RHSA-2023:5091

Description

Red Hat Security Advisory: kernel-rt security and bug fix update

CVSS Metrics

• v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•kernel-rt

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-core

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-debug

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-debug-core

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-debug-debuginfo

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-debug-devel

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-debug-kvm

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-debug-modules

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-debug-modules-core

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-debug-modules-extra

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-debuginfo

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-debuginfo-common-x86_64

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-devel

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-kvm

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-modules

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-modules-core

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

• redhat•kernel-rt-modules-extra

  < 0:5.14.0-284.30.1.rt14.315.el9_2 | < 0:5.14.0-284.30.1.rt14.315.el9_2

References (59)

• https://access.redhat.com/errata/RHSA-2023:5091
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2181891
• https://bugzilla.redhat.com/show_bug.cgi?id=2213260
• https://bugzilla.redhat.com/show_bug.cgi?id=2213455
• https://bugzilla.redhat.com/show_bug.cgi?id=2217845
• https://bugzilla.redhat.com/show_bug.cgi?id=2220892
• https://bugzilla.redhat.com/show_bug.cgi?id=2220893
• https://bugzilla.redhat.com/show_bug.cgi?id=2225097
• https://bugzilla.redhat.com/show_bug.cgi?id=2225198
• https://bugzilla.redhat.com/show_bug.cgi?id=2225239
• https://bugzilla.redhat.com/show_bug.cgi?id=2225275
• https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5091.json
• https://access.redhat.com/security/cve/CVE-2023-1637
• https://www.cve.org/CVERecord?id=CVE-2023-1637
• https://nvd.nist.gov/vuln/detail/CVE-2023-1637
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=e2a1256b17b16f9b9adf1b6fea56819e7b68e463
• https://sourceware.org/bugzilla/show_bug.cgi?id=27398
• https://access.redhat.com/security/cve/CVE-2023-3390
• https://www.cve.org/CVERecord?id=CVE-2023-3390
• https://nvd.nist.gov/vuln/detail/CVE-2023-3390
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1240eb93f0616b21c675416516ff3d74798fdc97
• https://access.redhat.com/security/cve/CVE-2023-3610
• https://www.cve.org/CVERecord?id=CVE-2023-3610
• https://nvd.nist.gov/vuln/detail/CVE-2023-3610
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=4bedf9eee016286c835e3d8fa981ddece5338795
• https://access.redhat.com/security/cve/CVE-2023-3776
• https://www.cve.org/CVERecord?id=CVE-2023-3776
• https://nvd.nist.gov/vuln/detail/CVE-2023-3776
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=0323bce598eea038714f941ce2b22541c46d488f
• https://access.redhat.com/security/cve/CVE-2023-4004
• https://www.cve.org/CVERecord?id=CVE-2023-4004
• https://nvd.nist.gov/vuln/detail/CVE-2023-4004
• https://patchwork.ozlabs.org/project/netfilter-devel/patch/20230719190824.21196-1-fw@strlen.de/
• https://access.redhat.com/security/cve/CVE-2023-4147
• https://www.cve.org/CVERecord?id=CVE-2023-4147
• https://nvd.nist.gov/vuln/detail/CVE-2023-4147
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0ebc1064e4874d5987722a2ddbc18f94aa53b211
• https://www.spinics.net/lists/stable/msg671573.html
• https://access.redhat.com/security/cve/CVE-2023-20593
• https://www.cve.org/CVERecord?id=CVE-2023-20593
• https://nvd.nist.gov/vuln/detail/CVE-2023-20593
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=522b1d69219d8f083173819fde04f994aa051a98
• https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7008.html
• https://access.redhat.com/security/cve/CVE-2023-21102
• https://www.cve.org/CVERecord?id=CVE-2023-21102
• https://nvd.nist.gov/vuln/detail/CVE-2023-21102
• https://android.googlesource.com/kernel/common/+/ec6fe823507b2f6ef4a58f3a9bee9a5ec086c32c%5E%21/
• https://access.redhat.com/security/cve/CVE-2023-31248
• https://www.cve.org/CVERecord?id=CVE-2023-31248
• https://nvd.nist.gov/vuln/detail/CVE-2023-31248
• https://lore.kernel.org/netfilter-devel/20230705121627.GC19489@breakpoint.cc/T/
• https://www.openwall.com/lists/oss-security/2023/07/05/2
• https://www.zerodayinitiative.com/advisories/ZDI-23-899/
• https://access.redhat.com/security/cve/CVE-2023-35001
• https://www.cve.org/CVERecord?id=CVE-2023-35001
• https://nvd.nist.gov/vuln/detail/CVE-2023-35001
• https://lore.kernel.org/netfilter-devel/20230705121515.747251-1-cascardo@canonical.com/T/
• https://www.openwall.com/lists/oss-security/2023/07/05/3