Amazon Linux AMI 2: CVE-2023-4921: Security patch for kernel, kernel-livepatch-4.14.320-243.544, kernel-livepatch-4.14.322-244.536, kernel-livepatch-4.14.322-244.539, kernel-livepatch-4.14.322-246.539, kernel-livepatch-5.10.186-179.751, kernel-livepatch-5.10.192-182.736, kernel-livepatch-5.10.192-183.736 (Multiple Advisories)
Description
A use-after-free vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. When the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfq_dequeue() due to the incorrect .peek handler of sch_plug and lack of error checking in agg_dequeue(). We recommend upgrading past commit 8fc134fee27f2263988ae38920bc03da416b03d8.
Solution(s)
- amazon-linux-ami-2-upgrade-bpftool
- amazon-linux-ami-2-upgrade-bpftool-debuginfo
- amazon-linux-ami-2-upgrade-kernel
- amazon-linux-ami-2-upgrade-kernel-debuginfo
- amazon-linux-ami-2-upgrade-kernel-debuginfo-common-aarch64
- amazon-linux-ami-2-upgrade-kernel-debuginfo-common-x86_64
- amazon-linux-ami-2-upgrade-kernel-devel
- amazon-linux-ami-2-upgrade-kernel-headers
- amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-320-243-544
- amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-320-243-544-debuginfo
- amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-322-244-536
- amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-322-244-536-debuginfo
- amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-322-244-539
- amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-322-244-539-debuginfo
- amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-322-246-539
- amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-322-246-539-debuginfo
- amazon-linux-ami-2-upgrade-kernel-livepatch-4-14-326-245-539
- amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-186-179-751
- amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-186-179-751-debuginfo
- amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-192-182-736
- amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-192-182-736-debuginfo
- amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-192-183-736
- amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-192-183-736-debuginfo
- amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-196-185-743
- amazon-linux-ami-2-upgrade-kernel-livepatch-5-15-133-86-144
- amazon-linux-ami-2-upgrade-kernel-tools
- amazon-linux-ami-2-upgrade-kernel-tools-debuginfo
- amazon-linux-ami-2-upgrade-kernel-tools-devel
- amazon-linux-ami-2-upgrade-perf
- amazon-linux-ami-2-upgrade-perf-debuginfo
- amazon-linux-ami-2-upgrade-python-perf
- amazon-linux-ami-2-upgrade-python-perf-debuginfo
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center