Amazon Linux AMI 2: CVE-2023-1077: Security patch for kernel, kernel-livepatch-5.10.162-141.675, kernel-livepatch-5.10.165-143.735, kernel-livepatch-5.10.167-147.601 (Multiple Advisories)

发布于3月6日3月6日

Members

Amazon Linux AMI 2: CVE-2023-1077: Security patch for kernel, kernel-livepatch-5.10.162-141.675, kernel-livepatch-5.10.165-143.735, kernel-livepatch-5.10.167-147.601 (Multiple Advisories)

Severity

CVSS

(AV:L/AC:M/Au:S/C:C/I:C/A:C)

Published

03/22/2023

Created

03/23/2023

Added

03/22/2023

Modified

01/28/2025

Description

In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the BUG_ON condition, as the confused entry will not be NULL, but list_head.The buggy error condition would lead to a type confused entry with the list head,which would then be used as a type confused sched_rt_entity,causing memory corruption.

Solution(s)

amazon-linux-ami-2-upgrade-bpftool
amazon-linux-ami-2-upgrade-bpftool-debuginfo
amazon-linux-ami-2-upgrade-kernel
amazon-linux-ami-2-upgrade-kernel-debuginfo
amazon-linux-ami-2-upgrade-kernel-debuginfo-common-aarch64
amazon-linux-ami-2-upgrade-kernel-debuginfo-common-x86_64
amazon-linux-ami-2-upgrade-kernel-devel
amazon-linux-ami-2-upgrade-kernel-headers
amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-344-262-563
amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-162-141-675
amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-162-141-675-debuginfo
amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-165-143-735
amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-165-143-735-debuginfo
amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-167-147-601
amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-167-147-601-debuginfo
amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-173-154-642
amazon-linux-ami-2-upgrade-kernel-livepatch-5-15-102-61-139
amazon-linux-ami-2-upgrade-kernel-tools
amazon-linux-ami-2-upgrade-kernel-tools-debuginfo
amazon-linux-ami-2-upgrade-kernel-tools-devel
amazon-linux-ami-2-upgrade-perf
amazon-linux-ami-2-upgrade-perf-debuginfo
amazon-linux-ami-2-upgrade-python-perf
amazon-linux-ami-2-upgrade-python-perf-debuginfo

References

https://attackerkb.com/topics/cve-2023-1077
AL2/ALAS-2024-2588
AL2/ALASKERNEL-5.10-2023-028
AL2/ALASKERNEL-5.15-2023-015
AL2/ALASKERNEL-5.4-2023-043
AL2/ALASLIVEPATCH-2023-119
AL2/ALASLIVEPATCH-2023-120
AL2/ALASLIVEPATCH-2023-121
CVE - 2023-1077

登录

Amazon Linux AMI 2: CVE-2023-1077: Security patch for kernel, kernel-livepatch-5.10.162-141.675, kernel-livepatch-5.10.165-143.735, kernel-livepatch-5.10.167-147.601 (Multiple Advisories)

recommended_posts

Amazon Linux AMI 2: CVE-2023-1077: Security patch for kernel, kernel-livepatch-5.10.162-141.675, kernel-livepatch-5.10.165-143.735, kernel-livepatch-5.10.167-147.601 (Multiple Advisories)

Description

Solution(s)

References

欢迎来到红帽社区

社区动态

红龙逆向工具箱2025最新版(ISHACK改良版)

修改底部版权信息

ips4.7升级到5.x版本问题。

IPS Invision Community 经常自动退出登录解决

网站程序安装中文语言包时没有中文选项？Debian中文包

帐户

导航

搜索