[RHSA-2023:0979] kernel-rt security and bug fix update
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
kernel: use-after-free caused by l2cap_reassemble_sdu() in net/bluetooth/l2cap_core.c (CVE-2022-3564)
kernel: stack overflow in do_proc_dointvec and proc_skip_spaces (CVE-2022-4378)
kernel: use-after-free in __nfs42_ssc_open() in fs/nfs/nfs4file.c leading to remote Denial of Service attack (CVE-2022-4379)
kernel: Netfilter integer overflow vulnerability in nft_payload_copy_vlan (CVE-2023-0179)
kernel: an out-of-bounds vulnerability in i2c-ismt driver (CVE-2022-2873)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
- kernel-rt: update RT source tree to the latest RHEL-9.1.z2 Batch (BZ#2160463)
- ID
- RHSA-2023:0979
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2023:0979
- Published
-
2023-02-28T00:00:00
(18 months ago) - Modified
-
2023-02-28T00:00:00
(18 months ago) - Rights
- Copyright 2023 Red Hat, Inc.
- Other Advisories
-
- ALAS-2022-1645
- ALAS2-2022-1888
- ALSA-2023:0832
- ALSA-2023:0951
- ALSA-2023:1566
- ALSA-2023:2951
- DSA-5324-1
- ELSA-2022-10071
- ELSA-2022-10072
- ELSA-2022-10073
- ELSA-2022-10078
- ELSA-2022-10079
- ELSA-2022-10080
- ELSA-2022-10081
- ELSA-2022-10108
- ELSA-2023-0832
- ELSA-2023-0951
- ELSA-2023-1091
- ELSA-2023-12006
- ELSA-2023-12007
- ELSA-2023-12008
- ELSA-2023-12009
- ELSA-2023-12017
- ELSA-2023-12018
- ELSA-2023-12109
- ELSA-2023-12116
- ELSA-2023-12120
- ELSA-2023-12160
- ELSA-2023-12199
- ELSA-2023-12200
- ELSA-2023-12206
- ELSA-2023-12207
- ELSA-2023-1566
- ELSA-2023-1822
- ELSA-2023-2951
- ELSA-2023-4151
- FEDORA-2023-0597579983
- FEDORA-2023-3fd7349f60
- FEDORA-2023-58eac2b872
- FEDORA-2023-f4f9182dc8
- MS:CVE-2022-2873
- MS:CVE-2022-4378
- MS:CVE-2022-4379
- RHSA-2023:0832
- RHSA-2023:0854
- RHSA-2023:0951
- RHSA-2023:1008
- RHSA-2023:1091
- RHSA-2023:1092
- RHSA-2023:1101
- RHSA-2023:1566
- RHSA-2023:1584
- RHSA-2023:1659
- RHSA-2023:2736
- RHSA-2023:2951
- RHSA-2023:4150
- RHSA-2023:4151
- RHSA-2023:4215
- RLSA-2023:0832
- RLSA-2023:1566
- SSA:2022-237-02
- SSA:2022-333-01
- SSA:2023-048-01
- SSA:2023-172-02
- SUSE-SU-2022:3288-1
- SUSE-SU-2022:3293-1
- SUSE-SU-2022:4503-1
- SUSE-SU-2022:4504-1
- SUSE-SU-2022:4505-1
- SUSE-SU-2022:4506-1
- SUSE-SU-2022:4510-1
- SUSE-SU-2022:4513-1
- SUSE-SU-2022:4515-1
- SUSE-SU-2022:4516-1
- SUSE-SU-2022:4517-1
- SUSE-SU-2022:4518-1
- SUSE-SU-2022:4520-1
- SUSE-SU-2022:4527-1
- SUSE-SU-2022:4528-1
- SUSE-SU-2022:4533-1
- SUSE-SU-2022:4534-1
- SUSE-SU-2022:4539-1
- SUSE-SU-2022:4542-1
- SUSE-SU-2022:4543-1
- SUSE-SU-2022:4544-1
- SUSE-SU-2022:4545-1
- SUSE-SU-2022:4546-1
- SUSE-SU-2022:4550-1
- SUSE-SU-2022:4551-1
- SUSE-SU-2022:4559-1
- SUSE-SU-2022:4560-1
- SUSE-SU-2022:4562-1
- SUSE-SU-2022:4566-1
- SUSE-SU-2022:4569-1
- SUSE-SU-2022:4572-1
- SUSE-SU-2022:4573-1
- SUSE-SU-2022:4574-1
- SUSE-SU-2022:4577-1
- SUSE-SU-2022:4580-1
- SUSE-SU-2022:4585-1
- SUSE-SU-2022:4587-1
- SUSE-SU-2022:4589-1
- SUSE-SU-2022:4595-1
- SUSE-SU-2022:4613-1
- SUSE-SU-2022:4614-1
- SUSE-SU-2022:4615-1
- SUSE-SU-2022:4616-1
- SUSE-SU-2022:4617-1
- SUSE-SU-2023:0145-1
- SUSE-SU-2023:0146-1
- SUSE-SU-2023:0147-1
- SUSE-SU-2023:0148-1
- SUSE-SU-2023:0149-1
- SUSE-SU-2023:0152-1
- SUSE-SU-2023:0270-1
- SUSE-SU-2023:0273-1
- SUSE-SU-2023:0277-1
- SUSE-SU-2023:0280-1
- SUSE-SU-2023:0320-1
- SUSE-SU-2023:0331-1
- SUSE-SU-2023:0394-1
- SUSE-SU-2023:0406-1
- SUSE-SU-2023:0407-1
- SUSE-SU-2023:0409-1
- SUSE-SU-2023:0410-1
- SUSE-SU-2023:0420-1
- SUSE-SU-2023:0433-1
- SUSE-SU-2023:0488-1
- SUSE-SU-2023:0519-1
- SUSE-SU-2023:0522-1
- SUSE-SU-2023:0523-1
- SUSE-SU-2023:0525-1
- SUSE-SU-2023:0528-1
- SUSE-SU-2023:0547-1
- SUSE-SU-2023:0552-1
- SUSE-SU-2023:0553-1
- SUSE-SU-2023:0560-1
- SUSE-SU-2023:0562-1
- SUSE-SU-2023:0564-1
- SUSE-SU-2023:0578-1
- SUSE-SU-2023:0591-1
- SUSE-SU-2023:0618-1
- SUSE-SU-2023:0635-1
- SUSE-SU-2023:0637-1
- SUSE-SU-2023:0779-1
- SUSE-SU-2023:2646-1
- SUSE-SU-2023:2809-1
- SUSE-SU-2023:2871-1
- USN-5594-1
- USN-5599-1
- USN-5602-1
- USN-5616-1
- USN-5623-1
- USN-5754-1
- USN-5754-2
- USN-5755-1
- USN-5755-2
- USN-5756-1
- USN-5756-2
- USN-5756-3
- USN-5757-1
- USN-5757-2
- USN-5758-1
- USN-5773-1
- USN-5774-1
- USN-5779-1
- USN-5789-1
- USN-5799-1
- USN-5803-1
- USN-5809-1
- USN-5814-1
- USN-5831-1
- USN-5832-1
- USN-5856-1
- USN-5857-1
- USN-5858-1
- USN-5859-1
- USN-5860-1
- USN-5877-1
- USN-5879-1
- USN-5883-1
- USN-5911-1
- USN-5912-1
- USN-5913-1
- USN-5914-1
- USN-5915-1
- USN-5919-1
- USN-5920-1
- USN-5929-1
- USN-5935-1
- USN-5938-1
- USN-5941-1
- USN-5950-1
- USN-5962-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 2119048 | https://bugzilla.redhat.com/2119048 | |
Bugzilla | 2150999 | https://bugzilla.redhat.com/2150999 | |
Bugzilla | 2152548 | https://bugzilla.redhat.com/2152548 | |
Bugzilla | 2152807 | https://bugzilla.redhat.com/2152807 | |
Bugzilla | 2161713 | https://bugzilla.redhat.com/2161713 | |
RHSA | RHSA-2023:0979 | https://access.redhat.com/errata/RHSA-2023:0979 | |
CVE | CVE-2022-2873 | https://access.redhat.com/security/cve/CVE-2022-2873 | |
CVE | CVE-2022-3564 | https://access.redhat.com/security/cve/CVE-2022-3564 | |
CVE | CVE-2022-4378 | https://access.redhat.com/security/cve/CVE-2022-4378 | |
CVE | CVE-2022-4379 | https://access.redhat.com/security/cve/CVE-2022-4379 | |
CVE | CVE-2023-0179 | https://access.redhat.com/security/cve/CVE-2023-0179 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/redhat/kernel-rt?arch=x86_64&distro=redhat-9.1 | redhat | kernel-rt | < 5.14.0-162.18.1.rt21.181.el9_1 | redhat-9.1 | x86_64 | |
Affected | pkg:rpm/redhat/kernel-rt-modules?arch=x86_64&distro=redhat-9.1 | redhat | kernel-rt-modules | < 5.14.0-162.18.1.rt21.181.el9_1 | redhat-9.1 | x86_64 | |
Affected | pkg:rpm/redhat/kernel-rt-modules-extra?arch=x86_64&distro=redhat-9.1 | redhat | kernel-rt-modules-extra | < 5.14.0-162.18.1.rt21.181.el9_1 | redhat-9.1 | x86_64 | |
Affected | pkg:rpm/redhat/kernel-rt-kvm?arch=x86_64&distro=redhat-9.1 | redhat | kernel-rt-kvm | < 5.14.0-162.18.1.rt21.181.el9_1 | redhat-9.1 | x86_64 | |
Affected | pkg:rpm/redhat/kernel-rt-devel?arch=x86_64&distro=redhat-9.1 | redhat | kernel-rt-devel | < 5.14.0-162.18.1.rt21.181.el9_1 | redhat-9.1 | x86_64 | |
Affected | pkg:rpm/redhat/kernel-rt-debug?arch=x86_64&distro=redhat-9.1 | redhat | kernel-rt-debug | < 5.14.0-162.18.1.rt21.181.el9_1 | redhat-9.1 | x86_64 | |
Affected | pkg:rpm/redhat/kernel-rt-debug-modules?arch=x86_64&distro=redhat-9.1 | redhat | kernel-rt-debug-modules | < 5.14.0-162.18.1.rt21.181.el9_1 | redhat-9.1 | x86_64 | |
Affected | pkg:rpm/redhat/kernel-rt-debug-modules-extra?arch=x86_64&distro=redhat-9.1 | redhat | kernel-rt-debug-modules-extra | < 5.14.0-162.18.1.rt21.181.el9_1 | redhat-9.1 | x86_64 | |
Affected | pkg:rpm/redhat/kernel-rt-debug-kvm?arch=x86_64&distro=redhat-9.1 | redhat | kernel-rt-debug-kvm | < 5.14.0-162.18.1.rt21.181.el9_1 | redhat-9.1 | x86_64 | |
Affected | pkg:rpm/redhat/kernel-rt-debug-devel?arch=x86_64&distro=redhat-9.1 | redhat | kernel-rt-debug-devel | < 5.14.0-162.18.1.rt21.181.el9_1 | redhat-9.1 | x86_64 | |
Affected | pkg:rpm/redhat/kernel-rt-debug-core?arch=x86_64&distro=redhat-9.1 | redhat | kernel-rt-debug-core | < 5.14.0-162.18.1.rt21.181.el9_1 | redhat-9.1 | x86_64 | |
Affected | pkg:rpm/redhat/kernel-rt-core?arch=x86_64&distro=redhat-9.1 | redhat | kernel-rt-core | < 5.14.0-162.18.1.rt21.181.el9_1 | redhat-9.1 | x86_64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |