{ "document" : { "aggregate_severity" : { "text" : "hoch" }, "category" : "csaf_base", "csaf_version" : "2.0", "distribution" : { "tlp" : { "label" : "WHITE", "url" : "https://www.first.org/tlp/" } }, "lang" : "de-DE", "notes" : [ { "category" : "legal_disclaimer", "text" : "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen." }, { "category" : "description", "text" : "Der Kernel stellt den Kern des Linux Betriebssystems dar.", "title" : "Produktbeschreibung" }, { "category" : "summary", "text" : "Ein lokaler Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um seine Privilegien zu erhöhen.", "title" : "Angriff" }, { "category" : "general", "text" : "- Linux", "title" : "Betroffene Betriebssysteme" } ], "publisher" : { "category" : "other", "contact_details" : "csaf-provider@cert-bund.de", "name" : "Bundesamt für Sicherheit in der Informationstechnik", "namespace" : "https://www.bsi.bund.de" }, "references" : [ { "category" : "self", "summary" : "WID-SEC-W-2024-0266 - CSAF Version", "url" : "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0266.json" }, { "category" : "self", "summary" : "WID-SEC-2024-0266 - Portal Version", "url" : "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0266" }, { "category" : "external", "summary" : "Red Hat Bugzilla vom 2024-01-31", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2262126" }, { "category" : "external", "summary" : "Red Hat Bugzilla vom 2024-01-31", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2262127" }, { "category" : "external", "summary" : "RedHat Security Advisory vom 2024-01-31", "url" : "https://access.redhat.com/security/cve/CVE-2024-1086" }, { "category" : "external", "summary" : "RedHat Security Advisory vom 2024-01-31", "url" : "https://access.redhat.com/security/cve/CVE-2024-1085" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:0469-1 vom 2024-02-14", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017911.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:0474-1 vom 2024-02-14", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017918.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:0463-1 vom 2024-02-14", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017916.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:0476-1 vom 2024-02-14", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017917.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:0468-1 vom 2024-02-14", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017914.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:0483-1 vom 2024-02-15", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017934.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:0516-1 vom 2024-02-15", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017921.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:0478-1 vom 2024-02-15", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017919.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:0484-1 vom 2024-02-15", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017920.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:0514-1 vom 2024-02-15", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017923.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:0515-1 vom 2024-02-15", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017922.html" }, { "category" : "external", "summary" : "Amazon Linux Security Advisory ALAS-2024-1919 vom 2024-02-19", "url" : "https://alas.aws.amazon.com/ALAS-2024-1919.html" }, { "category" : "external", "summary" : "Amazon Linux Security Advisory ALAS-2024-1919 vom 2024-02-19", "url" : "https://www.cybersecurity-help.cz/vdb/SB2024021952" }, { "category" : "external", "summary" : "Amazon Linux Security Advisory ALAS-2024-2453 vom 2024-02-19", "url" : "https://alas.aws.amazon.com/AL2/ALAS-2024-2453.html" }, { "category" : "external", "summary" : "Amazon Linux Security Advisory ALASKERNEL-5.10-2024-050 vom 2024-02-20", "url" : "https://alas.aws.amazon.com/AL2/ALASKERNEL-5.10-2024-050.html" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:0930 vom 2024-02-21", "url" : "https://access.redhat.com/errata/RHSA-2024:0930" }, { "category" : "external", "summary" : "Amazon Linux Security Advisory ALASKERNEL-5.4-2024-060 vom 2024-02-20", "url" : "https://alas.aws.amazon.com/AL2/ALASKERNEL-5.4-2024-060.html" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:1018 vom 2024-02-28", "url" : "https://access.redhat.com/errata/RHSA-2024:1018" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:1019 vom 2024-02-28", "url" : "https://access.redhat.com/errata/RHSA-2024:1019" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:1249 vom 2024-03-12", "url" : "https://access.redhat.com/errata/RHSA-2024:1249" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6688-1 vom 2024-03-11", "url" : "https://ubuntu.com/security/notices/USN-6688-1" }, { "category" : "external", "summary" : "IGEL Security Notice ISN-2024-06 vom 2024-03-12", "url" : "https://kb.igel.com/securitysafety/en/isn-2024-06-os-11-kernel-vulnerabilities-117259724.html" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12208 vom 2024-03-12", "url" : "https://linux.oracle.com/errata/ELSA-2024-12208.html" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:1332 vom 2024-03-14", "url" : "https://access.redhat.com/errata/RHSA-2024:1332" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6700-1 vom 2024-03-19", "url" : "https://ubuntu.com/security/notices/USN-6700-1" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6701-1 vom 2024-03-19", "url" : "https://ubuntu.com/security/notices/USN-6701-1" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6702-1 vom 2024-03-19", "url" : "https://ubuntu.com/security/notices/USN-6702-1" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:1404 vom 2024-03-19", "url" : "https://access.redhat.com/errata/RHSA-2024:1404" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6704-1 vom 2024-03-20", "url" : "https://ubuntu.com/security/notices/USN-6704-1" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6702-2 vom 2024-03-20", "url" : "https://ubuntu.com/security/notices/USN-6702-2" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6701-2 vom 2024-03-20", "url" : "https://ubuntu.com/security/notices/USN-6701-2" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-1249 vom 2024-03-21", "url" : "https://linux.oracle.com/errata/ELSA-2024-1249.html" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6705-1 vom 2024-03-20", "url" : "https://ubuntu.com/security/notices/USN-6705-1" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6707-1 vom 2024-03-20", "url" : "https://ubuntu.com/security/notices/USN-6707-1" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6707-2 vom 2024-03-21", "url" : "https://ubuntu.com/security/notices/USN-6707-2" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6700-2 vom 2024-03-21", "url" : "https://ubuntu.com/security/notices/USN-6700-2" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6704-2 vom 2024-03-21", "url" : "https://ubuntu.com/security/notices/USN-6704-2" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6707-3 vom 2024-03-26", "url" : "https://ubuntu.com/security/notices/USN-6707-3" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6704-3 vom 2024-03-26", "url" : "https://ubuntu.com/security/notices/USN-6704-3" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6716-1 vom 2024-03-26", "url" : "https://ubuntu.com/security/notices/USN-6716-1" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6701-3 vom 2024-03-26", "url" : "https://ubuntu.com/security/notices/USN-6701-3" }, { "category" : "external", "summary" : "Blogpost auf pwning tech vom 2024-03-26", "url" : "https://pwning.tech/nftables/" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6707-4 vom 2024-03-28", "url" : "https://ubuntu.com/security/notices/USN-6707-4" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6704-4 vom 2024-03-28", "url" : "https://ubuntu.com/security/notices/USN-6704-4" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12257 vom 2024-04-02", "url" : "https://linux.oracle.com/errata/ELSA-2024-12257.html" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:1614 vom 2024-04-02", "url" : "https://access.redhat.com/errata/RHSA-2024:1614" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12259 vom 2024-04-02", "url" : "https://linux.oracle.com/errata/ELSA-2024-12259.html" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12255 vom 2024-04-02", "url" : "https://linux.oracle.com/errata/ELSA-2024-12255.html" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12260 vom 2024-04-02", "url" : "https://linux.oracle.com/errata/ELSA-2024-12260.html" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12258 vom 2024-04-02", "url" : "https://linux.oracle.com/errata/ELSA-2024-12258.html" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:1607 vom 2024-04-02", "url" : "https://access.redhat.com/errata/RHSA-2024:1607" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12256 vom 2024-04-02", "url" : "https://linux.oracle.com/errata/ELSA-2024-12256.html" }, { "category" : "external", "summary" : "Ubuntu Security Notice LSN-0102-1 vom 2024-04-03", "url" : "https://ubuntu.com/security/notices/LSN-0102-1" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12266 vom 2024-04-04", "url" : "https://linux.oracle.com/errata/ELSA-2024-12266.html" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12265 vom 2024-04-04", "url" : "https://linux.oracle.com/errata/ELSA-2024-12265.html" }, { "category" : "external", "summary" : "Oracle VM Security Advisory OVMSA-2024-0004 vom 2024-04-05", "url" : "https://oss.oracle.com/pipermail/oraclevm-errata/2024-April/001094.html" }, { "category" : "external", "summary" : "Rocky Linux Security Advisory RLSA-2024:1614 vom 2024-04-05", "url" : "https://errata.build.resf.org/RLSA-2024:1614" }, { "category" : "external", "summary" : "Rocky Linux Security Advisory RLSA-2024:1607 vom 2024-04-05", "url" : "https://errata.build.resf.org/RLSA-2024:1607" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-6701-4 vom 2024-04-09", "url" : "https://ubuntu.com/security/notices/USN-6701-4" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12275 vom 2024-04-09", "url" : "https://linux.oracle.com/errata/ELSA-2024-12275.html" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12271 vom 2024-04-09", "url" : "https://linux.oracle.com/errata/ELSA-2024-12271.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1181-1 vom 2024-04-09", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018308.html" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12270 vom 2024-04-09", "url" : "https://linux.oracle.com/errata/ELSA-2024-12270.html" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12274 vom 2024-04-09", "url" : "https://linux.oracle.com/errata/ELSA-2024-12274.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1252-1 vom 2024-04-12", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018329.html" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-1607 vom 2024-04-11", "url" : "https://linux.oracle.com/errata/ELSA-2024-1607.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1239-1 vom 2024-04-11", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018321.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1251-1 vom 2024-04-11", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018326.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1236-1 vom 2024-04-11", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018322.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1274-1 vom 2024-04-12", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018331.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1298-1 vom 2024-04-15", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018356.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1299-1 vom 2024-04-15", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018355.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1288-1 vom 2024-04-15", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018352.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1292-1 vom 2024-04-15", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018351.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1318-1 vom 2024-04-16", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018369.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1312-1 vom 2024-04-16", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018370.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1364-1 vom 2024-04-22", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018387.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1358-1 vom 2024-04-22", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018390.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1359-1 vom 2024-04-22", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018389.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1382-1 vom 2024-04-22", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018399.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1373-1 vom 2024-04-22", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018391.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1386-1 vom 2024-04-22", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018397.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1380-1 vom 2024-04-22", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018398.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1390-1 vom 2024-04-23", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018402.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1388-1 vom 2024-04-23", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018401.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1401-1 vom 2024-04-23", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018407.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1410-1 vom 2024-04-23", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018412.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1405-1 vom 2024-04-23", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018406.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1400-1 vom 2024-04-23", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018408.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1406-1 vom 2024-04-23", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018414.html" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:2394 vom 2024-04-30", "url" : "https://access.redhat.com/errata/RHSA-2024:2394" }, { "category" : "external", "summary" : "Ubuntu Security Notice LSN-0103-1 vom 2024-04-30", "url" : "https://ubuntu.com/security/notices/LSN-0103-1" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:2093 vom 2024-05-01", "url" : "https://access.redhat.com/errata/RHSA-2024:2093" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:2697 vom 2024-05-06", "url" : "https://access.redhat.com/errata/RHSA-2024:2697" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1493-1 vom 2024-05-06", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018446.html" }, { "category" : "external", "summary" : "Rocky Linux Security Advisory RXSA-2024:1607 vom 2024-05-06", "url" : "https://errata.build.resf.org/RXSA-2024:1607" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1506-1 vom 2024-05-06", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018451.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1505-1 vom 2024-05-06", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018452.html" }, { "category" : "external", "summary" : "Dell Security Advisory DSA-2024-198 vom 2024-05-08", "url" : "https://www.dell.com/support/kbdoc/000224827/dsa-2024-=" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1545-1 vom 2024-05-07", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018475.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1551-1 vom 2024-05-07", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018480.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1554-1 vom 2024-05-08", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018481.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1580-1 vom 2024-05-09", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018493.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1558-1 vom 2024-05-08", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018485.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1562-1 vom 2024-05-08", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018484.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1581-1 vom 2024-05-09", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018496.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1582-1 vom 2024-05-10", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018497.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2024:1596-1 vom 2024-05-10", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018504.html" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12378 vom 2024-05-14", "url" : "http://linux.oracle.com/errata/ELSA-2024-12378.html" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:3319 vom 2024-05-23", "url" : "https://access.redhat.com/errata/RHSA-2024:3319" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:3318 vom 2024-05-23", "url" : "https://access.redhat.com/errata/RHSA-2024:3318" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:3414 vom 2024-05-28", "url" : "https://access.redhat.com/errata/RHSA-2024:3414" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:3427 vom 2024-05-28", "url" : "https://access.redhat.com/errata/RHSA-2024:3427" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:3421 vom 2024-05-28", "url" : "https://access.redhat.com/errata/RHSA-2024:3421" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:3528 vom 2024-05-31", "url" : "https://access.redhat.com/errata/RHSA-2024:3528" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:3529 vom 2024-05-31", "url" : "https://access.redhat.com/errata/RHSA-2024:3529" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:3530 vom 2024-05-31", "url" : "https://access.redhat.com/errata/RHSA-2024:3530" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12385 vom 2024-06-05", "url" : "https://oss.oracle.com/pipermail/el-errata/2024-June/015806.html" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2024-12385 vom 2024-06-05", "url" : "https://oss.oracle.com/pipermail/el-errata/2024-June/015807.html" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:3805 vom 2024-06-11", "url" : "https://access.redhat.com/errata/RHSA-2024:3805" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:4074 vom 2024-06-25", "url" : "https://access.redhat.com/errata/RHSA-2024:4074" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:4073 vom 2024-06-25", "url" : "https://access.redhat.com/errata/RHSA-2024:4073" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2024:4075 vom 2024-06-25", "url" : "https://access.redhat.com/errata/RHSA-2024:4075" }, { "category" : "external", "summary" : "Debian Security Advisory DLA-3841 vom 2024-06-25", "url" : "https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html" }, { "category" : "external", "summary" : "Debian Security Advisory DLA-3840 vom 2024-06-27", "url" : "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html" }, { "category" : "external", "summary" : "Amazon Linux Security Advisory ALASLIVEPATCH-2024-028 vom 2024-07-02", "url" : "https://alas.aws.amazon.com/AL2023/ALASLIVEPATCH-2024-028.html" }, { "category" : "external", "summary" : "Amazon Linux Security Advisory ALASLIVEPATCH-2024-027 vom 2024-07-02", "url" : "https://alas.aws.amazon.com/AL2023/ALASLIVEPATCH-2024-027.html" }, { "category" : "external", "summary" : "Moxa Security Advisory MPSA-249807 vom 2024-07-10", "url" : "https://www.moxa.com/en/support/product-support/security-advisory/mpsa-249807-multiple-moxa-product-series-affected-by-linux-kernel-memory-double-free-vulnerability" }, { "category" : "external", "summary" : "IBM Security Bulletin 7161794 vom 2024-07-29", "url" : "https://www.ibm.com/support/pages/node/7161794" }, { "category" : "external", "summary" : "IBM Security Bulletin 7161954 vom 2024-07-30", "url" : "https://www.ibm.com/support/pages/node/7161954" }, { "category" : "external", "summary" : "Securepoint UTM Changelog vom 2024-08-14", "url" : "https://wiki.securepoint.de/UTM/Changelog" }, { "category" : "external", "summary" : "Brocade Security Advisory BSA-2024-2603 vom 2024-11-12", "url" : "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24989" }, { "category" : "external", "summary" : "HPE Security Bulletin", "url" : "https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-hpesbst04758en_us&hprpt_id=ALERT_HPE_3075763&jumpid=em_pom8nu6hj_aid-521053889" }, { "category" : "external", "summary" : "ExtremeNetworks Vulnerability Notice SA-2024-035 vom 2025-02-12", "url" : "https://extreme-networks.my.site.com/ExtrArticleDetail?an=000123244" }, { "category" : "external", "summary" : "CISA Known Exploited Vulnerabilities Catalog vom 2025-02-12", "url" : "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-1086" } ], "source_lang" : "en-US", "title" : "Linux Kernel: Mehrere Schwachstellen ermöglichen Privilegieneskalation", "tracking" : { "current_release_date" : "2025-11-02T23:00:00.000+00:00", "generator" : { "date" : "2025-11-03T10:13:34.118+00:00", "engine" : { "name" : "BSI-WID", "version" : "1.4.0" } }, "id" : "WID-SEC-W-2024-0266", "initial_release_date" : "2024-01-31T23:00:00.000+00:00", "revision_history" : [ { "date" : "2024-01-31T23:00:00.000+00:00", "number" : "1", "summary" : "Initiale Fassung" }, { "date" : "2024-02-14T23:00:00.000+00:00", "number" : "2", "summary" : "Neue Updates von SUSE aufgenommen" }, { "date" : "2024-02-15T23:00:00.000+00:00", "number" : "3", "summary" : "Neue Updates von SUSE aufgenommen" }, { "date" : "2024-02-19T23:00:00.000+00:00", "number" : "4", "summary" : "Neue Updates von Amazon aufgenommen" }, { "date" : "2024-02-20T23:00:00.000+00:00", "number" : "5", "summary" : "Neue Updates von Amazon und Red Hat aufgenommen" }, { "date" : "2024-02-28T23:00:00.000+00:00", "number" : "6", "summary" : "Neue Updates von Red Hat aufgenommen" }, { "date" : "2024-03-11T23:00:00.000+00:00", "number" : "7", "summary" : "Neue Updates von Red Hat und Ubuntu aufgenommen" }, { "date" : "2024-03-12T23:00:00.000+00:00", "number" : "8", "summary" : "Neue Updates von IGEL und Oracle Linux aufgenommen" }, { "date" : "2024-03-14T23:00:00.000+00:00", "number" : "9", "summary" : "Neue Updates von Red Hat aufgenommen" }, { "date" : "2024-03-18T23:00:00.000+00:00", "number" : "10", "summary" : "Neue Updates von Ubuntu aufgenommen" }, { "date" : "2024-03-19T23:00:00.000+00:00", "number" : "11", "summary" : "Neue Updates von Ubuntu und Red Hat aufgenommen" }, { "date" : "2024-03-20T23:00:00.000+00:00", "number" : "12", "summary" : "Neue Updates von Ubuntu und Oracle Linux aufgenommen" }, { "date" : "2024-03-21T23:00:00.000+00:00", "number" : "13", "summary" : "Neue Updates von Ubuntu aufgenommen" }, { "date" : "2024-03-25T23:00:00.000+00:00", "number" : "14", "summary" : "Neue Updates von Ubuntu aufgenommen" }, { "date" : "2024-03-26T23:00:00.000+00:00", "number" : "15", "summary" : "Exploit aufgenommen" }, { "date" : "2024-04-01T22:00:00.000+00:00", "number" : "16", "summary" : "Neue Updates von Ubuntu aufgenommen" }, { "date" : "2024-04-02T22:00:00.000+00:00", "number" : "17", "summary" : "Neue Updates von Oracle Linux und Red Hat aufgenommen" }, { "date" : "2024-04-03T22:00:00.000+00:00", "number" : "18", "summary" : "Neue Updates von Ubuntu und Oracle Linux aufgenommen" }, { "date" : "2024-04-04T22:00:00.000+00:00", "number" : "19", "summary" : "Neue Updates von ORACLE aufgenommen" }, { "date" : "2024-04-07T22:00:00.000+00:00", "number" : "20", "summary" : "Neue Updates von Rocky Enterprise Software Foundation aufgenommen" }, { "date" : "2024-04-09T22:00:00.000+00:00", "number" : "21", "summary" : "Neue Updates von Ubuntu und Oracle Linux aufgenommen" }, { "date" : "2024-04-11T22:00:00.000+00:00", "number" : "22", "summary" : "Neue Updates von SUSE und Oracle Linux aufgenommen" }, { "date" : "2024-04-14T22:00:00.000+00:00", "number" : "23", "summary" : "Neue Updates von SUSE aufgenommen" }, { "date" : "2024-04-15T22:00:00.000+00:00", "number" : "24", "summary" : "Neue Updates von SUSE aufgenommen" }, { "date" : "2024-04-16T22:00:00.000+00:00", "number" : "25", "summary" : "Neue Updates von SUSE aufgenommen" }, { "date" : "2024-04-21T22:00:00.000+00:00", "number" : "26", "summary" : "Neue Updates von SUSE aufgenommen" }, { "date" : "2024-04-22T22:00:00.000+00:00", "number" : "27", "summary" : "Neue Updates von SUSE aufgenommen" }, { "date" : "2024-04-23T22:00:00.000+00:00", "number" : "28", "summary" : "Neue Updates von SUSE aufgenommen" }, { "date" : "2024-04-29T22:00:00.000+00:00", "number" : "29", "summary" : "Neue Updates von Red Hat aufgenommen" }, { "date" : "2024-05-01T22:00:00.000+00:00", "number" : "30", "summary" : "Neue Updates von Ubuntu und Red Hat aufgenommen" }, { "date" : "2024-05-05T22:00:00.000+00:00", "number" : "31", "summary" : "Neue Updates von Red Hat aufgenommen" }, { "date" : "2024-05-06T22:00:00.000+00:00", "number" : "32", "summary" : "Neue Updates von Rocky Enterprise Software Foundation und SUSE aufgenommen" }, { "date" : "2024-05-07T22:00:00.000+00:00", "number" : "33", "summary" : "Neue Updates von Dell und SUSE aufgenommen" }, { "date" : "2024-05-09T22:00:00.000+00:00", "number" : "34", "summary" : "Neue Updates von SUSE aufgenommen" }, { "date" : "2024-05-12T22:00:00.000+00:00", "number" : "35", "summary" : "Neue Updates von SUSE aufgenommen" }, { "date" : "2024-05-13T22:00:00.000+00:00", "number" : "36", "summary" : "Neue Updates von Oracle Linux aufgenommen" }, { "date" : "2024-05-22T22:00:00.000+00:00", "number" : "37", "summary" : "Neue Updates von Red Hat aufgenommen" }, { "date" : "2024-05-28T22:00:00.000+00:00", "number" : "38", "summary" : "Neue Updates von Red Hat aufgenommen" }, { "date" : "2024-06-02T22:00:00.000+00:00", "number" : "39", "summary" : "Neue Updates von Red Hat aufgenommen" }, { "date" : "2024-06-05T22:00:00.000+00:00", "number" : "40", "summary" : "Neue Updates von Oracle Linux aufgenommen" }, { "date" : "2024-06-11T22:00:00.000+00:00", "number" : "41", "summary" : "Neue Updates von Red Hat aufgenommen" }, { "date" : "2024-06-24T22:00:00.000+00:00", "number" : "42", "summary" : "Neue Updates von Red Hat aufgenommen" }, { "date" : "2024-06-25T22:00:00.000+00:00", "number" : "43", "summary" : "Neue Updates von Debian aufgenommen" }, { "date" : "2024-06-27T22:00:00.000+00:00", "number" : "44", "summary" : "Neue Updates von Debian aufgenommen" }, { "date" : "2024-07-01T22:00:00.000+00:00", "number" : "45", "summary" : "Neue Updates von Amazon aufgenommen" }, { "date" : "2024-07-10T22:00:00.000+00:00", "number" : "46", "summary" : "Neue Updates von moxa aufgenommen" }, { "date" : "2024-07-29T22:00:00.000+00:00", "number" : "47", "summary" : "Neue Updates von IBM aufgenommen" }, { "date" : "2024-07-30T22:00:00.000+00:00", "number" : "48", "summary" : "Neue Updates von IBM aufgenommen" }, { "date" : "2024-08-14T22:00:00.000+00:00", "number" : "49", "summary" : "Neue Updates aufgenommen" }, { "date" : "2024-11-12T23:00:00.000+00:00", "number" : "50", "summary" : "Neue Updates von BROCADE aufgenommen" }, { "date" : "2025-01-07T23:00:00.000+00:00", "number" : "51", "summary" : "Neue Updates von HP aufgenommen" }, { "date" : "2025-02-12T23:00:00.000+00:00", "number" : "52", "summary" : "Neue Updates von ExtremeNetworks aufgenommen" }, { "date" : "2025-11-02T23:00:00.000+00:00", "number" : "53", "summary" : "Aktive Ausnutzung gemeldet" } ], "status" : "final", "version" : "53" } }, "product_tree" : { "branches" : [ { "branches" : [ { "category" : "product_name", "name" : "Amazon Linux 2", "product" : { "name" : "Amazon Linux 2", "product_id" : "398363", "product_identification_helper" : { "cpe" : "cpe:/o:amazon:linux_2:-" } } } ], "category" : "vendor", "name" : "Amazon" }, { "branches" : [ { "branches" : [ { "category" : "product_version_range", "name" : "<9.2.0c", "product" : { "name" : "Broadcom Fabric OS <9.2.0c", "product_id" : "T038914" } }, { "category" : "product_version", "name" : "9.2.0c", "product" : { "name" : "Broadcom Fabric OS 9.2.0c", "product_id" : "T038914-fixed", "product_identification_helper" : { "cpe" : "cpe:/o:broadcom:fabric_operating_system:9.2.0c" } } }, { "category" : "product_version_range", "name" : "<9.2.1a1", "product" : { "name" : "Broadcom Fabric OS <9.2.1a1", "product_id" : "T038915" } }, { "category" : "product_version", "name" : "9.2.1a1", "product" : { "name" : "Broadcom Fabric OS 9.2.1a1", "product_id" : "T038915-fixed", "product_identification_helper" : { "cpe" : "cpe:/o:broadcom:fabric_operating_system:9.2.1a1" } } }, { "category" : "product_version_range", "name" : "<9.2.2", "product" : { "name" : "Broadcom Fabric OS <9.2.2", "product_id" : "T038916" } }, { "category" : "product_version", "name" : "9.2.2", "product" : { "name" : "Broadcom Fabric OS 9.2.2", "product_id" : "T038916-fixed", "product_identification_helper" : { "cpe" : "cpe:/o:broadcom:fabric_operating_system:9.2.2" } } } ], "category" : "product_name", "name" : "Fabric OS" } ], "category" : "vendor", "name" : "Broadcom" }, { "branches" : [ { "category" : "product_name", "name" : "Debian Linux", "product" : { "name" : "Debian Linux", "product_id" : "2951", "product_identification_helper" : { "cpe" : "cpe:/o:debian:debian_linux:-" } } } ], "category" : "vendor", "name" : "Debian" }, { "branches" : [ { "branches" : [ { "category" : "product_version", "name" : "virtual", "product" : { "name" : "Dell NetWorker virtual", "product_id" : "T034583", "product_identification_helper" : { "cpe" : "cpe:/a:dell:networker:virtual" } } } ], "category" : "product_name", "name" : "NetWorker" } ], "category" : "vendor", "name" : "Dell" }, { "branches" : [ { "category" : "product_name", "name" : "EMC Avamar", "product" : { "name" : "EMC Avamar", "product_id" : "T014381", "product_identification_helper" : { "cpe" : "cpe:/a:emc:avamar:-" } } } ], "category" : "vendor", "name" : "EMC" }, { "branches" : [ { "branches" : [ { "category" : "product_version_range", "name" : "<31.7.3.3-patch1-53", "product" : { "name" : "Extreme Networks ExtremeXOS <31.7.3.3-patch1-53", "product_id" : "T041148" } }, { "category" : "product_version", "name" : "31.7.3.3-patch1-53", "product" : { "name" : "Extreme Networks ExtremeXOS 31.7.3.3-patch1-53", "product_id" : "T041148-fixed", "product_identification_helper" : { "cpe" : "cpe:/o:extremenetworks:extremexos:31.7.3.3-patch1-53" } } }, { "category" : "product_version_range", "name" : "<32.7.1.9-patch1-54", "product" : { "name" : "Extreme Networks ExtremeXOS <32.7.1.9-patch1-54", "product_id" : "T041149" } }, { "category" : "product_version", "name" : "32.7.1.9-patch1-54", "product" : { "name" : "Extreme Networks ExtremeXOS 32.7.1.9-patch1-54", "product_id" : "T041149-fixed", "product_identification_helper" : { "cpe" : "cpe:/o:extremenetworks:extremexos:32.7.1.9-patch1-54" } } }, { "category" : "product_version_range", "name" : "<33.2.1", "product" : { "name" : "Extreme Networks ExtremeXOS <33.2.1", "product_id" : "T041150" } }, { "category" : "product_version", "name" : "33.2.1", "product" : { "name" : "Extreme Networks ExtremeXOS 33.2.1", "product_id" : "T041150-fixed", "product_identification_helper" : { "cpe" : "cpe:/o:extremenetworks:extremexos:33.2.1" } } } ], "category" : "product_name", "name" : "ExtremeXOS" } ], "category" : "vendor", "name" : "Extreme Networks" }, { "branches" : [ { "category" : "product_name", "name" : "HPE Switch", "product" : { "name" : "HPE Switch", "product_id" : "T005119", "product_identification_helper" : { "cpe" : "cpe:/h:hp:switch:-" } } } ], "category" : "vendor", "name" : "HPE" }, { "branches" : [ { "branches" : [ { "category" : "product_version", "name" : "11.4", "product" : { "name" : "IBM Security Guardium 11.4", "product_id" : "1076561", "product_identification_helper" : { "cpe" : "cpe:/a:ibm:security_guardium:11.4" } } }, { "category" : "product_version", "name" : "11.5", "product" : { "name" : "IBM Security Guardium 11.5", "product_id" : "1411051", "product_identification_helper" : { "cpe" : "cpe:/a:ibm:security_guardium:11.5" } } } ], "category" : "product_name", "name" : "Security Guardium" }, { "branches" : [ { "category" : "product_version_range", "name" : "<10.1.16.2", "product" : { "name" : "IBM Spectrum Protect Plus <10.1.16.2", "product_id" : "T036379" } }, { "category" : "product_version", "name" : "10.1.16.2", "product" : { "name" : "IBM Spectrum Protect Plus 10.1.16.2", "product_id" : "T036379-fixed", "product_identification_helper" : { "cpe" : "cpe:/a:ibm:spectrum_protect_plus:10.1.16.2" } } } ], "category" : "product_name", "name" : "Spectrum Protect Plus" } ], "category" : "vendor", "name" : "IBM" }, { "branches" : [ { "branches" : [ { "category" : "product_version_range", "name" : "<11.10.100", "product" : { "name" : "IGEL OS <11.10.100", "product_id" : "T033380" } }, { "category" : "product_version", "name" : "11.10.100", "product" : { "name" : "IGEL OS 11.10.100", "product_id" : "T033380-fixed", "product_identification_helper" : { "cpe" : "cpe:/o:igel:os:11.10.100" } } } ], "category" : "product_name", "name" : "OS" } ], "category" : "vendor", "name" : "IGEL" }, { "branches" : [ { "category" : "product_name", "name" : "Moxa MXsecurity", "product" : { "name" : "Moxa MXsecurity", "product_id" : "T036099", "product_identification_helper" : { "cpe" : "cpe:/a:moxa:mxsecurity:-" } } } ], "category" : "vendor", "name" : "Moxa" }, { "branches" : [ { "branches" : [ { "category" : "product_version_range", "name" : "<6.8-rc2", "product" : { "name" : "Open Source Linux Kernel <6.8-rc2", "product_id" : "T032450" } }, { "category" : "product_version", "name" : "6.8-rc2", "product" : { "name" : "Open Source Linux Kernel 6.8-rc2", "product_id" : "T032450-fixed", "product_identification_helper" : { "cpe" : "cpe:/o:linux:linux_kernel:6.8-rc2" } } } ], "category" : "product_name", "name" : "Linux Kernel" } ], "category" : "vendor", "name" : "Open Source" }, { "branches" : [ { "category" : "product_name", "name" : "Oracle Linux", "product" : { "name" : "Oracle Linux", "product_id" : "T004914", "product_identification_helper" : { "cpe" : "cpe:/o:oracle:linux:-" } } }, { "branches" : [ { "category" : "product_version", "name" : "3", "product" : { "name" : "Oracle VM 3", "product_id" : "T030927", "product_identification_helper" : { "cpe" : "cpe:/a:oracle:vm:3" } } } ], "category" : "product_name", "name" : "VM" } ], "category" : "vendor", "name" : "Oracle" }, { "branches" : [ { "category" : "product_name", "name" : "RESF Rocky Linux", "product" : { "name" : "RESF Rocky Linux", "product_id" : "T032255", "product_identification_helper" : { "cpe" : "cpe:/o:resf:rocky_linux:-" } } } ], "category" : "vendor", "name" : "RESF" }, { "branches" : [ { "category" : "product_name", "name" : "Red Hat Enterprise Linux", "product" : { "name" : "Red Hat Enterprise Linux", "product_id" : "67646", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:-" } } } ], "category" : "vendor", "name" : "Red Hat" }, { "branches" : [ { "category" : "product_name", "name" : "SUSE Linux", "product" : { "name" : "SUSE Linux", "product_id" : "T002207", "product_identification_helper" : { "cpe" : "cpe:/o:suse:suse_linux:-" } } } ], "category" : "vendor", "name" : "SUSE" }, { "branches" : [ { "branches" : [ { "category" : "product_version_range", "name" : "<12.7.2", "product" : { "name" : "Securepoint UTM <12.7.2", "product_id" : "T036885" } }, { "category" : "product_version", "name" : "12.7.2", "product" : { "name" : "Securepoint UTM 12.7.2", "product_id" : "T036885-fixed", "product_identification_helper" : { "cpe" : "cpe:/o:securepoint:unified_threat_management:12.7.2" } } } ], "category" : "product_name", "name" : "UTM" } ], "category" : "vendor", "name" : "Securepoint" }, { "branches" : [ { "category" : "product_name", "name" : "Ubuntu Linux", "product" : { "name" : "Ubuntu Linux", "product_id" : "T000126", "product_identification_helper" : { "cpe" : "cpe:/o:canonical:ubuntu_linux:-" } } } ], "category" : "vendor", "name" : "Ubuntu" } ] }, "vulnerabilities" : [ { "cve" : "CVE-2024-1085", "product_status" : { "known_affected" : [ "T038916", "T038915", "67646", "T038914", "1076561", "T034583", "T005119", "T036379", "T036885", "T004914", "T032255", "T036099", "T032450", "T014381", "2951", "T002207", "T041150", "T033380", "T000126", "398363", "T041149", "T041148", "T030927", "1411051" ] }, "release_date" : "2024-01-31T23:00:00.000+00:00", "title" : "CVE-2024-1085" }, { "cve" : "CVE-2024-1086", "product_status" : { "known_affected" : [ "T038916", "T038915", "67646", "T038914", "1076561", "T034583", "T005119", "T036379", "T036885", "T004914", "T032255", "T036099", "T032450", "T014381", "2951", "T002207", "T041150", "T033380", "T000126", "398363", "T041149", "T041148", "T030927", "1411051" ] }, "release_date" : "2024-01-31T23:00:00.000+00:00", "title" : "CVE-2024-1086" } ] }