Amazon Linux 2023 Security Advisory: ALAS2023-2026-1746
Advisory Released Date: 2026-05-26
Advisory Updated Date: 2026-05-26
FAQs regarding Amazon Linux ALAS/CVE Severity
In the Linux kernel, the following vulnerability has been resolved:
tls: Purge async_hold in tls_decrypt_async_wait() (CVE-2026-23414)
In the Linux kernel, the following vulnerability has been resolved:
xfrm: Fix work re-schedule after cancel in xfrm_nat_keepalive_net_fini() (CVE-2026-31406)
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix unsound scalar forking in maybe_fork_scalars() for BPF_OR (CVE-2026-31413)
In the Linux kernel, the following vulnerability has been resolved:
net: bonding: fix use-after-free in bond_xmit_broadcast() (CVE-2026-31419)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP (CVE-2026-31424)
In the Linux kernel, the following vulnerability has been resolved:
ACPI: EC: clean up handlers on probe failure in acpi_ec_setup() (CVE-2026-31426)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp (CVE-2026-31427)
In the Linux kernel, the following vulnerability has been resolved:
netfs: Fix read abandonment during retry (CVE-2026-31435)
In the Linux kernel, the following vulnerability has been resolved:
netfs: Fix kernel BUG in netfs_limit_iter() for ITER_KVEC iterators (CVE-2026-31438)
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix use-after-free in update_super_work when racing with umount (CVE-2026-31446)
In the Linux kernel, the following vulnerability has been resolved:
ext4: avoid infinite loops caused by residual data (CVE-2026-31448)
In the Linux kernel, the following vulnerability has been resolved:
ext4: validate p_idx bounds in ext4_ext_correct_indexes (CVE-2026-31449)
In the Linux kernel, the following vulnerability has been resolved:
ext4: publish jinode after initialization (CVE-2026-31450)
In the Linux kernel, the following vulnerability has been resolved:
xfs: avoid dereferencing log items after push callbacks (CVE-2026-31453)
In the Linux kernel, the following vulnerability has been resolved:
xfs: save ailp before dropping the AIL lock in push callbacks (CVE-2026-31454)
In the Linux kernel, the following vulnerability has been resolved:
mm/pagewalk: fix race between concurrent split and refault (CVE-2026-31456)
In the Linux kernel, the following vulnerability has been resolved:
virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false (CVE-2026-31469)
In the Linux kernel, the following vulnerability has been resolved:
virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (CVE-2026-31470)
In the Linux kernel, the following vulnerability has been resolved:
media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex (CVE-2026-31473)
In the Linux kernel, the following vulnerability has been resolved:
tracing: Fix potential deadlock in cpu hotplug with osnoise (CVE-2026-31480)
In the Linux kernel, the following vulnerability has been resolved:
spi: use generic driver_override infrastructure (CVE-2026-31487)
In the Linux kernel, the following vulnerability has been resolved:
RDMA/irdma: Initialize free_qp completion before using it (CVE-2026-31492)
In the Linux kernel, the following vulnerability has been resolved:
net: fix fanout UAF in packet_release() via NETDEV_UP race (CVE-2026-31504)
In the Linux kernel, the following vulnerability has been resolved:
net: openvswitch: Avoid releasing netdev before teardown completes (CVE-2026-31508)
In the Linux kernel, the following vulnerability has been resolved:
af_key: validate families in pfkey_send_migrate() (CVE-2026-31515)
In the Linux kernel, the following vulnerability has been resolved:
btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create (CVE-2026-31519)
In the Linux kernel, the following vulnerability has been resolved:
module: Fix kernel panic when a symbol st_shndx is out of bounds (CVE-2026-31521)
In the Linux kernel, the following vulnerability has been resolved:
nvme-pci: ensure we're polling a polled queue (CVE-2026-31523)
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix exception exit lock checking for subprogs (CVE-2026-31526)
In the Linux kernel, the following vulnerability has been resolved:
driver core: platform: use generic driver_override infrastructure (CVE-2026-31527)
In the Linux kernel, the following vulnerability has been resolved:
perf: Make sure to use pmu_ctx->pmu for groups (CVE-2026-31528)
In the Linux kernel, the following vulnerability has been resolved:
futex: Require sys_futex_requeue() to have identical flags (CVE-2026-31554)
In the Linux kernel, the following vulnerability has been resolved:
futex: Clear stale exiting pointer in futex_lock_pi() retry path (CVE-2026-31555)
In the Linux kernel, the following vulnerability has been resolved:
can: gw: fix OOB heap access in cgw_csum_crc8_rel() (CVE-2026-31570)
In the Linux kernel, the following vulnerability has been resolved:
bridge: br_nd_send: linearize skb before parsing ND options (CVE-2026-31682)
In the Linux kernel, the following vulnerability has been resolved:
wifi: virt_wifi: remove SET_NETDEV_DEV to avoid use-after-free (CVE-2026-31695)
In the Linux kernel, the following vulnerability has been resolved:
thermal: core: Address thermal zone removal races with resume (CVE-2026-31731)
In the Linux kernel, the following vulnerability has been resolved:
vxlan: validate ND option lengths in vxlan_na_create (CVE-2026-31738)
In the Linux kernel, the following vulnerability has been resolved:
vt: discard stale unicode buffer on alt screen exit after resize (CVE-2026-31742)
In the Linux kernel, the following vulnerability has been resolved:
usb: ulpi: fix double free in ulpi_register_interface() error path (CVE-2026-31759)
In the Linux kernel, the following vulnerability has been resolved:
io_uring/net: fix slab-out-of-bounds read in io_bundle_nbufs() (CVE-2026-31774)
In the Linux kernel, the following vulnerability has been resolved:
drm/ioc32: stop speculation on the drm_compat_ioctl path (CVE-2026-31781)
In the Linux kernel, the following vulnerability has been resolved:
perf/x86: Fix potential bad container_of in intel_pmu_hw_config (CVE-2026-31782)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: ctnetlink: ignore explicit helper on new expectations (CVE-2026-43025)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_conntrack_helper: pass helper to expect cleanup (CVE-2026-43027)
In the Linux kernel, the following vulnerability has been resolved:
ip6_tunnel: clear skb2->cb[] in ip4ip6_err() (CVE-2026-43037)
In the Linux kernel, the following vulnerability has been resolved:
ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach() (CVE-2026-43038)
In the Linux kernel, the following vulnerability has been resolved:
HID: multitouch: Check to ensure report responses match the request (CVE-2026-43047)
In the Linux kernel, the following vulnerability has been resolved:
HID: core: Mitigate potential OOB by removing bogus memset() (CVE-2026-43048)
In the Linux kernel, the following vulnerability has been resolved:
scsi: target: tcm_loop: Drain commands in target_reset handler (CVE-2026-43054)
In the Linux kernel, the following vulnerability has been resolved:
xfs: don't irele after failing to iget in xfs_attri_recover_work (CVE-2026-43063)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: flowtable: strictly check for maximum number of actions (CVE-2026-43329)
In the Linux kernel, the following vulnerability has been resolved:
thermal: core: Fix thermal zone device registration error path (CVE-2026-43332)
In the Linux kernel, the following vulnerability has been resolved:
lib/crypto: chacha: Zeroize permuted_state before it leaves scope (CVE-2026-43336)
In the Linux kernel, the following vulnerability has been resolved:
ipv6: prevent possible UaF in addrconf_permanent_addr() (CVE-2026-43339)
In the Linux kernel, the following vulnerability has been resolved:
net/ipv6: ioam6: prevent schema length wraparound in trace fill (CVE-2026-43341)
Affected Packages:
kernel6.18
Issue Correction:
Run dnf update kernel6.18 --releasever 2023.11.20260526 or dnf update --advisory ALAS2023-2026-1746 --releasever 2023.11.20260526 to update your system.
More information on how to update your system can be found on this page: Amazon Linux 2023 documentation
aarch64:
kernel6.18-tools-6.18.25-52.107.amzn2023.aarch64
kernel-livepatch-6.18.25-52.107-1.0-0.amzn2023.aarch64
bpftool6.18-6.18.25-52.107.amzn2023.aarch64
bpftool6.18-debuginfo-6.18.25-52.107.amzn2023.aarch64
kernel6.18-modules-extra-common-6.18.25-52.107.amzn2023.aarch64
perf6.18-6.18.25-52.107.amzn2023.aarch64
kernel6.18-headers-6.18.25-52.107.amzn2023.aarch64
kernel6.18-tools-debuginfo-6.18.25-52.107.amzn2023.aarch64
kernel6.18-tools-devel-6.18.25-52.107.amzn2023.aarch64
kernel6.18-modules-extra-6.18.25-52.107.amzn2023.aarch64
kernel6.18-6.18.25-52.107.amzn2023.aarch64
python3-perf6.18-debuginfo-6.18.25-52.107.amzn2023.aarch64
python3-perf6.18-6.18.25-52.107.amzn2023.aarch64
kernel6.18-debuginfo-6.18.25-52.107.amzn2023.aarch64
perf6.18-debuginfo-6.18.25-52.107.amzn2023.aarch64
kernel6.18-debuginfo-common-aarch64-6.18.25-52.107.amzn2023.aarch64
kernel6.18-devel-6.18.25-52.107.amzn2023.aarch64
src:
kernel6.18-6.18.25-52.107.amzn2023.src
x86_64:
kernel6.18-debuginfo-6.18.25-52.107.amzn2023.x86_64
python3-perf6.18-6.18.25-52.107.amzn2023.x86_64
kernel6.18-modules-extra-6.18.25-52.107.amzn2023.x86_64
bpftool6.18-debuginfo-6.18.25-52.107.amzn2023.x86_64
kernel6.18-tools-debuginfo-6.18.25-52.107.amzn2023.x86_64
kernel6.18-tools-devel-6.18.25-52.107.amzn2023.x86_64
python3-perf6.18-debuginfo-6.18.25-52.107.amzn2023.x86_64
perf6.18-6.18.25-52.107.amzn2023.x86_64
kernel6.18-modules-extra-common-6.18.25-52.107.amzn2023.x86_64
kernel-livepatch-6.18.25-52.107-1.0-0.amzn2023.x86_64
bpftool6.18-6.18.25-52.107.amzn2023.x86_64
perf6.18-debuginfo-6.18.25-52.107.amzn2023.x86_64
kernel6.18-tools-6.18.25-52.107.amzn2023.x86_64
kernel6.18-6.18.25-52.107.amzn2023.x86_64
kernel6.18-headers-6.18.25-52.107.amzn2023.x86_64
kernel6.18-debuginfo-common-x86_64-6.18.25-52.107.amzn2023.x86_64
kernel6.18-devel-6.18.25-52.107.amzn2023.x86_64