RHSA-2023:4962
Advisory lineage Upstream: 9 Downstream: 0
Published: 16 Sept 2024, 12:28
Last modified:05 May 2026, 10:03
Vulnerability Summary
Overall Risk (default)
medium
35/100 CVSS Score
8.8 HIGH
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
16 Sept 2024, 12:28
Published
Vulnerability first disclosed
05 May 2026, 10:03
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: kernel security, bug fix, and enhancement update
CVSS Metrics
- v3.1•HIGH•Score: 8.8CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Systems
- redhat•bpftool
< 0:4.18.0-305.103.1.el8_4
- redhat•bpftool-debuginfo
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-abi-stablelists
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-core
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-cross-headers
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-debug
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-debug-core
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-debug-debuginfo
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-debug-devel
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-debug-modules
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-debug-modules-extra
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-debuginfo
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-debuginfo-common-aarch64
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-debuginfo-common-ppc64le
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-debuginfo-common-s390x
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-debuginfo-common-x86_64
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-devel
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-doc
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-headers
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-modules
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-modules-extra
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-tools
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-tools-debuginfo
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-tools-libs
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-zfcpdump
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-zfcpdump-core
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-zfcpdump-debuginfo
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-zfcpdump-devel
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-zfcpdump-modules
< 0:4.18.0-305.103.1.el8_4
- redhat•kernel-zfcpdump-modules-extra
< 0:4.18.0-305.103.1.el8_4
- redhat•perf
< 0:4.18.0-305.103.1.el8_4
- redhat•perf-debuginfo
< 0:4.18.0-305.103.1.el8_4
- redhat•python3-perf
< 0:4.18.0-305.103.1.el8_4
- redhat•python3-perf-debuginfo
< 0:4.18.0-305.103.1.el8_4
References (49)
- https://access.redhat.com/errata/RHSA-2023:4962
- https://access.redhat.com/security/updates/classification/#important
- https://bugzilla.redhat.com/show_bug.cgi?id=2187308
- https://bugzilla.redhat.com/show_bug.cgi?id=2187439
- https://bugzilla.redhat.com/show_bug.cgi?id=2188470
- https://bugzilla.redhat.com/show_bug.cgi?id=2213260
- https://bugzilla.redhat.com/show_bug.cgi?id=2215768
- https://bugzilla.redhat.com/show_bug.cgi?id=2218672
- https://bugzilla.redhat.com/show_bug.cgi?id=2220892
- https://bugzilla.redhat.com/show_bug.cgi?id=2225275
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4962.json
- https://access.redhat.com/security/cve/CVE-2023-1829
- https://www.cve.org/CVERecord?id=CVE-2023-1829
- https://nvd.nist.gov/vuln/detail/CVE-2023-1829
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8c710f75256bb3cf05ac7b1672c82b92c43f3d28
- https://access.redhat.com/security/cve/CVE-2023-2002
- https://www.cve.org/CVERecord?id=CVE-2023-2002
- https://nvd.nist.gov/vuln/detail/CVE-2023-2002
- https://www.openwall.com/lists/oss-security/2023/04/16/3
- https://access.redhat.com/security/cve/CVE-2023-2124
- https://www.cve.org/CVERecord?id=CVE-2023-2124
- https://nvd.nist.gov/vuln/detail/CVE-2023-2124
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/fs/xfs/xfs_buf_item_recover.c?h=v6.4-rc1&id=22ed903eee23a5b174e240f1cdfa9acf393a5210
- https://lore.kernel.org/linux-xfs/20230412214034.GL3223426@dread.disaster.area/T/#m1ebbcd1ad061d2d33bef6f0534a2b014744d152d
- https://access.redhat.com/security/cve/CVE-2023-3090
- https://www.cve.org/CVERecord?id=CVE-2023-3090
- https://nvd.nist.gov/vuln/detail/CVE-2023-3090
- https://access.redhat.com/security/cve/CVE-2023-3390
- https://www.cve.org/CVERecord?id=CVE-2023-3390
- https://nvd.nist.gov/vuln/detail/CVE-2023-3390
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1240eb93f0616b21c675416516ff3d74798fdc97
- https://access.redhat.com/security/cve/CVE-2023-4004
- https://www.cve.org/CVERecord?id=CVE-2023-4004
- https://nvd.nist.gov/vuln/detail/CVE-2023-4004
- https://patchwork.ozlabs.org/project/netfilter-devel/patch/20230719190824.21196-1-fw@strlen.de/
- https://access.redhat.com/security/cve/CVE-2023-35001
- https://www.cve.org/CVERecord?id=CVE-2023-35001
- https://nvd.nist.gov/vuln/detail/CVE-2023-35001
- https://lore.kernel.org/netfilter-devel/20230705121515.747251-1-cascardo@canonical.com/T/
- https://www.openwall.com/lists/oss-security/2023/07/05/3
- https://access.redhat.com/security/cve/CVE-2023-35788
- https://www.cve.org/CVERecord?id=CVE-2023-35788
- https://nvd.nist.gov/vuln/detail/CVE-2023-35788
- https://www.openwall.com/lists/oss-security/2023/06/07/1
- https://access.redhat.com/security/cve/CVE-2023-44466
- https://bugzilla.redhat.com/show_bug.cgi?id=2241342
- https://www.cve.org/CVERecord?id=CVE-2023-44466
- https://nvd.nist.gov/vuln/detail/CVE-2023-44466
- https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a282a2f10539dce2aa619e71e1817570d557fc97