Amazon Linux 2 Security Advisory: ALAS2KERNEL-5.4-2022-039
Advisory Released Date: 2022-12-14
Advisory Updated Date: 2025-10-18
FAQs regarding Amazon Linux ALAS/CVE Severity
A memory overflow vulnerability was found in the Linux kernel's ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability. (CVE-2021-3759)
In the Linux kernel, the following vulnerability has been resolved:
inet: fully convert sk->sk_rx_dst to RCU rules (CVE-2021-47103)
A use-after-free flaw was found in the Linux kernel's Unix socket Garbage Collection and io_uring. This flaw allows a local user to crash or potentially escalate their privileges on the system. (CVE-2022-2602)
A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function ipv6_renew_options of the component IPv6 Handler. The manipulation leads to memory leak. The attack can be launched remotely. It is recommended to apply a patch to fix this issue. The identifier VDB-211021 was assigned to this vulnerability. (CVE-2022-3524)
A vulnerability classified as problematic was found in Linux Kernel. Affected by this vulnerability is the function mvpp2_dbgfs_port_init of the file drivers/net/ethernet/marvell/mvpp2/mvpp2_debugfs.c of the component mvpp2. The manipulation leads to memory leak. It is recommended to apply a patch to fix this issue. The identifier VDB-211033 was assigned to this vulnerability. (CVE-2022-3535)
A vulnerability classified as problematic was found in Linux Kernel. This vulnerability affects the function bnx2x_tpa_stop of the file drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c of the component BPF. The manipulation leads to memory leak. It is recommended to apply a patch to fix this issue. VDB-211042 is the identifier assigned to this vulnerability. (CVE-2022-3542)
A vulnerability classified as critical was found in Linux Kernel. Affected by this vulnerability is the function l2cap_reassemble_sdu of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211087. (CVE-2022-3564)
A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function del_timer of the file drivers/isdn/mISDN/l1oip_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211088. (CVE-2022-3565)
A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function intr_callback of the file drivers/net/usb/r8152.c of the component BPF. The manipulation leads to logging of excessive data. The attack can be launched remotely. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211363. (CVE-2022-3594)
A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfs_new_inode of the file fs/nilfs2/inode.c of the component BPF. The manipulation leads to use after free. It is possible to launch the attack remotely. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211992. (CVE-2022-3649)
drivers/video/fbdev/smscufx.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free if a physically proximate attacker removes a USB device while calling open(), aka a race condition between ufx_ops_open and ufx_usb_disconnect. (CVE-2022-41849)
roccat_report_event in drivers/hid/hid-roccat.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free in certain situations where a report is received while copying a report->value is in progress. (CVE-2022-41850)
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix BUG_ON() when directory entry has invalid rec_len (CVE-2022-49879)
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix warning in 'ext4_da_release_space' (CVE-2022-49880)
In the Linux kernel, the following vulnerability has been resolved:
capabilities: fix potential memleak on error path from vfs_getxattr_alloc() (CVE-2022-49890)
In the Linux kernel, the following vulnerability has been resolved:
ipv6: fix WARNING in ip6_route_net_exit_late() (CVE-2022-49903)
In the Linux kernel, the following vulnerability has been resolved:
net, neigh: Fix null-ptr-deref in neigh_table_clear() (CVE-2022-49904)
In the Linux kernel, the following vulnerability has been resolved:
net: mdio: fix undefined behavior in bit shift for __mdiobus_register (CVE-2022-49907)
In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix ulist leaks in error paths of qgroup self tests (CVE-2022-49912)
In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix inode list leak during backref walking at find_parent_nodes() (CVE-2022-49913)
In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix inode list leak during backref walking at resolve_indirect_refs() (CVE-2022-49914)
In the Linux kernel, the following vulnerability has been resolved:
mISDN: fix possible memory leak in mISDN_register_device() (CVE-2022-49915)
In the Linux kernel, the following vulnerability has been resolved:
ipvs: fix WARNING in ip_vs_app_net_cleanup() (CVE-2022-49917)
In the Linux kernel, the following vulnerability has been resolved:
ipvs: fix WARNING in __ip_vs_cleanup_batch() (CVE-2022-49918)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: release flow rule object from commit path (CVE-2022-49919)
In the Linux kernel, the following vulnerability has been resolved:
net: sched: Fix use after free in red_enqueue() (CVE-2022-49921)
In the Linux kernel, the following vulnerability has been resolved:
RDMA/core: Fix null-ptr-deref in ib_core_cleanup() (CVE-2022-49925)
In the Linux kernel, the following vulnerability has been resolved:
nfs4: Fix kmemleak when allocate slot failed (CVE-2022-49927)
In the Linux kernel, the following vulnerability has been resolved:
binder: fix UAF of alloc->vma in race with munmap() (CVE-2022-50240)
In the Linux kernel, the following vulnerability has been resolved:
sctp: handle the error returned from sctp_auth_asoc_init_active_key (CVE-2022-50243)
In the Linux kernel, the following vulnerability has been resolved:
xen/gntdev: Prevent leaking grants (CVE-2022-50257)
In the Linux kernel, the following vulnerability has been resolved:
kcm: annotate data-races around kcm->rx_wait (CVE-2022-50265)
In the Linux kernel, the following vulnerability has been resolved:
vhost/vsock: Use kvmalloc/kvfree for larger packets. (CVE-2022-50271)
In the Linux kernel, the following vulnerability has been resolved:
mm,hugetlb: take hugetlb_lock before decrementing h->resv_huge_pages (CVE-2022-50285)
In the Linux kernel, the following vulnerability has been resolved:
kcm: annotate data-races around kcm->rx_psock (CVE-2022-50291)
In the Linux kernel, the following vulnerability has been resolved:
md: Replace snprintf with scnprintf (CVE-2022-50299)
In the Linux kernel, the following vulnerability has been resolved:
nbd: Fix hung when signal interrupts nbd_start_device_ioctl() (CVE-2022-50314)
In the Linux kernel, the following vulnerability has been resolved:
ata: ahci: Match EM_MAX_SLOTS with SATA_PMP_MAX_PORTS (CVE-2022-50315)
In the Linux kernel, the following vulnerability has been resolved:
crypto: cavium - prevent integer overflow loading firmware (CVE-2022-50330)
In the Linux kernel, the following vulnerability has been resolved:
binder: fix UAF of alloc->vma in race with munmap() (CVE-2022-50338)
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix null-ptr-deref in ext4_write_info (CVE-2022-50344)
In the Linux kernel, the following vulnerability has been resolved:
nfsd: Fix a memory leak in an error handling path (CVE-2022-50348)
In the Linux kernel, the following vulnerability has been resolved:
net: hns: fix possible memory leak in hnae_ae_register() (CVE-2022-50352)
In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix race between quota enable and quota rescan ioctl (CVE-2022-50379)
In the Linux kernel, the following vulnerability has been resolved:
mm: /proc/pid/smaps_rollup: fix no vma's null-deref (CVE-2022-50380)
In the Linux kernel, the following vulnerability has been resolved:
net/ieee802154: reject zero-sized raw_sendmsg() (CVE-2022-50397)
In the Linux kernel, the following vulnerability has been resolved:
net: If sock is dead don't access sock's sk_wq in sk_stream_wait_memory (CVE-2022-50409)
In the Linux kernel, the following vulnerability has been resolved:
scsi: libsas: Fix use-after-free bug in smp_execute_task_sg() (CVE-2022-50422)
In the Linux kernel, the following vulnerability has been resolved:
ALSA: ac97: fix possible memory leak in snd_ac97_dev_register() (CVE-2022-50427)
In the Linux kernel, the following vulnerability has been resolved:
kernfs: fix use-after-free in __kernfs_remove (CVE-2022-50432)
In the Linux kernel, the following vulnerability has been resolved:
ext4: avoid crash when inline data creation follows DIO write (CVE-2022-50435)
In the Linux kernel, the following vulnerability has been resolved:
net: sched: cake: fix null pointer access issue when cake_init() fails (CVE-2022-50452)
In the Linux kernel, the following vulnerability has been resolved:
xhci: Remove device endpoints from bandwidth list when freeing the device (CVE-2022-50470)
In the Linux kernel, the following vulnerability has been resolved:
iommu/vt-d: Clean up si_domain in the init_dmars() error path (CVE-2022-50482)
In the Linux kernel, the following vulnerability has been resolved:
tipc: fix an information leak in tipc_topsrv_kern_subscr (CVE-2022-50531)
In the Linux kernel, the following vulnerability has been resolved:
usb: host: xhci: Fix potential memory leak in xhci_alloc_stream_info() (CVE-2022-50544)
In the Linux kernel, the following vulnerability has been resolved:
tipc: fix a null-ptr-deref in tipc_topsrv_accept (CVE-2022-50555)
An out-of-bounds memory access flaw was found in the Linux kernel's TUN/TAP device driver functionality in how a user generates a malicious (too big) networking packet when napi frags is enabled. This flaw allows a local user to crash or potentially escalate their privileges on the system. (CVE-2023-3812)
Affected Packages:
kernel
Note:
This advisory is applicable to Amazon Linux 2 - Kernel-5.4 Extra. Visit this page to learn more about Amazon Linux 2 (AL2) Extras and this FAQ section for the difference between AL2 Core and AL2 Extras advisories.
Issue Correction:
Run yum update kernel or yum update --advisory ALAS2KERNEL-5.4-2022-039 to update your system.
aarch64:
kernel-5.4.224-128.414.amzn2.aarch64
kernel-headers-5.4.224-128.414.amzn2.aarch64
kernel-debuginfo-common-aarch64-5.4.224-128.414.amzn2.aarch64
perf-5.4.224-128.414.amzn2.aarch64
perf-debuginfo-5.4.224-128.414.amzn2.aarch64
python-perf-5.4.224-128.414.amzn2.aarch64
python-perf-debuginfo-5.4.224-128.414.amzn2.aarch64
kernel-tools-5.4.224-128.414.amzn2.aarch64
kernel-tools-devel-5.4.224-128.414.amzn2.aarch64
kernel-tools-debuginfo-5.4.224-128.414.amzn2.aarch64
bpftool-5.4.224-128.414.amzn2.aarch64
bpftool-debuginfo-5.4.224-128.414.amzn2.aarch64
kernel-devel-5.4.224-128.414.amzn2.aarch64
kernel-debuginfo-5.4.224-128.414.amzn2.aarch64
i686:
kernel-headers-5.4.224-128.414.amzn2.i686
src:
kernel-5.4.224-128.414.amzn2.src
x86_64:
kernel-5.4.224-128.414.amzn2.x86_64
kernel-headers-5.4.224-128.414.amzn2.x86_64
kernel-debuginfo-common-x86_64-5.4.224-128.414.amzn2.x86_64
perf-5.4.224-128.414.amzn2.x86_64
perf-debuginfo-5.4.224-128.414.amzn2.x86_64
python-perf-5.4.224-128.414.amzn2.x86_64
python-perf-debuginfo-5.4.224-128.414.amzn2.x86_64
kernel-tools-5.4.224-128.414.amzn2.x86_64
kernel-tools-devel-5.4.224-128.414.amzn2.x86_64
kernel-tools-debuginfo-5.4.224-128.414.amzn2.x86_64
bpftool-5.4.224-128.414.amzn2.x86_64
bpftool-debuginfo-5.4.224-128.414.amzn2.x86_64
kernel-devel-5.4.224-128.414.amzn2.x86_64
kernel-debuginfo-5.4.224-128.414.amzn2.x86_64
2025-10-18: CVE-2022-50470 was added to this advisory.
2025-10-18: CVE-2022-50482 was added to this advisory.
2025-10-18: CVE-2022-50544 was added to this advisory.
2025-10-18: CVE-2022-50555 was added to this advisory.
2025-10-18: CVE-2022-50531 was added to this advisory.
2025-10-18: CVE-2022-50427 was added to this advisory.
2025-10-08: CVE-2022-50435 was added to this advisory.
2025-10-08: CVE-2022-50452 was added to this advisory.
2025-10-08: CVE-2022-50422 was added to this advisory.
2025-10-08: CVE-2022-50432 was added to this advisory.
2025-10-02: CVE-2022-50397 was added to this advisory.
2025-10-02: CVE-2022-50380 was added to this advisory.
2025-10-02: CVE-2022-50271 was added to this advisory.
2025-10-02: CVE-2022-50348 was added to this advisory.
2025-10-02: CVE-2022-50285 was added to this advisory.
2025-10-02: CVE-2022-50265 was added to this advisory.
2025-10-02: CVE-2022-50257 was added to this advisory.
2025-10-02: CVE-2022-50243 was added to this advisory.
2025-10-02: CVE-2022-50409 was added to this advisory.
2025-10-02: CVE-2022-50240 was added to this advisory.
2025-10-02: CVE-2022-50379 was added to this advisory.
2025-10-02: CVE-2022-50291 was added to this advisory.
2025-10-02: CVE-2022-50338 was added to this advisory.
2025-10-02: CVE-2022-50330 was added to this advisory.
2025-09-22: CVE-2022-50314 was added to this advisory.
2025-09-22: CVE-2022-50299 was added to this advisory.
2025-09-22: CVE-2022-50344 was added to this advisory.
2025-09-22: CVE-2022-50352 was added to this advisory.
2025-09-22: CVE-2022-50315 was added to this advisory.
2025-07-29: CVE-2022-49904 was added to this advisory.
2025-06-27: CVE-2022-49921 was added to this advisory.
2025-06-19: CVE-2022-49915 was added to this advisory.
2025-06-19: CVE-2022-49913 was added to this advisory.
2025-06-19: CVE-2022-49918 was added to this advisory.
2025-06-19: CVE-2022-49880 was added to this advisory.
2025-06-19: CVE-2022-49925 was added to this advisory.
2025-06-19: CVE-2022-49907 was added to this advisory.
2025-06-19: CVE-2022-49912 was added to this advisory.
2025-06-19: CVE-2022-49917 was added to this advisory.
2025-06-19: CVE-2022-49927 was added to this advisory.
2025-06-19: CVE-2022-49879 was added to this advisory.
2025-06-19: CVE-2022-49890 was added to this advisory.
2025-06-19: CVE-2022-49903 was added to this advisory.
2025-06-19: CVE-2022-49914 was added to this advisory.
2025-06-19: CVE-2022-49919 was added to this advisory.
2024-05-23: CVE-2021-47103 was added to this advisory.