The version of kernel installed on the remote host is prior to 4.14.256-197.484. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2752 advisory.

    A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the     way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del()     together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. A     privileged local user could use this flaw to crash the system or escalate their privileges on the system.
    (CVE-2021-3640)

    A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP     association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and     the attacker can send packets with spoofed IP addresses. (CVE-2021-3772)

    A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way the user maps some     regions of memory twice using shmget() which are aligned to PUD alignment with the fault of some of the     memory pages. A local user could use this flaw to get unauthorized access to some data. (CVE-2021-4002)

    In the Linux kernel, the following vulnerability has been resolved:

    i40e: Fix NULL ptr dereference on VSI filter sync (CVE-2021-47184)

    In the Linux kernel, the following vulnerability has been resolved:

    tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc (CVE-2021-47185)

    In the Linux kernel, the following vulnerability has been resolved:

    btrfs: fix memory ordering between normal and ordered work functions (CVE-2021-47189)

    In the Linux kernel, the following vulnerability has been resolved:

    scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() (CVE-2021-47203)

    In the Linux kernel, the following vulnerability has been resolved:

    ocfs2: fix data corruption after conversion from inline format (CVE-2021-47460)

    In the Linux kernel, the following vulnerability has been resolved:

    isofs: Fix out of bound access for corrupted isofs image (CVE-2021-47478)

    In the Linux kernel, the following vulnerability has been resolved:

    scsi: core: Put LLD module refcnt after SCSI device is released (CVE-2021-47480)

    In the Linux kernel, the following vulnerability has been resolved:

    regmap: Fix possible double-free in regcache_rbtree_exit() (CVE-2021-47483)

    In the Linux kernel, the following vulnerability has been resolved:

    usbnet: sanity check for maxpacket (CVE-2021-47495)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Amazon Linux 2 : kernel (ALAS-2025-2752)

high Nessus Plugin ID 214972

Version 1.5

Version 1.4

Version 1.3

Version 1.1

Version 1.5 May 23, 2025, 2:01 AM Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Plugin Feed: 202505230201
Version 1.4 May 21, 2025, 4:51 PM CVE (set "CVE" coverage to "CVE-2021-3640,CVE-2021-3772,CVE-2021-4002,CVE-2021-47184,CVE-2021-47185,CVE-2021-47189,CVE-2021-47203,CVE-2021-47460,CVE-2021-47478,CVE-2021-47480,CVE-2021-47483,CVE-2021-47495") CVSS metrics ("Cvssv4 score" set to 0.0) CVSSv2 severity (based on None, severity decreased from "High" to "Low") Detection (updated detection logic) Exploit attributes ("Exploitability ease" changed from "Exploits are available" to "No known exploits are available") Plugin metadata Plugin Feed: 202505211651
Version 1.3 Feb 14, 2025, 9:10 AM Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Plugin Feed: 202502140910
Version 1.1 Feb 5, 2025, 1:17 AM New Plugin Feed: 202502050117