CoreOS Security Update (MINDBREEZE31367)

ID: MINDBREEZE31367
Affected Components: Mindbreeze InSpire SaaS, Mindbreeze InSpire
Severity: 5.5 MEDIUM
Status: Final
First published: September 04, 2024
CVEs: CVE-2024-27022, CVE-2024-27020, CVE-2024-27019, CVE-2024-27012, CVE-2024-27011, CVE-2024-27010, CVE-2024-27007, CVE-2024-27004, CVE-2024-27003, CVE-2024-26993, CVE-2024-26992, CVE-2024-26991, CVE-2024-26990, CVE-2024-26988, CVE-2024-26987, CVE-2024-26983, CVE-2024-6387

Summary

kernel: fork: defer linking file vma until vma is fully initialized [fedora-all]
kernel: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() [fedora-all]
kernel: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() [fedora-all]
kernel: netfilter: nf_tables: restore set elements when delete set fails [fedora-all]
kernel: netfilter: nf_tables: fix memleak in map from abort path [fedora-all]
kernel: net/sched: Fix mirred deadlock on device recursion [fedora-all]
kernel: userfaultfd: change src_folio after ensuring it's unpinned in UFFDIO_MOVE [fedora-all]
kernel: clk: Get runtime PM before walking tree during disable_unused [fedora-all]
kernel: clk: Get runtime PM before walking tree for clk_summary [fedora-all]
kernel: fs: sysfs: Fix reference leak in sysfs_break_active_protection() [fedora-all]
kernel: KVM: x86/pmu: Disable support for adaptive PEBS [fedora-all]
kernel: KVM: x86/mmu: x86: Don't overflow lpage_info when checking attributes [fedora-all]
kernel: KVM: x86/mmu: Write-protect L2 SPTEs in TDP MMU when clearing dirty status [fedora-all]
kernel: init/main.c: Fix potential static_command_line memory overflow [fedora-all]
kernel: mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled [fedora-all]
kernel: bootconfig: use memblock_free_late to free xbc memory to buddy [fedora-all]
Replaced mitigation for CVE-2024-6387 with a fixed version of OpenSSH

Hotfix Information

Fixed with following versions of Mindbreeze InSpire On-Premises or Mindbreeze InSpire SaaS:

Mindbreeze InSpire SaaS 24.5 Release
Mindbreeze InSpire 24.5 Release

CoreOS Security Update (MINDBREEZE31367)

Summary

Social Media

Security

Support

Newsletter

Language