RHSA-2023:3723

Description

Red Hat Security Advisory: kernel security and bug fix update

CVSS Metrics

• v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•bpftool

  < 0:7.0.0-284.18.1.el9_2 | < 0:7.0.0-284.18.1.el9_2 | < 0:7.0.0-284.18.1.el9_2

• redhat•bpftool-debuginfo

  < 0:7.0.0-284.18.1.el9_2 | < 0:7.0.0-284.18.1.el9_2 | < 0:7.0.0-284.18.1.el9_2

• redhat•kernel

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-core

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-debug

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-debug-core

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-debug-debuginfo

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-debug-devel

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-debug-devel-matched

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-debug-modules

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-debug-modules-core

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-debug-modules-extra

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-debuginfo

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-devel

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-devel-matched

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-modules

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-modules-core

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-64k-modules-extra

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-abi-stablelists

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-core

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debug

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debug-core

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debug-debuginfo

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debug-devel

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debug-devel-matched

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debug-modules

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debug-modules-core

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debug-modules-extra

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debug-uki-virt

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debuginfo

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debuginfo-common-aarch64

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debuginfo-common-ppc64le

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debuginfo-common-s390x

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-debuginfo-common-x86_64

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-devel

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-devel-matched

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-doc

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-modules

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-modules-core

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-modules-extra

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-tools

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-tools-debuginfo

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-tools-libs

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-tools-libs-devel

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-uki-virt

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-zfcpdump

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-zfcpdump-core

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-zfcpdump-debuginfo

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

• redhat•kernel-zfcpdump-devel

  < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2 | < 0:5.14.0-284.18.1.el9_2

Showing first 50 affected entries in server-rendered view.

References (39)

• https://access.redhat.com/errata/RHSA-2023:3723
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2179000
• https://bugzilla.redhat.com/show_bug.cgi?id=2187308
• https://bugzilla.redhat.com/show_bug.cgi?id=2187439
• https://bugzilla.redhat.com/show_bug.cgi?id=2188396
• https://bugzilla.redhat.com/show_bug.cgi?id=2192589
• https://bugzilla.redhat.com/show_bug.cgi?id=2196105
• https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3723.json
• https://access.redhat.com/security/cve/CVE-2023-2002
• https://www.cve.org/CVERecord?id=CVE-2023-2002
• https://nvd.nist.gov/vuln/detail/CVE-2023-2002
• https://www.openwall.com/lists/oss-security/2023/04/16/3
• https://access.redhat.com/security/cve/CVE-2023-2124
• https://www.cve.org/CVERecord?id=CVE-2023-2124
• https://nvd.nist.gov/vuln/detail/CVE-2023-2124
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/fs/xfs/xfs_buf_item_recover.c?h=v6.4-rc1&id=22ed903eee23a5b174e240f1cdfa9acf393a5210
• https://lore.kernel.org/linux-xfs/20230412214034.GL3223426@dread.disaster.area/T/#m1ebbcd1ad061d2d33bef6f0534a2b014744d152d
• https://access.redhat.com/security/cve/CVE-2023-2194
• https://www.cve.org/CVERecord?id=CVE-2023-2194
• https://nvd.nist.gov/vuln/detail/CVE-2023-2194
• https://access.redhat.com/security/cve/CVE-2023-2235
• https://www.cve.org/CVERecord?id=CVE-2023-2235
• https://nvd.nist.gov/vuln/detail/CVE-2023-2235
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=fd0815f632c24878e325821943edccc7fde947a2
• https://access.redhat.com/security/cve/CVE-2023-28466
• https://www.cve.org/CVERecord?id=CVE-2023-28466
• https://nvd.nist.gov/vuln/detail/CVE-2023-28466
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=49c47cc21b5b7a3d8deb18fc57b0aa2ab1286962
• https://access.redhat.com/security/cve/CVE-2023-32233
• https://www.cve.org/CVERecord?id=CVE-2023-32233
• https://nvd.nist.gov/vuln/detail/CVE-2023-32233
• https://github.com/torvalds/linux/commit/c1592a89942e9678f7d9c8030efa777c0d57edab
• https://www.openwall.com/lists/oss-security/2023/05/08/4
• https://access.redhat.com/security/cve/CVE-2023-54325
• https://bugzilla.redhat.com/show_bug.cgi?id=2426061
• https://www.cve.org/CVERecord?id=CVE-2023-54325
• https://nvd.nist.gov/vuln/detail/CVE-2023-54325
• https://lore.kernel.org/linux-cve-announce/2025123016-CVE-2023-54325-3e5c@gregkh/T