CVE-2024-53192 Affecting kernel-uek-modules-extra-netfilter package, versions <0:6.12.0-101.33.4.3.el9uek
Threat Intelligence
The probability is the direct output of the EPSS model, and conveys an overall sense of the threat of exploitation in the wild. The percentile measures the EPSS probability relative to all known EPSS scores. Note: This data is updated daily, relying on the latest available EPSS model version. Check out the EPSS documentation for more details.
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk IDSNYK-ORACLE9-KERNELUEKMODULESEXTRANETFILTER-10789760
- published19 Jul 2025
- disclosed27 Dec 2024
Introduced: 27 Dec 2024
CVE-2024-53192 (opens in a new tab)How to fix?
Upgrade Oracle:9 kernel-uek-modules-extra-netfilter to version 0:6.12.0-101.33.4.3.el9uek or higher.
This issue was patched in ELSA-2025-20480.
NVD Description
Note: Versions mentioned in the description apply only to the upstream kernel-uek-modules-extra-netfilter package and not the kernel-uek-modules-extra-netfilter package as distributed by Oracle.
See How to fix? for Oracle:9 relevant fixed versions and status.
In the Linux kernel, the following vulnerability has been resolved:
clk: clk-loongson2: Fix potential buffer overflow in flexible-array member access
Flexible-array member hws in struct clk_hw_onecell_data is annotated
with the counted_by() attribute. This means that when memory is
allocated for this array, the counter, which in this case is member
num in the flexible structure, should be set to the maximum number of
elements the flexible array can contain, or fewer.
In this case, the total number of elements for the flexible array is
determined by variable clks_num when allocating heap space via
devm_kzalloc(), as shown below:
289 struct loongson2_clk_provider *clp; ... 296 for (p = data; p->name; p++) 297 clks_num++; 298 299 clp = devm_kzalloc(dev, struct_size(clp, clk_data.hws, clks_num), 300 GFP_KERNEL);
So, clp->clk_data.num should be set to clks_num or less, and not
exceed clks_num, as is currently the case. Otherwise, if data is
written into clp->clk_data.hws[clks_num], the instrumentation
provided by the compiler won't detect the overflow, leading to a
memory corruption bug at runtime.
Fix this issue by setting clp->clk_data.num to clks_num.
References
- https://linux.oracle.com/cve/CVE-2024-53192.html
- https://linux.oracle.com/errata/ELSA-2025-20480.html
- https://git.kernel.org/stable/c/02fb4f0084331ef72c28d0c70fcb15d1bea369ec
- https://git.kernel.org/stable/c/1bf8877150128c3abd9d233886a05f6966fbf0c7
- https://git.kernel.org/stable/c/b96fc194984d0c82de1ca2b4166b35b1298b216c