RHSA-2022:0187

Description

Red Hat Security Advisory: kernel-rt security and bug fix update

CVSS Metrics

• v3.1•HIGH•Score: 8.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected Systems

• redhat•kernel-rt

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-core

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-debug

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-debug-core

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-debug-debuginfo

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-debug-devel

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-debug-kvm

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-debug-modules

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-debug-modules-extra

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-debuginfo

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-debuginfo-common-x86_64

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-devel

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-kvm

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-modules

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

• redhat•kernel-rt-modules-extra

  < 0:4.18.0-305.34.2.rt7.107.el8_4 | < 0:4.18.0-305.34.2.rt7.107.el8_4

References (22)

• https://access.redhat.com/errata/RHSA-2022:0187
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2034514
• https://bugzilla.redhat.com/show_bug.cgi?id=2034813
• https://bugzilla.redhat.com/show_bug.cgi?id=2040358
• https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0187.json
• https://access.redhat.com/security/cve/CVE-2021-4154
• https://www.cve.org/CVERecord?id=CVE-2021-4154
• https://nvd.nist.gov/vuln/detail/CVE-2021-4154
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3b0462726e7ef281c35a7a4ae33e93ee2bc9975b
• https://access.redhat.com/security/cve/CVE-2021-4155
• https://www.cve.org/CVERecord?id=CVE-2021-4155
• https://nvd.nist.gov/vuln/detail/CVE-2021-4155
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=983d8e60f50806f90534cc5373d0ce867e5aaf79
• https://access.redhat.com/security/cve/CVE-2022-0185
• https://www.cve.org/CVERecord?id=CVE-2022-0185
• https://nvd.nist.gov/vuln/detail/CVE-2022-0185
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=722d94847de2
• https://github.com/Crusaders-of-Rust/CVE-2022-0185
• https://www.openwall.com/lists/oss-security/2022/01/18/7
• https://www.willsroot.io/2022/01/cve-2022-0185.html
• https://www.cisa.gov/known-exploited-vulnerabilities-catalog