[RHSA-2024:5522] kpatch-patch-4_18_0-553 security update
Severity
Important
Affected Packages
4
CVEs
2
This is a kernel live patch module which can be loaded by the kpatch command line utility to modify the code of a running kernel. This patch module is targeted for kernel-4.18.0-553.el8_10.
Security Fix(es):
kernel: TIPC message reassembly use-after-free remote code execution vulnerability (CVE-2024-36886)
kernel: net: UAF in network route management (CVE-2024-36971)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| Package | Affected Version |
|---|---|
 pkg:rpm/redhat/kpatch-patch-4_18_0-553?arch=x86_64&distro=redhat-8.10
|
< 1-1.el8_10 |
|
pkg:rpm/redhat/kpatch-patch-4_18_0-553?arch=ppc64le&distro=redhat-8.10
|
< 1-1.el8_10 |
|
pkg:rpm/redhat/kernel?arch=x86_64&distro=redhat-8.10
|
< 4.18.0-553.el8_10 |
|
pkg:rpm/redhat/kernel?arch=ppc64le&distro=redhat-8.10
|
< 4.18.0-553.el8_10 |
- ID
- RHSA-2024:5522
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2024:5522
- Published
-
2024-08-20T00:00:00
(3 weeks ago) - Modified
-
2024-08-20T00:00:00
(3 weeks ago) - Rights
- Copyright 2024 Red Hat, Inc.
- Other Advisories
-
-
ALAS2-2024-2581
-
ALAS2-2024-2622
-
ALSA-2024:5101
-
CISA-2024:0807
-
DSA-5703-1
-
DSA-5730-1
-
ELSA-2024-12581
-
ELSA-2024-12584
-
ELSA-2024-12585
-
ELSA-2024-4583
-
ELSA-2024-5101
-
ELSA-2024-5363
-
RHSA-2024:4713
-
RHSA-2024:5101
-
RHSA-2024:5102
-
RHSA-2024:5523
-
RLSA-2024:4583
-
RLSA-2024:5101
-
SUSE-SU-2024:2372-1
-
SUSE-SU-2024:2385-1
-
SUSE-SU-2024:2394-1
-
SUSE-SU-2024:2495-1
-
SUSE-SU-2024:2571-1
-
SUSE-SU-2024:2896-1
-
SUSE-SU-2024:2939-1
-
SUSE-SU-2024:2973-1
-
USN-6949-1
-
USN-6949-2
-
USN-6950-1
-
USN-6950-2
-
USN-6950-3
-
USN-6950-4
-
USN-6951-1
-
USN-6951-2
-
USN-6951-3
-
USN-6951-4
-
USN-6952-1
-
USN-6952-2
-
USN-6953-1
-
USN-6955-1
-
USN-6956-1
-
USN-6957-1
-
USN-6979-1
-
USN-6999-1
-
USN-7004-1
-
USN-7005-1
-
USN-7005-2
-
USN-7007-1
-
USN-7008-1
-
USN-7009-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Bugzilla | 2277238 |
|
|
| Bugzilla | 2292331 |
|
|
| RHSA | RHSA-2024:5522 |
|
|
| CVE | CVE-2024-36886 |
|
|
| CVE | CVE-2024-36971 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/redhat/kpatch-patch-4_18_0-553?arch=x86_64&distro=redhat-8.10 | redhat |
kpatch-patch-4_18_0-553
|
< 1-1.el8_10 | redhat-8.10 | x86_64 | |
| Affected | pkg:rpm/redhat/kpatch-patch-4_18_0-553?arch=ppc64le&distro=redhat-8.10 | redhat |
kpatch-patch-4_18_0-553
|
< 1-1.el8_10 | redhat-8.10 | ppc64le | |
| Affected | pkg:rpm/redhat/kernel?arch=x86_64&distro=redhat-8.10 | redhat |
kernel
|
< 4.18.0-553.el8_10 | redhat-8.10 | x86_64 | |
| Affected | pkg:rpm/redhat/kernel?arch=ppc64le&distro=redhat-8.10 | redhat |
kernel
|
< 4.18.0-553.el8_10 | redhat-8.10 | ppc64le |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |