操作系统--麒麟信安操作系统,国产操作系统,麒麟信安云桌面—

公告ID (KylinSec-SA-2023-2291)

摘要:

kernel security update

安全等级: Medium

公告ID: KylinSec-SA-2023-2291

发布日期: 2023年10月20日

关联CVE: CVE-2023-39189 CVE-2023-39193

详细介绍

1. 漏洞描述

The Linux Kernel, the operating system core itself.

Security Fix(es):

A flaw was found in the Netfilter subsystem in the Linux kernel. The nfnl_osf_add_callback function did not validate the user mode controlled opt_num field. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure.(CVE-2023-39189)

A flaw was found in the Netfilter subsystem in the Linux kernel. The sctp_mt_check did not validate the flag_count field. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure.(CVE-2023-39193)

2. 影响范围

cve名称	产品	组件	是否受影响
CVE-2023-39189	KY3.4-5A	kernel	Fixed
CVE-2023-39193	KY3.4-5A	kernel	Fixed

3. 影响组件

kernel

4. 修复版本

KY3.4-5A

软件名称	架构	版本号
kernel-tools	x86_64	4.19.90-2403.1.0.0268.kb1.ky3_4
perf	x86_64	4.19.90-2403.1.0.0268.kb1.ky3_4
kernel-devel	x86_64	4.19.90-2403.1.0.0268.kb1.ky3_4
kernel	x86_64	4.19.90-2403.1.0.0268.kb1.ky3_4
python2-perf	x86_64	4.19.90-2403.1.0.0268.kb1.ky3_4
python3-perf	x86_64	4.19.90-2403.1.0.0268.kb1.ky3_4
bpftool	x86_64	4.19.90-2403.1.0.0268.kb1.ky3_4
kernel-tools-devel	x86_64	4.19.90-2403.1.0.0268.kb1.ky3_4
kernel-source	x86_64	4.19.90-2403.1.0.0268.kb1.ky3_4
kernel-tools-devel	aarch64	4.19.90-2403.1.0.0268.kb1.ky3_4
kernel	aarch64	4.19.90-2403.1.0.0268.kb1.ky3_4
kernel-tools	aarch64	4.19.90-2403.1.0.0268.kb1.ky3_4
perf	aarch64	4.19.90-2403.1.0.0268.kb1.ky3_4
python3-perf	aarch64	4.19.90-2403.1.0.0268.kb1.ky3_4
bpftool	aarch64	4.19.90-2403.1.0.0268.kb1.ky3_4
kernel-source	aarch64	4.19.90-2403.1.0.0268.kb1.ky3_4
python2-perf	aarch64	4.19.90-2403.1.0.0268.kb1.ky3_4
kernel-devel	aarch64	4.19.90-2403.1.0.0268.kb1.ky3_4