RHSA-2023:7749

Description

Red Hat Security Advisory: kernel security update

CVSS Metrics

• v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•bpftool

  < 0:7.2.0-362.13.1.el9_3 | < 0:7.2.0-362.13.1.el9_3 | < 0:7.2.0-362.13.1.el9_3 | < 0:7.2.0-362.13.1.el9_3 | < 0:7.2.0-362.13.1.el9_3

• redhat•bpftool-debuginfo

  < 0:7.2.0-362.13.1.el9_3 | < 0:7.2.0-362.13.1.el9_3 | < 0:7.2.0-362.13.1.el9_3 | < 0:7.2.0-362.13.1.el9_3 | < 0:7.2.0-362.13.1.el9_3

• redhat•kernel

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-core

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-debug

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-debug-core

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-debug-debuginfo

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-debug-devel

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-debug-devel-matched

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-debug-modules

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-debug-modules-core

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-debug-modules-extra

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-debuginfo

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-devel

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-devel-matched

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-modules

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-modules-core

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-64k-modules-extra

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-abi-stablelists

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-core

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debug

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debug-core

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debug-debuginfo

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debug-devel

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debug-devel-matched

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debug-modules

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debug-modules-core

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debug-modules-extra

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debug-uki-virt

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debuginfo

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debuginfo-common-aarch64

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debuginfo-common-ppc64le

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debuginfo-common-s390x

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-debuginfo-common-x86_64

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-devel

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-devel-matched

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-doc

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-modules

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-modules-core

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-modules-extra

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-rt

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-rt-core

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-rt-debug

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-rt-debug-core

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-rt-debug-debuginfo

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-rt-debug-devel

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-rt-debug-kvm

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-rt-debug-modules

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

• redhat•kernel-rt-debug-modules-core

  < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3 | < 0:5.14.0-362.13.1.el9_3

Showing first 50 affected entries in server-rendered view.

References (39)

• https://access.redhat.com/errata/RHSA-2023:7749
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2154178
• https://bugzilla.redhat.com/show_bug.cgi?id=2207625
• https://bugzilla.redhat.com/show_bug.cgi?id=2242172
• https://bugzilla.redhat.com/show_bug.cgi?id=2244723
• https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_7749.json
• https://access.redhat.com/security/cve/CVE-2023-1192
• https://www.cve.org/CVERecord?id=CVE-2023-1192
• https://nvd.nist.gov/vuln/detail/CVE-2023-1192
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d527f51331cace562393a8038d870b3e9916686fCVE-2023-52
• https://access.redhat.com/security/cve/CVE-2023-5345
• https://www.cve.org/CVERecord?id=CVE-2023-5345
• https://nvd.nist.gov/vuln/detail/CVE-2023-5345
• https://access.redhat.com/security/cve/CVE-2023-20569
• https://www.cve.org/CVERecord?id=CVE-2023-20569
• https://nvd.nist.gov/vuln/detail/CVE-2023-20569
• https://access.redhat.com/solutions/7049120
• https://www.amd.com/content/dam/amd/en/documents/corporate/cr/speculative-return-stack-overflow-whitepaper.pdf
• https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7005.html
• https://access.redhat.com/security/cve/CVE-2023-45871
• https://www.cve.org/CVERecord?id=CVE-2023-45871
• https://nvd.nist.gov/vuln/detail/CVE-2023-45871
• https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=bb5ed01cd2428cd25b1c88a3a9cba87055eb289f
• https://access.redhat.com/security/cve/CVE-2023-53657
• https://bugzilla.redhat.com/show_bug.cgi?id=2402281
• https://www.cve.org/CVERecord?id=CVE-2023-53657
• https://nvd.nist.gov/vuln/detail/CVE-2023-53657
• https://lore.kernel.org/linux-cve-announce/2025100701-CVE-2023-53657-d0c7@gregkh/T
• https://access.redhat.com/security/cve/CVE-2023-53996
• https://bugzilla.redhat.com/show_bug.cgi?id=2424944
• https://www.cve.org/CVERecord?id=CVE-2023-53996
• https://nvd.nist.gov/vuln/detail/CVE-2023-53996
• https://lore.kernel.org/linux-cve-announce/2025122425-CVE-2023-53996-2c23@gregkh/T
• https://access.redhat.com/security/cve/CVE-2023-54170
• https://bugzilla.redhat.com/show_bug.cgi?id=2426038
• https://www.cve.org/CVERecord?id=CVE-2023-54170
• https://nvd.nist.gov/vuln/detail/CVE-2023-54170
• https://lore.kernel.org/linux-cve-announce/2025123020-CVE-2023-54170-f1c6@gregkh/T