You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

Kernel Vulnerabilities on Oracle Linux 8.10

in OCI - General

Hello,

I'm reaching out because we are running the latest kernel version: 5.15.0-312.187.5.1.el8uek.x86_64 on Oracle Linux 8.10 and our vulnerability scanner is detecting many kernel vulnerabilities such as these for example:

CVE-2024-41061

CVE-2024-41061

CVE-2024-26944

CVE-2024-26944

CVE-2024-26945

CVE-2024-26945

CVE-2024-26913

CVE-2024-26913

CVE-2024-26699

CVE-2024-26699

CVE-2023-52586

CVE-2023-52586

CVE-2024-26672

CVE-2024-26672

CVE-2023-52624

CVE-2023-52624

The fix version is kernel version for most of these is 6.7 and higher but that would require us to upgrade to Oracle Linux 9. Could you please explain why a fully supported OS like OL8 is not getting the necessary fixes to address vulnerabilities such as these?

Tagged:

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!