Oracle Linux: CVE-2024-35935: ELSA-2024-12700: Unbreakable Enterprise kernel security update (IMPORTANT) (Multiple Advisories)

Oracle Linux: CVE-2024-35935: ELSA-2024-12700: Unbreakable Enterprise kernel security update (IMPORTANT) (Multiple Advisories)

Severity

2

CVSS

(AV:L/AC:L/Au:S/C:P/I:N/A:N)

Published

05/19/2024

Created

10/24/2024

Added

10/16/2024

Modified

01/23/2025

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: send: handle path ref underflow in header iterate_inode_ref() Change BUG_ON to proper error handling if building the path buffer fails. The pointers are not printed so we don't accidentally leak kernel addresses.

Solution(s)

• oracle-linux-upgrade-kernel-uek

References

• https://attackerkb.com/topics/cve-2024-35935
• CVE - 2024-35935
• ELSA-2024-12700