Kernel (CVE-2024-1086)

[ccto]

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation

ref.:

AlmaLinux OS - CVE-2024-1086 and XZ

Update, April 3rd, 2024 The patches for CVE-2024-1086 are now available in production repos. For AlmaLinux 8, you are looking for kernel-4.18.0-513.18.2.el8_9 or higher. [root@host ~]# rpm -qa kernel kernel-4.18.0-513.18.2.el8_9.x86_64 [root@host ~]# For Almalinux 9, you are looking for...

almalinux.org

NVD - CVE-2024-1086

nvd.nist.gov

cve-details

 

[Richard G]

Nice! We already did the kernel updates a few days ago.