-43267",
"CVSS": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-1284",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-43267",
"Impact": "Critical",
"Public": "20211102"
},
{
"ID": "CVE-2023-1252",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-416",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-1252",
"Impact": "High",
"Public": "20230323"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:8.4",
"cpe:/o:alt:spserver:8.4"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:3001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20213485001",
"Comment": "kernel-doc-std is earlier than 2:5.10.83-alt0.c9f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20213485002",
"Comment": "kernel-headers-modules-std-def is earlier than 2:5.10.83-alt0.c9f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20213485003",
"Comment": "kernel-headers-std-def is earlier than 2:5.10.83-alt0.c9f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20213485004",
"Comment": "kernel-image-domU-std-def is earlier than 2:5.10.83-alt0.c9f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20213485005",
"Comment": "kernel-image-std-def is earlier than 2:5.10.83-alt0.c9f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20213485006",
"Comment": "kernel-modules-drm-ancient-std-def is earlier than 2:5.10.83-alt0.c9f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20213485007",
"Comment": "kernel-modules-drm-nouveau-std-def is earlier than 2:5.10.83-alt0.c9f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20213485008",
"Comment": "kernel-modules-drm-std-def is earlier than 2:5.10.83-alt0.c9f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20213485009",
"Comment": "kernel-modules-ide-std-def is earlier than 2:5.10.83-alt0.c9f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20213485010",
"Comment": "kernel-modules-midgard-be-m1000-std-def is earlier than 2:5.10.83-alt0.c9f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20213485011",
"Comment": "kernel-modules-staging-std-def is earlier than 2:5.10.83-alt0.c9f.2"
}
]
}
]
}
}
]
}