RHSA-2023:4801

Description

Red Hat Security Advisory: kernel security and bug fix update

CVSS Metrics

• v3.1•HIGH•Score: 8.8CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•bpftool

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•bpftool-debuginfo

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-abi-stablelists

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-core

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-debug

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-debug-core

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-debug-debuginfo

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-debug-devel

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-debug-devel-matched

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-debug-modules

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-debug-modules-extra

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-debuginfo

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-debuginfo-common-aarch64

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-debuginfo-common-ppc64le

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-debuginfo-common-s390x

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-debuginfo-common-x86_64

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-devel

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-devel-matched

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-doc

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-modules

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-modules-extra

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-tools

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-tools-debuginfo

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-tools-libs

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-tools-libs-devel

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-zfcpdump

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-zfcpdump-core

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-zfcpdump-debuginfo

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-zfcpdump-devel

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-zfcpdump-devel-matched

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-zfcpdump-modules

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•kernel-zfcpdump-modules-extra

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•perf

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•perf-debuginfo

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•python3-perf

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

• redhat•python3-perf-debuginfo

  < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0 | < 0:5.14.0-70.70.1.el9_0

References (34)

• https://access.redhat.com/errata/RHSA-2023:4801
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2066819
• https://bugzilla.redhat.com/show_bug.cgi?id=2130141
• https://bugzilla.redhat.com/show_bug.cgi?id=2179000
• https://bugzilla.redhat.com/show_bug.cgi?id=2193219
• https://bugzilla.redhat.com/show_bug.cgi?id=2218672
• https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4801.json
• https://access.redhat.com/security/cve/CVE-2022-1353
• https://www.cve.org/CVERecord?id=CVE-2022-1353
• https://nvd.nist.gov/vuln/detail/CVE-2022-1353
• https://github.com/torvalds/linux/commit/9a564bccb78a76740ea9d75a259942df8143d02c
• https://access.redhat.com/security/cve/CVE-2022-39188
• https://www.cve.org/CVERecord?id=CVE-2022-39188
• https://nvd.nist.gov/vuln/detail/CVE-2022-39188
• https://bugs.chromium.org/p/project-zero/issues/detail?id=2329
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b67fbebd4cf980aecbcc750e1462128bffe8ae15
• https://lore.kernel.org/stable/20220831191348.3388208-1-jannh@google.com/T/#u
• https://access.redhat.com/security/cve/CVE-2023-0458
• https://www.cve.org/CVERecord?id=CVE-2023-0458
• https://nvd.nist.gov/vuln/detail/CVE-2023-0458
• https://github.com/torvalds/linux/commit/739790605705ddcf18f21782b9c99ad7d53a8c11
• https://access.redhat.com/security/cve/CVE-2023-3090
• https://www.cve.org/CVERecord?id=CVE-2023-3090
• https://nvd.nist.gov/vuln/detail/CVE-2023-3090
• https://access.redhat.com/security/cve/CVE-2023-28466
• https://www.cve.org/CVERecord?id=CVE-2023-28466
• https://nvd.nist.gov/vuln/detail/CVE-2023-28466
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=49c47cc21b5b7a3d8deb18fc57b0aa2ab1286962
• https://access.redhat.com/security/cve/CVE-2023-44466
• https://bugzilla.redhat.com/show_bug.cgi?id=2241342
• https://www.cve.org/CVERecord?id=CVE-2023-44466
• https://nvd.nist.gov/vuln/detail/CVE-2023-44466
• https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a282a2f10539dce2aa619e71e1817570d557fc97