跳转到帖子

Alma Linux: CVE-2023-52560: Important: kernel security and bug fix update (Multiple Advisories)

recommended_posts

发布于
  • Members

Alma Linux: CVE-2023-52560: Important: kernel security and bug fix update (Multiple Advisories)

Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:C)
Published
03/02/2024
Created
07/03/2024
Added
07/03/2024
Modified
01/30/2025

Description

In the Linux kernel, the following vulnerability has been resolved: mm/damon/vaddr-test: fix memory leak in damon_do_test_apply_three_regions() When CONFIG_DAMON_VADDR_KUNIT_TEST=y and making CONFIG_DEBUG_KMEMLEAK=y and CONFIG_DEBUG_KMEMLEAK_AUTO_SCAN=y, the below memory leak is detected. Since commit 9f86d624292c ("mm/damon/vaddr-test: remove unnecessary variables"), the damon_destroy_ctx() is removed, but still call damon_new_target() and damon_new_region(), the damon_region which is allocated by kmem_cache_alloc() in damon_new_region() and the damon_target which is allocated by kmalloc in damon_new_target() are not freed.And the damon_region which is allocated in damon_new_region() in damon_set_regions() is also not freed. So use damon_destroy_target to free all the damon_regions and damon_target. unreferenced object 0xffff888107c9a940 (size 64): comm "kunit_try_catch", pid 1069, jiffies 4294670592 (age 732.761s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 06 00 00 00 6b 6b 6b 6b............kkkk 60 c7 9c 07 81 88 ff ff f8 cb 9c 07 81 88 ff ff`............... backtrace: [<ffffffff817e0167>] kmalloc_trace+0x27/0xa0 [<ffffffff819c11cf>] damon_new_target+0x3f/0x1b0 [<ffffffff819c7d55>] damon_do_test_apply_three_regions.constprop.0+0x95/0x3e0 [<ffffffff819c82be>] damon_test_apply_three_regions1+0x21e/0x260 [<ffffffff829fce6a>] kunit_generic_run_threadfn_adapter+0x4a/0x90 [<ffffffff81237cf6>] kthread+0x2b6/0x380 [<ffffffff81097add>] ret_from_fork+0x2d/0x70 [<ffffffff81003791>] ret_from_fork_asm+0x11/0x20 unreferenced object 0xffff8881079cc740 (size 56): comm "kunit_try_catch", pid 1069, jiffies 4294670592 (age 732.761s) hex dump (first 32 bytes): 05 00 00 00 00 00 00 00 14 00 00 00 00 00 00 00................ 6b 6b 6b 6b 6b 6b 6b 6b 00 00 00 00 6b 6b 6b 6bkkkkkkkk....kkkk backtrace: [<ffffffff819bc492>] damon_new_region+0x22/0x1c0 [<ffffffff819c7d91>] damon_do_test_apply_three_regions.constprop.0+0xd1/0x3e0 [<ffffffff819c82be>] damon_test_apply_three_regions1+0x21e/0x260 [<ffffffff829fce6a>] kunit_generic_run_threadfn_adapter+0x4a/0x90 [<ffffffff81237cf6>] kthread+0x2b6/0x380 [<ffffffff81097add>] ret_from_fork+0x2d/0x70 [<ffffffff81003791>] ret_from_fork_asm+0x11/0x20 unreferenced object 0xffff888107c9ac40 (size 64): comm "kunit_try_catch", pid 1071, jiffies 4294670595 (age 732.843s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 06 00 00 00 6b 6b 6b 6b............kkkk a0 cc 9c 07 81 88 ff ff 78 a1 76 07 81 88 ff ff........x.v..... backtrace: [<ffffffff817e0167>] kmalloc_trace+0x27/0xa0 [<ffffffff819c11cf>] damon_new_target+0x3f/0x1b0 [<ffffffff819c7d55>] damon_do_test_apply_three_regions.constprop.0+0x95/0x3e0 [<ffffffff819c851e>] damon_test_apply_three_regions2+0x21e/0x260 [<ffffffff829fce6a>] kunit_generic_run_threadfn_adapter+0x4a/0x90 [<ffffffff81237cf6>] kthread+0x2b6/0x380 [<ffffffff81097add>] ret_from_fork+0x2d/0x70 [<ffffffff81003791>] ret_from_fork_asm+0x11/0x20 unreferenced object 0xffff8881079ccc80 (size 56): comm "kunit_try_catch", pid 1071, jiffies 4294670595 (age 732.843s) hex dump (first 32 bytes): 05 00 00 00 00 00 00 00 14 00 00 00 00 00 00 00................ 6b 6b 6b 6b 6b 6b 6b 6b 00 00 00 00 6b 6b 6b 6bkkkkkkkk....kkkk backtrace: [<ffffffff819bc492>] damon_new_region+0x22/0x1c0 [<ffffffff819c7d91>] damon_do_test_apply_three_regions.constprop.0+0xd1/0x3e0 [<ffffffff819c851e>] damon_test_apply_three_regions2+0x21e/0x260 [<ffffffff829fce6a>] kunit_generic_run_threadfn_adapter+0x4a/0x90 [<ffffffff81237cf6>] kthread+0x2b6/0x380 [<ffffffff81097add>] ret_from_fork+0x2d/0x70 [<ffff ---truncated---

Solution(s)

  • alma-upgrade-bpftool
  • alma-upgrade-kernel
  • alma-upgrade-kernel-abi-stablelists
  • alma-upgrade-kernel-core
  • alma-upgrade-kernel-cross-headers
  • alma-upgrade-kernel-debug
  • alma-upgrade-kernel-debug-core
  • alma-upgrade-kernel-debug-devel
  • alma-upgrade-kernel-debug-modules
  • alma-upgrade-kernel-debug-modules-extra
  • alma-upgrade-kernel-devel
  • alma-upgrade-kernel-doc
  • alma-upgrade-kernel-headers
  • alma-upgrade-kernel-modules
  • alma-upgrade-kernel-modules-extra
  • alma-upgrade-kernel-rt
  • alma-upgrade-kernel-rt-core
  • alma-upgrade-kernel-rt-debug
  • alma-upgrade-kernel-rt-debug-core
  • alma-upgrade-kernel-rt-debug-devel
  • alma-upgrade-kernel-rt-debug-kvm
  • alma-upgrade-kernel-rt-debug-modules
  • alma-upgrade-kernel-rt-debug-modules-extra
  • alma-upgrade-kernel-rt-devel
  • alma-upgrade-kernel-rt-kvm
  • alma-upgrade-kernel-rt-modules
  • alma-upgrade-kernel-rt-modules-extra
  • alma-upgrade-kernel-tools
  • alma-upgrade-kernel-tools-libs
  • alma-upgrade-kernel-tools-libs-devel
  • alma-upgrade-kernel-zfcpdump
  • alma-upgrade-kernel-zfcpdump-core
  • alma-upgrade-kernel-zfcpdump-devel
  • alma-upgrade-kernel-zfcpdump-modules
  • alma-upgrade-kernel-zfcpdump-modules-extra
  • alma-upgrade-perf
  • alma-upgrade-python3-perf

References

  • https://attackerkb.com/topics/cve-2023-52560
  • CVE - 2023-52560
  • https://errata.almalinux.org/8/ALSA-2024-4211.html
  • https://errata.almalinux.org/8/ALSA-2024-4352.html
  • 查看数 708
  • 已创建
  • 最后回复

参与讨论

你可立刻发布并稍后注册。 如果你有帐户,立刻登录发布帖子。
注意:你的帖子需要版主批准后才能看到。

游客
回帖…