[ALSA-2023:0951] kernel security and bug fix update

Severity Important

Affected Packages 36

CVEs 5

kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: use-after-free caused by l2cap_reassemble_sdu() in net/bluetooth/l2cap_core.c (CVE-2022-3564)
kernel: stack overflow in do_proc_dointvec and proc_skip_spaces (CVE-2022-4378)
kernel: use-after-free in __nfs42_ssc_open() in fs/nfs/nfs4file.c leading to remote Denial of Service attack (CVE-2022-4379)
kernel: Netfilter integer overflow vulnerability in nft_payload_copy_vlan (CVE-2023-0179)
kernel: an out-of-bounds vulnerability in i2c-ismt driver (CVE-2022-2873)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

AlmaLinux 9.0: LTP Test failure and crash at fork14 on Sapphire Rapids Platinum 8280+ (BZ#2133083)
AlmaLinux 9.1 Extending NMI watchdog's timer during LPM (BZ#2140085)
AMDSERVER 9.1: amdpstate driver incorrectly designed to load as default for Genoa (BZ#2151274)
qla2xxx NVMe-FC: WARNING: CPU: 0 PID: 124072 at drivers/scsi/qla2xxx/qla_init.c:70 qla2xxx_rel_done_warning+0x25/0x30 qla2xxx
Regression: Kernel panic on Lenovo T480 with AH40 USB-C docking station (BZ#2153277)
Scheduler Update (almalinux9.2) (BZ#2153792)
AlmaLinux9.1, Nx_Gzip: nr_total_credits is not decremented when processing units are reduced by dlpar in shared mode. (FW1030 / DLPAR) (BZ#2154305)
MSFT, MANA, NET Patch AlmaLinux-9: Fix race on per-CQ variable napi_iperf panic fix (BZ#2155145)
Azure vPCI AlmaLinux-9 add the support of multi-MSI (BZ#2155459)
Azure AlmaLinux-9: VM Deployment Failures Patch Request (BZ#2155930)
The 'date' command shows wrong time in nested KVM s390x guest (BZ#2158815)
AlmaLinux-9.2: Update NVMe driver to sync with upstream v6.0 (BZ#2161344)
CEE cephfs: AlmaLinux9 cephfs client crashing with RIP: 0010:netfs_rreq_unlock+0xef/0x380 netfs
block layer: update with upstream v6.0 (BZ#2162535)

Package	Affected Version
pkg:rpm/almalinux/python3-perf?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/python3-perf?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/perf?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/perf?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-tools?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-tools?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-tools-libs?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-tools-libs?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-modules?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-modules?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-modules-extra?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-modules-extra?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-doc?arch=noarch&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-devel?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-devel?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-devel-matched?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-devel-matched?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-debug?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-debug?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-debug-modules?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-debug-modules?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-debug-modules-extra?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-debug-modules-extra?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-debug-devel?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-debug-devel?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-debug-devel-matched?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-debug-devel-matched?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-debug-core?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-debug-core?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-core?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-core?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/kernel-abi-stablelists?arch=noarch&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/bpftool?arch=x86_64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1
pkg:rpm/almalinux/bpftool?arch=aarch64&distro=almalinux-9.1	< 5.14.0-162.18.1.el9_1

ID

ALSA-2023:0951

Severity

important

URL

https://errata.almalinux.org/ALSA-2023:0951.html

Published

2023-02-28T00:00:00
(18 months ago)

Modified

2023-09-15T13:41:48
(12 months ago)

Rights

Other Advisories

Source	# ID	URL
RHSA	RHSA-2023:0951	https://access.redhat.com/errata/RHSA-2023:0951
CVE	CVE-2022-2873	https://access.redhat.com/security/cve/CVE-2022-2873
CVE	CVE-2022-3564	https://access.redhat.com/security/cve/CVE-2022-3564
CVE	CVE-2022-4378	https://access.redhat.com/security/cve/CVE-2022-4378
CVE	CVE-2022-4379	https://access.redhat.com/security/cve/CVE-2022-4379
CVE	CVE-2023-0179	https://access.redhat.com/security/cve/CVE-2023-0179
Bugzilla	2119048	https://bugzilla.redhat.com/2119048
Bugzilla	2150999	https://bugzilla.redhat.com/2150999
Bugzilla	2152548	https://bugzilla.redhat.com/2152548
Bugzilla	2152807	https://bugzilla.redhat.com/2152807
Bugzilla	2161713	https://bugzilla.redhat.com/2161713
Self	ALSA-2023:0951	https://errata.almalinux.org/9/ALSA-2023-0951.html

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform	Arch
Affected	pkg:rpm/almalinux/python3-perf?arch=x86_64&distro=almalinux-9.1	almalinux	python3-perf	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/python3-perf?arch=aarch64&distro=almalinux-9.1	almalinux	python3-perf	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/perf?arch=x86_64&distro=almalinux-9.1	almalinux	perf	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/perf?arch=aarch64&distro=almalinux-9.1	almalinux	perf	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel?arch=x86_64&distro=almalinux-9.1	almalinux	kernel	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel?arch=aarch64&distro=almalinux-9.1	almalinux	kernel	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-tools?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-tools	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-tools?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-tools	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-tools-libs?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-tools-libs	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-tools-libs?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-tools-libs	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-modules?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-modules	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-modules?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-modules	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-modules-extra?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-modules-extra	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-modules-extra?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-modules-extra	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-doc?arch=noarch&distro=almalinux-9.1	almalinux	kernel-doc	< 5.14.0-162.18.1.el9_1	almalinux-9.1	noarch
Affected	pkg:rpm/almalinux/kernel-devel?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-devel	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-devel?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-devel	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-devel-matched?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-devel-matched	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-devel-matched?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-devel-matched	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-debug?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-debug	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-debug?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-debug	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-debug-modules?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-debug-modules	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-debug-modules?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-debug-modules	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-debug-modules-extra?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-debug-modules-extra	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-debug-modules-extra?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-debug-modules-extra	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-debug-devel?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-debug-devel	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-debug-devel?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-debug-devel	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-debug-devel-matched?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-debug-devel-matched	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-debug-devel-matched?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-debug-devel-matched	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-debug-core?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-debug-core	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-debug-core?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-debug-core	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-core?arch=x86_64&distro=almalinux-9.1	almalinux	kernel-core	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/kernel-core?arch=aarch64&distro=almalinux-9.1	almalinux	kernel-core	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64
Affected	pkg:rpm/almalinux/kernel-abi-stablelists?arch=noarch&distro=almalinux-9.1	almalinux	kernel-abi-stablelists	< 5.14.0-162.18.1.el9_1	almalinux-9.1	noarch
Affected	pkg:rpm/almalinux/bpftool?arch=x86_64&distro=almalinux-9.1	almalinux	bpftool	< 5.14.0-162.18.1.el9_1	almalinux-9.1	x86_64
Affected	pkg:rpm/almalinux/bpftool?arch=aarch64&distro=almalinux-9.1	almalinux	bpftool	< 5.14.0-162.18.1.el9_1	almalinux-9.1	aarch64

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date