302 lines
17 KiB
XML
302 lines
17 KiB
XML
<?xml version="1.0" encoding="UTF-8"?>
|
|
<cvrfdoc xmlns="http://www.icasi.org/CVRF/schema/cvrf/1.1" xmlns:cvrf="http://www.icasi.org/CVRF/schema/cvrf/1.1">
|
|
<DocumentTitle xml:lang="en">An update for kernel is now available for openEuler-22.03-LTS-SP4</DocumentTitle>
|
|
<DocumentType>Security Advisory</DocumentType>
|
|
<DocumentPublisher Type="Vendor">
|
|
<ContactDetails>openeuler-security@openeuler.org</ContactDetails>
|
|
<IssuingAuthority>openEuler security committee</IssuingAuthority>
|
|
</DocumentPublisher>
|
|
<DocumentTracking>
|
|
<Identification>
|
|
<ID>openEuler-SA-2024-1864</ID>
|
|
</Identification>
|
|
<Status>Final</Status>
|
|
<Version>1.0</Version>
|
|
<RevisionHistory>
|
|
<Revision>
|
|
<Number>1.0</Number>
|
|
<Date>2024-07-19</Date>
|
|
<Description>Initial</Description>
|
|
</Revision>
|
|
</RevisionHistory>
|
|
<InitialReleaseDate>2024-07-19</InitialReleaseDate>
|
|
<CurrentReleaseDate>2024-07-19</CurrentReleaseDate>
|
|
<Generator>
|
|
<Engine>openEuler SA Tool V1.0</Engine>
|
|
<Date>2024-07-19</Date>
|
|
</Generator>
|
|
</DocumentTracking>
|
|
<DocumentNotes>
|
|
<Note Title="Synopsis" Type="General" Ordinal="1" xml:lang="en">kernel security update</Note>
|
|
<Note Title="Summary" Type="General" Ordinal="2" xml:lang="en">An update for kernel is now available for openEuler-22.03-LTS-SP4</Note>
|
|
<Note Title="Description" Type="General" Ordinal="3" xml:lang="en">The Linux Kernel, the operating system core itself.
|
|
|
|
Security Fix(es):
|
|
|
|
In the Linux kernel, the following vulnerability has been resolved:
|
|
|
|
bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq
|
|
|
|
Undefined behavior is triggered when bnxt_qplib_alloc_init_hwq is called
|
|
with hwq_attr->aux_depth != 0 and hwq_attr->aux_stride == 0.
|
|
In that case, "roundup_pow_of_two(hwq_attr->aux_stride)" gets called.
|
|
roundup_pow_of_two is documented as undefined for 0.
|
|
|
|
Fix it in the one caller that had this combination.
|
|
|
|
The undefined behavior was detected by UBSAN:
|
|
UBSAN: shift-out-of-bounds in ./include/linux/log2.h:57:13
|
|
shift exponent 64 is too large for 64-bit type 'long unsigned int'
|
|
CPU: 24 PID: 1075 Comm: (udev-worker) Not tainted 6.9.0-rc6+ #4
|
|
Hardware name: Abacus electric, s.r.o. - servis@abacus.cz Super Server/H12SSW-iN, BIOS 2.7 10/25/2023
|
|
Call Trace:
|
|
<TASK>
|
|
dump_stack_lvl+0x5d/0x80
|
|
ubsan_epilogue+0x5/0x30
|
|
__ubsan_handle_shift_out_of_bounds.cold+0x61/0xec
|
|
__roundup_pow_of_two+0x25/0x35 [bnxt_re]
|
|
bnxt_qplib_alloc_init_hwq+0xa1/0x470 [bnxt_re]
|
|
bnxt_qplib_create_qp+0x19e/0x840 [bnxt_re]
|
|
bnxt_re_create_qp+0x9b1/0xcd0 [bnxt_re]
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? __kmalloc+0x1b6/0x4f0
|
|
? create_qp.part.0+0x128/0x1c0 [ib_core]
|
|
? __pfx_bnxt_re_create_qp+0x10/0x10 [bnxt_re]
|
|
create_qp.part.0+0x128/0x1c0 [ib_core]
|
|
ib_create_qp_kernel+0x50/0xd0 [ib_core]
|
|
create_mad_qp+0x8e/0xe0 [ib_core]
|
|
? __pfx_qp_event_handler+0x10/0x10 [ib_core]
|
|
ib_mad_init_device+0x2be/0x680 [ib_core]
|
|
add_client_context+0x10d/0x1a0 [ib_core]
|
|
enable_device_and_get+0xe0/0x1d0 [ib_core]
|
|
ib_register_device+0x53c/0x630 [ib_core]
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
bnxt_re_probe+0xbd8/0xe50 [bnxt_re]
|
|
? __pfx_bnxt_re_probe+0x10/0x10 [bnxt_re]
|
|
auxiliary_bus_probe+0x49/0x80
|
|
? driver_sysfs_add+0x57/0xc0
|
|
really_probe+0xde/0x340
|
|
? pm_runtime_barrier+0x54/0x90
|
|
? __pfx___driver_attach+0x10/0x10
|
|
__driver_probe_device+0x78/0x110
|
|
driver_probe_device+0x1f/0xa0
|
|
__driver_attach+0xba/0x1c0
|
|
bus_for_each_dev+0x8f/0xe0
|
|
bus_add_driver+0x146/0x220
|
|
driver_register+0x72/0xd0
|
|
__auxiliary_driver_register+0x6e/0xd0
|
|
? __pfx_bnxt_re_mod_init+0x10/0x10 [bnxt_re]
|
|
bnxt_re_mod_init+0x3e/0xff0 [bnxt_re]
|
|
? __pfx_bnxt_re_mod_init+0x10/0x10 [bnxt_re]
|
|
do_one_initcall+0x5b/0x310
|
|
do_init_module+0x90/0x250
|
|
init_module_from_file+0x86/0xc0
|
|
idempotent_init_module+0x121/0x2b0
|
|
__x64_sys_finit_module+0x5e/0xb0
|
|
do_syscall_64+0x82/0x160
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? syscall_exit_to_user_mode_prepare+0x149/0x170
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? syscall_exit_to_user_mode+0x75/0x230
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? do_syscall_64+0x8e/0x160
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? __count_memcg_events+0x69/0x100
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? count_memcg_events.constprop.0+0x1a/0x30
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? handle_mm_fault+0x1f0/0x300
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? do_user_addr_fault+0x34e/0x640
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
entry_SYSCALL_64_after_hwframe+0x76/0x7e
|
|
RIP: 0033:0x7f4e5132821d
|
|
Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d e3 db 0c 00 f7 d8 64 89 01 48
|
|
RSP: 002b:00007ffca9c906a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
|
|
RAX: ffffffffffffffda RBX: 0000563ec8a8f130 RCX: 00007f4e5132821d
|
|
RDX: 0000000000000000 RSI: 00007f4e518fa07d RDI: 000000000000003b
|
|
RBP: 00007ffca9c90760 R08: 00007f4e513f6b20 R09: 00007ffca9c906f0
|
|
R10: 0000563ec8a8faa0 R11: 0000000000000246 R12: 00007f4e518fa07d
|
|
R13: 0000000000020000 R14: 0000563ec8409e90 R15: 0000563ec8a8fa60
|
|
</TASK>
|
|
---[ end trace ]---(CVE-2024-38540)</Note>
|
|
<Note Title="Topic" Type="General" Ordinal="4" xml:lang="en">An update for kernel is now available for openEuler-22.03-LTS-SP4.
|
|
|
|
openEuler Security has rated this update as having a security impact of medium. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.</Note>
|
|
<Note Title="Severity" Type="General" Ordinal="5" xml:lang="en">Medium</Note>
|
|
<Note Title="Affected Component" Type="General" Ordinal="6" xml:lang="en">kernel</Note>
|
|
</DocumentNotes>
|
|
<DocumentReferences>
|
|
<Reference Type="Self">
|
|
<URL>https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1864</URL>
|
|
</Reference>
|
|
<Reference Type="openEuler CVE">
|
|
<URL>https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-38540</URL>
|
|
</Reference>
|
|
<Reference Type="Other">
|
|
<URL>https://nvd.nist.gov/vuln/detail/CVE-2024-38540</URL>
|
|
</Reference>
|
|
</DocumentReferences>
|
|
<ProductTree xmlns="http://www.icasi.org/CVRF/schema/prod/1.1">
|
|
<Branch Type="Product Name" Name="openEuler">
|
|
<FullProductName ProductID="openEuler-22.03-LTS-SP4" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">openEuler-22.03-LTS-SP4</FullProductName>
|
|
</Branch>
|
|
<Branch Type="Package Arch" Name="aarch64">
|
|
<FullProductName ProductID="bpftool-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">bpftool-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="bpftool-debuginfo-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">bpftool-debuginfo-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-debuginfo-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-debuginfo-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-debugsource-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-debugsource-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-devel-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-devel-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-headers-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-headers-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-source-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-source-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-tools-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-tools-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-tools-debuginfo-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-tools-debuginfo-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-tools-devel-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-tools-devel-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="perf-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">perf-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="perf-debuginfo-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">perf-debuginfo-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="python3-perf-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">python3-perf-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="python3-perf-debuginfo-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">python3-perf-debuginfo-5.10.0-219.0.0.118.oe2203sp4.aarch64.rpm</FullProductName>
|
|
</Branch>
|
|
<Branch Type="Package Arch" Name="x86_64">
|
|
<FullProductName ProductID="bpftool-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">bpftool-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="bpftool-debuginfo-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">bpftool-debuginfo-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-debuginfo-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-debuginfo-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-debugsource-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-debugsource-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-devel-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-devel-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-headers-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-headers-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-source-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-source-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-tools-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-tools-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-tools-debuginfo-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-tools-debuginfo-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="kernel-tools-devel-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-tools-devel-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="perf-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">perf-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="perf-debuginfo-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">perf-debuginfo-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="python3-perf-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">python3-perf-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="python3-perf-debuginfo-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">python3-perf-debuginfo-5.10.0-219.0.0.118.oe2203sp4.x86_64.rpm</FullProductName>
|
|
</Branch>
|
|
<Branch Type="Package Arch" Name="src">
|
|
<FullProductName ProductID="kernel-5.10.0-219.0.0.118" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP4">kernel-5.10.0-219.0.0.118.oe2203sp4.src.rpm</FullProductName>
|
|
</Branch>
|
|
</ProductTree>
|
|
<Vulnerability Ordinal="1" xmlns="http://www.icasi.org/CVRF/schema/vuln/1.1">
|
|
<Notes>
|
|
<Note Title="Vulnerability Description" Type="General" Ordinal="1" xml:lang="en">In the Linux kernel, the following vulnerability has been resolved:
|
|
|
|
bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq
|
|
|
|
Undefined behavior is triggered when bnxt_qplib_alloc_init_hwq is called
|
|
with hwq_attr->aux_depth != 0 and hwq_attr->aux_stride == 0.
|
|
In that case, "roundup_pow_of_two(hwq_attr->aux_stride)" gets called.
|
|
roundup_pow_of_two is documented as undefined for 0.
|
|
|
|
Fix it in the one caller that had this combination.
|
|
|
|
The undefined behavior was detected by UBSAN:
|
|
UBSAN: shift-out-of-bounds in ./include/linux/log2.h:57:13
|
|
shift exponent 64 is too large for 64-bit type 'long unsigned int'
|
|
CPU: 24 PID: 1075 Comm: (udev-worker) Not tainted 6.9.0-rc6+ #4
|
|
Hardware name: Abacus electric, s.r.o. - servis@abacus.cz Super Server/H12SSW-iN, BIOS 2.7 10/25/2023
|
|
Call Trace:
|
|
<TASK>
|
|
dump_stack_lvl+0x5d/0x80
|
|
ubsan_epilogue+0x5/0x30
|
|
__ubsan_handle_shift_out_of_bounds.cold+0x61/0xec
|
|
__roundup_pow_of_two+0x25/0x35 [bnxt_re]
|
|
bnxt_qplib_alloc_init_hwq+0xa1/0x470 [bnxt_re]
|
|
bnxt_qplib_create_qp+0x19e/0x840 [bnxt_re]
|
|
bnxt_re_create_qp+0x9b1/0xcd0 [bnxt_re]
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? __kmalloc+0x1b6/0x4f0
|
|
? create_qp.part.0+0x128/0x1c0 [ib_core]
|
|
? __pfx_bnxt_re_create_qp+0x10/0x10 [bnxt_re]
|
|
create_qp.part.0+0x128/0x1c0 [ib_core]
|
|
ib_create_qp_kernel+0x50/0xd0 [ib_core]
|
|
create_mad_qp+0x8e/0xe0 [ib_core]
|
|
? __pfx_qp_event_handler+0x10/0x10 [ib_core]
|
|
ib_mad_init_device+0x2be/0x680 [ib_core]
|
|
add_client_context+0x10d/0x1a0 [ib_core]
|
|
enable_device_and_get+0xe0/0x1d0 [ib_core]
|
|
ib_register_device+0x53c/0x630 [ib_core]
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
bnxt_re_probe+0xbd8/0xe50 [bnxt_re]
|
|
? __pfx_bnxt_re_probe+0x10/0x10 [bnxt_re]
|
|
auxiliary_bus_probe+0x49/0x80
|
|
? driver_sysfs_add+0x57/0xc0
|
|
really_probe+0xde/0x340
|
|
? pm_runtime_barrier+0x54/0x90
|
|
? __pfx___driver_attach+0x10/0x10
|
|
__driver_probe_device+0x78/0x110
|
|
driver_probe_device+0x1f/0xa0
|
|
__driver_attach+0xba/0x1c0
|
|
bus_for_each_dev+0x8f/0xe0
|
|
bus_add_driver+0x146/0x220
|
|
driver_register+0x72/0xd0
|
|
__auxiliary_driver_register+0x6e/0xd0
|
|
? __pfx_bnxt_re_mod_init+0x10/0x10 [bnxt_re]
|
|
bnxt_re_mod_init+0x3e/0xff0 [bnxt_re]
|
|
? __pfx_bnxt_re_mod_init+0x10/0x10 [bnxt_re]
|
|
do_one_initcall+0x5b/0x310
|
|
do_init_module+0x90/0x250
|
|
init_module_from_file+0x86/0xc0
|
|
idempotent_init_module+0x121/0x2b0
|
|
__x64_sys_finit_module+0x5e/0xb0
|
|
do_syscall_64+0x82/0x160
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? syscall_exit_to_user_mode_prepare+0x149/0x170
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? syscall_exit_to_user_mode+0x75/0x230
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? do_syscall_64+0x8e/0x160
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? __count_memcg_events+0x69/0x100
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? count_memcg_events.constprop.0+0x1a/0x30
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? handle_mm_fault+0x1f0/0x300
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? do_user_addr_fault+0x34e/0x640
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
? srso_alias_return_thunk+0x5/0xfbef5
|
|
entry_SYSCALL_64_after_hwframe+0x76/0x7e
|
|
RIP: 0033:0x7f4e5132821d
|
|
Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d e3 db 0c 00 f7 d8 64 89 01 48
|
|
RSP: 002b:00007ffca9c906a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
|
|
RAX: ffffffffffffffda RBX: 0000563ec8a8f130 RCX: 00007f4e5132821d
|
|
RDX: 0000000000000000 RSI: 00007f4e518fa07d RDI: 000000000000003b
|
|
RBP: 00007ffca9c90760 R08: 00007f4e513f6b20 R09: 00007ffca9c906f0
|
|
R10: 0000563ec8a8faa0 R11: 0000000000000246 R12: 00007f4e518fa07d
|
|
R13: 0000000000020000 R14: 0000563ec8409e90 R15: 0000563ec8a8fa60
|
|
</TASK>
|
|
---[ end trace ]---</Note>
|
|
</Notes>
|
|
<ReleaseDate>2024-07-19</ReleaseDate>
|
|
<CVE>CVE-2024-38540</CVE>
|
|
<ProductStatuses>
|
|
<Status Type="Fixed">
|
|
<ProductID>openEuler-22.03-LTS-SP4</ProductID>
|
|
</Status>
|
|
</ProductStatuses>
|
|
<Threats>
|
|
<Threat Type="Impact">
|
|
<Description>Medium</Description>
|
|
</Threat>
|
|
</Threats>
|
|
<CVSSScoreSets>
|
|
<ScoreSet>
|
|
<BaseScore>5.5</BaseScore>
|
|
<Vector>AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H</Vector>
|
|
</ScoreSet>
|
|
</CVSSScoreSets>
|
|
<Remediations>
|
|
<Remediation Type="Vendor Fix">
|
|
<Description>kernel security update</Description>
|
|
<DATE>2024-07-19</DATE>
|
|
<URL>https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1864</URL>
|
|
</Remediation>
|
|
</Remediations>
|
|
</Vulnerability>
|
|
</cvrfdoc> |