RHSA-2023:4138
Vulnerability Summary
Timeline
Description
Red Hat Security Advisory: kernel-rt security and bug fix update
CVSS Metrics
- v3.1•HIGH•Score: 8.1CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected Systems
- redhat•kernel-rt
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-core
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-debug
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-debug-core
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-debug-debuginfo
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-debug-devel
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-debug-kvm
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-debug-modules
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-debug-modules-extra
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-debuginfo
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-debuginfo-common-x86_64
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-devel
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-kvm
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-modules
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
- redhat•kernel-rt-modules-extra
< 0:5.14.0-70.64.1.rt21.135.el9_0 | < 0:5.14.0-70.64.1.rt21.135.el9_0
References (35)
- https://access.redhat.com/errata/RHSA-2023:4138
- https://access.redhat.com/security/updates/classification/#important
- https://bugzilla.redhat.com/show_bug.cgi?id=2066614
- https://bugzilla.redhat.com/show_bug.cgi?id=2133483
- https://bugzilla.redhat.com/show_bug.cgi?id=2147364
- https://bugzilla.redhat.com/show_bug.cgi?id=2187308
- https://bugzilla.redhat.com/show_bug.cgi?id=2187439
- https://bugzilla.redhat.com/show_bug.cgi?id=2192589
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4138.json
- https://access.redhat.com/security/cve/CVE-2022-1016
- https://www.cve.org/CVERecord?id=CVE-2022-1016
- https://nvd.nist.gov/vuln/detail/CVE-2022-1016
- http://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/
- https://seclists.org/oss-sec/2022/q1/205
- https://access.redhat.com/security/cve/CVE-2022-42703
- https://www.cve.org/CVERecord?id=CVE-2022-42703
- https://nvd.nist.gov/vuln/detail/CVE-2022-42703
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=2555283eb40df89945557273121e9393ef9b542b
- https://access.redhat.com/security/cve/CVE-2022-42896
- https://www.cve.org/CVERecord?id=CVE-2022-42896
- https://nvd.nist.gov/vuln/detail/CVE-2022-42896
- https://github.com/google/security-research/security/advisories/GHSA-pf87-6c9q-jvm4
- https://access.redhat.com/security/cve/CVE-2023-2002
- https://www.cve.org/CVERecord?id=CVE-2023-2002
- https://nvd.nist.gov/vuln/detail/CVE-2023-2002
- https://www.openwall.com/lists/oss-security/2023/04/16/3
- https://access.redhat.com/security/cve/CVE-2023-2124
- https://www.cve.org/CVERecord?id=CVE-2023-2124
- https://nvd.nist.gov/vuln/detail/CVE-2023-2124
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/fs/xfs/xfs_buf_item_recover.c?h=v6.4-rc1&id=22ed903eee23a5b174e240f1cdfa9acf393a5210
- https://lore.kernel.org/linux-xfs/20230412214034.GL3223426@dread.disaster.area/T/#m1ebbcd1ad061d2d33bef6f0534a2b014744d152d
- https://access.redhat.com/security/cve/CVE-2023-2235
- https://www.cve.org/CVERecord?id=CVE-2023-2235
- https://nvd.nist.gov/vuln/detail/CVE-2023-2235
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=fd0815f632c24878e325821943edccc7fde947a2