INFSA-2024:10281: kernel:4.18.0 security update
Information about definition
Identificator: INFSA-2024:10281
Type: security
Release date: 2025-07-07 18:27:54 UTC
Information about package
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Vulnerabilities description
- CVE-2024-46858
In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: Fix uaf in __timer_delete_sync.
- CVE-2024-27399
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout.
- CVE-2024-38564
In the Linux kernel, the following vulnerability has been resolved: bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE.
- CVE-2024-27043
In the Linux kernel, the following vulnerability has been resolved: media: edia: dvbdev: fix a use-after-free.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2024-27043
|
no information | 5.2 | no information |
|
NIST — CVE-2024-27399
|
no information | 5.5 | no information |
|
NIST — CVE-2024-38564
|
no information | 4.4 | no information |
|
NIST — CVE-2024-46858
|
no information | 7.0 | no information |
Updated packages