ALT Linux Team

Package kernel-image-centos update in sisyphus on 2022-09-06

ALT-PU-2022-2569-1

Package kernel-image-centos updated to version 5.14.0.162-alt1.el9 for branch sisyphus in task 306342.

Closed vulnerabilities

Published: 2022-08-09

BDU:2022-05633

Уязвимость компонента POSIX CPU ядра операционной системы Linux, позволяющая нарушителю выполнить произвольный код

Severity: HIGH (7.8) Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References:
Published: 2024-01-08
Modified: 2024-11-21

CVE-2022-2585

It was discovered that when exec'ing from a non-leader thread, armed POSIX CPU timers would be left on a list but freed, leading to a use-after-free.

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top