[RHSA-2023:4531] kpatch-patch security update
Severity
Important
Affected Packages
12
CVEs
3
This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.
Security Fix(es):
kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in net/bluetooth/l2cap_core.c (CVE-2022-42896)
kernel: tcindex: use-after-free vulnerability in traffic control index filter allows privilege escalation (CVE-2023-1281)
kernel: Use-after-free vulnerability in the Linux Kernel traffic control index filter (CVE-2023-1829)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- ID
- RHSA-2023:4531
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2023:4531
- Published
-
2023-08-08T00:00:00
(13 months ago) - Modified
-
2023-08-08T00:00:00
(13 months ago) - Rights
- Copyright 2023 Red Hat, Inc.
- Other Advisories
-
- ALAS-2023-1701
- ALAS2-2022-1903
- ALAS2-2023-1987
- ALSA-2023:2458
- ALSA-2023:4517
- ELSA-2023-12017
- ELSA-2023-12018
- ELSA-2023-12109
- ELSA-2023-12117
- ELSA-2023-12118
- ELSA-2023-12119
- ELSA-2023-12121
- ELSA-2023-2458
- ELSA-2023-4517
- ELSA-2024-1249
- RHSA-2023:2148
- RHSA-2023:2458
- RHSA-2023:4517
- RHSA-2023:4541
- RHSA-2024:1249
- RHSA-2024:1323
- RHSA-2024:1332
- RLSA-2023:4517
- SSA:2022-333-01
- SSA:2023-172-02
- SUSE-SU-2022:4503-1
- SUSE-SU-2022:4504-1
- SUSE-SU-2022:4505-1
- SUSE-SU-2022:4566-1
- SUSE-SU-2022:4573-1
- SUSE-SU-2022:4574-1
- SUSE-SU-2022:4585-1
- SUSE-SU-2022:4589-1
- SUSE-SU-2022:4613-1
- SUSE-SU-2022:4614-1
- SUSE-SU-2022:4615-1
- SUSE-SU-2022:4616-1
- SUSE-SU-2022:4617-1
- SUSE-SU-2023:0420-1
- SUSE-SU-2023:1800-1
- SUSE-SU-2023:1801-1
- SUSE-SU-2023:1802-1
- SUSE-SU-2023:1803-1
- SUSE-SU-2023:1811-1
- SUSE-SU-2023:1848-1
- SUSE-SU-2023:1892-1
- SUSE-SU-2023:1894-1
- SUSE-SU-2023:1897-1
- SUSE-SU-2023:1992-1
- SUSE-SU-2023:2369-1
- SUSE-SU-2023:2371-1
- SUSE-SU-2023:2376-1
- SUSE-SU-2023:2384-1
- SUSE-SU-2023:2389-1
- SUSE-SU-2023:2399-1
- SUSE-SU-2023:2405-1
- SUSE-SU-2023:2415-1
- SUSE-SU-2023:2416-1
- SUSE-SU-2023:2423-1
- SUSE-SU-2023:2425-1
- SUSE-SU-2023:2431-1
- SUSE-SU-2023:2442-1
- SUSE-SU-2023:2443-1
- SUSE-SU-2023:2448-1
- SUSE-SU-2023:2453-1
- SUSE-SU-2023:2455-1
- SUSE-SU-2023:2459-1
- SUSE-SU-2023:2468-1
- SUSE-SU-2023:2803-1
- SUSE-SU-2023:2820-1
- SUSE-SU-2023:2831-1
- SUSE-SU-2023:2871-1
- SUSE-SU-2023:2892-1
- SUSE-SU-2023:3302-1
- SUSE-SU-2023:3748-1
- SUSE-SU-2023:3749-1
- SUSE-SU-2023:3768-1
- SUSE-SU-2023:3772-1
- SUSE-SU-2023:3783-1
- SUSE-SU-2023:3784-1
- SUSE-SU-2023:3786-1
- SUSE-SU-2023:3788-1
- SUSE-SU-2023:3809-1
- SUSE-SU-2023:3811-1
- SUSE-SU-2023:3812-1
- SUSE-SU-2023:3838-1
- SUSE-SU-2023:3844-1
- SUSE-SU-2023:3846-1
- SUSE-SU-2023:3889-1
- SUSE-SU-2023:3891-1
- SUSE-SU-2023:3892-1
- SUSE-SU-2023:3893-1
- SUSE-SU-2023:3912-1
- SUSE-SU-2023:3922-1
- SUSE-SU-2023:3928-1
- SUSE-SU-2023:4097-1
- SUSE-SU-2023:4135-1
- SUSE-SU-2023:4136-1
- SUSE-SU-2023:4158-1
- SUSE-SU-2023:4159-1
- SUSE-SU-2023:4160-1
- SUSE-SU-2023:4243-1
- SUSE-SU-2023:4261-1
- SUSE-SU-2023:4264-1
- SUSE-SU-2023:4273-1
- SUSE-SU-2023:4280-1
- SUSE-SU-2023:4319-1
- SUSE-SU-2023:4774-1
- SUSE-SU-2023:4804-1
- SUSE-SU-2023:4845-1
- SUSE-SU-2024:0155-1
- SUSE-SU-2024:0376-1
- SUSE-SU-2024:0377-1
- SUSE-SU-2024:0393-1
- SUSE-SU-2024:0394-1
- SUSE-SU-2024:0410-1
- SUSE-SU-2024:0665-1
- SUSE-SU-2024:0695-1
- SUSE-SU-2024:1275-1
- SUSE-SU-2024:1276-1
- SUSE-SU-2024:1694-1
- SUSE-SU-2024:1708-1
- SUSE-SU-2024:1719-1
- SUSE-SU-2024:1730-1
- SUSE-SU-2024:1738-1
- SUSE-SU-2024:1979-1
- SUSE-SU-2024:1983-1
- SUSE-SU-2024:2008-1
- SUSE-SU-2024:2010-1
- SUSE-SU-2024:2019-1
- SUSE-SU-2024:2120-1
- SUSE-SU-2024:2121-1
- SUSE-SU-2024:2130-1
- SUSE-SU-2024:2139-1
- SUSE-SU-2024:2147-1
- SUSE-SU-2024:2148-1
- SUSE-SU-2024:2149-1
- SUSE-SU-2024:2183-1
- SUSE-SU-2024:2184-1
- SUSE-SU-2024:2185-1
- SUSE-SU-2024:2189-1
- SUSE-SU-2024:2190-1
- SUSE-SU-2024:2343-1
- SUSE-SU-2024:2344-1
- SUSE-SU-2024:2351-1
- SUSE-SU-2024:2357-1
- SUSE-SU-2024:2369-1
- SUSE-SU-2024:2373-1
- SUSE-SU-2024:2558-1
- SUSE-SU-2024:2559-1
- SUSE-SU-2024:2740-1
- SUSE-SU-2024:2755-1
- SUSE-SU-2024:2758-1
- SUSE-SU-2024:2759-1
- SUSE-SU-2024:2773-1
- SUSE-SU-2024:2792-1
- SUSE-SU-2024:2821-1
- SUSE-SU-2024:2822-1
- SUSE-SU-2024:3015-1
- SUSE-SU-2024:3034-1
- SUSE-SU-2024:3037-1
- SUSE-SU-2024:3039-1
- SUSE-SU-2024:3043-1
- SUSE-SU-2024:3044-1
- SUSE-SU-2024:3048-1
- USN-5780-1
- USN-5783-1
- USN-5794-1
- USN-5802-1
- USN-5803-1
- USN-5804-1
- USN-5804-2
- USN-5808-1
- USN-5809-1
- USN-5813-1
- USN-5814-1
- USN-5829-1
- USN-5830-1
- USN-5831-1
- USN-5832-1
- USN-5860-1
- USN-5861-1
- USN-5863-1
- USN-5875-1
- USN-5877-1
- USN-5879-1
- USN-5914-1
- USN-5918-1
- USN-5977-1
- USN-5978-1
- USN-6024-1
- USN-6025-1
- USN-6027-1
- USN-6029-1
- USN-6030-1
- USN-6031-1
- USN-6033-1
- USN-6040-1
- USN-6043-1
- USN-6044-1
- USN-6045-1
- USN-6047-1
- USN-6051-1
- USN-6052-1
- USN-6057-1
- USN-6058-1
- USN-6069-1
- USN-6070-1
- USN-6071-1
- USN-6072-1
- USN-6093-1
- USN-6107-1
- USN-6133-1
- USN-6134-1
- USN-6222-1
- USN-6256-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 2147364 | https://bugzilla.redhat.com/2147364 | |
Bugzilla | 2181847 | https://bugzilla.redhat.com/2181847 | |
Bugzilla | 2188470 | https://bugzilla.redhat.com/2188470 | |
RHSA | RHSA-2023:4531 | https://access.redhat.com/errata/RHSA-2023:4531 | |
CVE | CVE-2022-42896 | https://access.redhat.com/security/cve/CVE-2022-42896 | |
CVE | CVE-2023-1281 | https://access.redhat.com/security/cve/CVE-2023-1281 | |
CVE | CVE-2023-1829 | https://access.redhat.com/security/cve/CVE-2023-1829 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/redhat/kpatch-patch-4_18_0-477_15_1?arch=x86_64&distro=redhat-8.8 | redhat | kpatch-patch-4_18_0-477_15_1 | < 1-1.el8_8 | redhat-8.8 | x86_64 | |
Affected | pkg:rpm/redhat/kpatch-patch-4_18_0-477_15_1?arch=ppc64le&distro=redhat-8.8 | redhat | kpatch-patch-4_18_0-477_15_1 | < 1-1.el8_8 | redhat-8.8 | ppc64le | |
Affected | pkg:rpm/redhat/kpatch-patch-4_18_0-477_13_1?arch=x86_64&distro=redhat-8.8 | redhat | kpatch-patch-4_18_0-477_13_1 | < 1-1.el8_8 | redhat-8.8 | x86_64 | |
Affected | pkg:rpm/redhat/kpatch-patch-4_18_0-477_13_1?arch=ppc64le&distro=redhat-8.8 | redhat | kpatch-patch-4_18_0-477_13_1 | < 1-1.el8_8 | redhat-8.8 | ppc64le | |
Affected | pkg:rpm/redhat/kpatch-patch-4_18_0-477_10_1?arch=x86_64&distro=redhat-8.8 | redhat | kpatch-patch-4_18_0-477_10_1 | < 1-2.el8_8 | redhat-8.8 | x86_64 | |
Affected | pkg:rpm/redhat/kpatch-patch-4_18_0-477_10_1?arch=ppc64le&distro=redhat-8.8 | redhat | kpatch-patch-4_18_0-477_10_1 | < 1-2.el8_8 | redhat-8.8 | ppc64le | |
Affected | pkg:rpm/redhat/kernel?arch=x86_64&distro=redhat-8.8 | redhat | kernel | < 4.18.0-477.10.1.el8_8 | redhat-8.8 | x86_64 | |
Affected | pkg:rpm/redhat/kernel?arch=x86_64&distro=redhat-8.8 | redhat | kernel | < 4.18.0-477.13.1.el8_8 | redhat-8.8 | x86_64 | |
Affected | pkg:rpm/redhat/kernel?arch=x86_64&distro=redhat-8.8 | redhat | kernel | < 4.18.0-477.15.1.el8_8 | redhat-8.8 | x86_64 | |
Affected | pkg:rpm/redhat/kernel?arch=ppc64le&distro=redhat-8.8 | redhat | kernel | < 4.18.0-477.10.1.el8_8 | redhat-8.8 | ppc64le | |
Affected | pkg:rpm/redhat/kernel?arch=ppc64le&distro=redhat-8.8 | redhat | kernel | < 4.18.0-477.13.1.el8_8 | redhat-8.8 | ppc64le | |
Affected | pkg:rpm/redhat/kernel?arch=ppc64le&distro=redhat-8.8 | redhat | kernel | < 4.18.0-477.15.1.el8_8 | redhat-8.8 | ppc64le |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |