MGASA-2024-0033

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2024-0033.html

Import Source

https://advisories.mageia.org/MGASA-2024-0033.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2024-0033

Related

Published

2024-02-09T02:45:39Z

Modified

2024-02-09T02:34:58Z

Summary

Updated kernel packages fix security vulnerabilities and other bugs

Details

Upstream version 6.6.14 with many bugfixes and at least the following security fixes: An out-of-bounds read vulnerability was found in smb2dumpdetail in fs/smb/client/smb2ops.c in the Linux Kernel. This issue could allow a local attacker to crash the system or leak internal kernel information. (CVE-2023-6610) An unprivileged guest can cause Denial of Service (DoS) of the host by sending network packets to the backend, causing the backend to crash. Data corruption or privilege escalation have not been ruled out. https://xenbits.xen.org/xsa/advisory-448.html (CVE-2023-46838)

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:9 / kernel

Package

Name: kernel
Purl: pkg:rpm/mageia/kernel?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.6.14-2.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / kmod-xtables-addons

Package

Name: kmod-xtables-addons
Purl: pkg:rpm/mageia/kmod-xtables-addons?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.24-54.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / kmod-virtualbox

Package

Name: kmod-virtualbox
Purl: pkg:rpm/mageia/kmod-virtualbox?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.0.14-42.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gnome-applets

Package

Name: gnome-applets
Purl: pkg:rpm/mageia/gnome-applets?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.46.0-3.1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / mate-applets

Package

Name: mate-applets
Purl: pkg:rpm/mageia/mate-applets?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.26.1-1.1.mga9

Ecosystem specific

{
    "section": "core"
}