ALAS2KERNEL-5.4-2023-052

Amazon Linux 2 Security Advisory: ALAS2KERNEL-5.4-2023-052
Advisory Released Date: 2023-09-06
Advisory Updated Date: 2025-10-02

Severity: Medium

References: CVE-2023-20588 CVE-2023-53174 CVE-2023-53245 CVE-2023-53311
FAQs regarding Amazon Linux ALAS/CVE Severity

Issue Overview:

A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. (CVE-2023-20588)

In the Linux kernel, the following vulnerability has been resolved:

scsi: core: Fix possible memory leak if device_add() fails (CVE-2023-53174)

In the Linux kernel, the following vulnerability has been resolved:

scsi: storvsc: Fix handling of virtual Fibre Channel timeouts (CVE-2023-53245)

In the Linux kernel, the following vulnerability has been resolved:

nilfs2: fix use-after-free of nilfs_root in dirtying inodes via iput (CVE-2023-53311)

Affected Packages:

kernel

Note:

This advisory is applicable to Amazon Linux 2 - Kernel-5.4 Extra. Visit this page to learn more about Amazon Linux 2 (AL2) Extras and this FAQ section for the difference between AL2 Core and AL2 Extras advisories.

Issue Correction:
Run yum update kernel or yum update --advisory ALAS2KERNEL-5.4-2023-052 to update your system.

New Packages:

aarch64:
    kernel-5.4.254-169.358.amzn2.aarch64
    kernel-headers-5.4.254-169.358.amzn2.aarch64
    kernel-debuginfo-common-aarch64-5.4.254-169.358.amzn2.aarch64
    perf-5.4.254-169.358.amzn2.aarch64
    perf-debuginfo-5.4.254-169.358.amzn2.aarch64
    python-perf-5.4.254-169.358.amzn2.aarch64
    python-perf-debuginfo-5.4.254-169.358.amzn2.aarch64
    kernel-tools-5.4.254-169.358.amzn2.aarch64
    kernel-tools-devel-5.4.254-169.358.amzn2.aarch64
    kernel-tools-debuginfo-5.4.254-169.358.amzn2.aarch64
    bpftool-5.4.254-169.358.amzn2.aarch64
    bpftool-debuginfo-5.4.254-169.358.amzn2.aarch64
    kernel-devel-5.4.254-169.358.amzn2.aarch64
    kernel-debuginfo-5.4.254-169.358.amzn2.aarch64

i686:
    kernel-headers-5.4.254-169.358.amzn2.i686

src:
    kernel-5.4.254-169.358.amzn2.src

x86_64:
    kernel-5.4.254-169.358.amzn2.x86_64
    kernel-headers-5.4.254-169.358.amzn2.x86_64
    kernel-debuginfo-common-x86_64-5.4.254-169.358.amzn2.x86_64
    perf-5.4.254-169.358.amzn2.x86_64
    perf-debuginfo-5.4.254-169.358.amzn2.x86_64
    python-perf-5.4.254-169.358.amzn2.x86_64
    python-perf-debuginfo-5.4.254-169.358.amzn2.x86_64
    kernel-tools-5.4.254-169.358.amzn2.x86_64
    kernel-tools-devel-5.4.254-169.358.amzn2.x86_64
    kernel-tools-debuginfo-5.4.254-169.358.amzn2.x86_64
    bpftool-5.4.254-169.358.amzn2.x86_64
    bpftool-debuginfo-5.4.254-169.358.amzn2.x86_64
    kernel-devel-5.4.254-169.358.amzn2.x86_64
    kernel-debuginfo-5.4.254-169.358.amzn2.x86_64

Changelog:

2025-10-02: CVE-2023-53245 was added to this advisory.

2025-10-02: CVE-2023-53311 was added to this advisory.

2025-10-02: CVE-2023-53174 was added to this advisory.

Additional References

Release Notes: Amazon Linux 2 Release Notes

Red Hat: CVE-2023-20588, CVE-2023-53174, CVE-2023-53245, CVE-2023-53311

Mitre: CVE-2023-20588, CVE-2023-53174, CVE-2023-53245, CVE-2023-53311