vulnerability
Amazon Linux AMI 2: CVE-2023-3090: Security patch for kernel, kernel-livepatch-4.14.313-235.533, kernel-livepatch-4.14.314-237.533, kernel-livepatch-4.14.314-238.539, kernel-livepatch-5.10.177-158.645, kernel-livepatch-5.10.178-162.673, kernel-livepatch-5.10.179-166.674, kernel-livepatch-5.10.179-168.710, kernel-livepatch-5.10.179-171.711 (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | Jun 28, 2023 | Jul 21, 2023 | Feb 20, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
Jun 28, 2023
Added
Jul 21, 2023
Modified
Feb 20, 2025
Description
A heap out-of-bounds write vulnerability in the Linux Kernel ipvlan network driver can be exploited to achieve local privilege escalation.
The out-of-bounds write is caused by missing skb->cb initialization in the ipvlan network driver. The vulnerability is reachable if CONFIG_IPVLAN is enabled.
We recommend upgrading past commit 90cbed5247439a966b645b34eb0a2e037836ea8e.
Solutions
amazon-linux-ami-2-upgrade-bpftoolamazon-linux-ami-2-upgrade-bpftool-debuginfoamazon-linux-ami-2-upgrade-kernelamazon-linux-ami-2-upgrade-kernel-debuginfoamazon-linux-ami-2-upgrade-kernel-debuginfo-common-aarch64amazon-linux-ami-2-upgrade-kernel-debuginfo-common-x86_64amazon-linux-ami-2-upgrade-kernel-develamazon-linux-ami-2-upgrade-kernel-headersamazon-linux-ami-2-upgrade-kernel-livepatch-4-14-313-235-533amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-313-235-533-debuginfoamazon-linux-ami-2-upgrade-kernel-livepatch-4-14-314-237-533amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-314-237-533-debuginfoamazon-linux-ami-2-upgrade-kernel-livepatch-4-14-314-238-539amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-314-238-539-debuginfoamazon-linux-ami-2-upgrade-kernel-livepatch-4-14-318-240-529amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-177-158-645amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-177-158-645-debuginfoamazon-linux-ami-2-upgrade-kernel-livepatch-5-10-178-162-673amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-178-162-673-debuginfoamazon-linux-ami-2-upgrade-kernel-livepatch-5-10-179-166-674amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-179-166-674-debuginfoamazon-linux-ami-2-upgrade-kernel-livepatch-5-10-179-168-710amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-179-168-710-debuginfoamazon-linux-ami-2-upgrade-kernel-livepatch-5-10-179-171-711amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-179-171-711-debuginfoamazon-linux-ami-2-upgrade-kernel-livepatch-5-10-184-174-730amazon-linux-ami-2-upgrade-kernel-livepatch-5-15-117-72-142amazon-linux-ami-2-upgrade-kernel-toolsamazon-linux-ami-2-upgrade-kernel-tools-debuginfoamazon-linux-ami-2-upgrade-kernel-tools-develamazon-linux-ami-2-upgrade-perfamazon-linux-ami-2-upgrade-perf-debuginfoamazon-linux-ami-2-upgrade-python-perfamazon-linux-ami-2-upgrade-python-perf-debuginfo
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.