RHSA-2024:1018

Description

Red Hat Security Advisory: kernel security update

CVSS Metrics

• v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•bpftool

  < 0:7.0.0-284.55.1.el9_2 | < 0:7.0.0-284.55.1.el9_2 | < 0:7.0.0-284.55.1.el9_2

• redhat•bpftool-debuginfo

  < 0:7.0.0-284.55.1.el9_2 | < 0:7.0.0-284.55.1.el9_2 | < 0:7.0.0-284.55.1.el9_2

• redhat•kernel

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-core

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-debug

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-debug-core

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-debug-debuginfo

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-debug-devel

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-debug-devel-matched

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-debug-modules

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-debug-modules-core

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-debug-modules-extra

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-debuginfo

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-devel

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-devel-matched

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-modules

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-modules-core

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-64k-modules-extra

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-abi-stablelists

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-core

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debug

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debug-core

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debug-debuginfo

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debug-devel

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debug-devel-matched

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debug-modules

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debug-modules-core

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debug-modules-extra

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debug-uki-virt

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debuginfo

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debuginfo-common-aarch64

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debuginfo-common-ppc64le

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debuginfo-common-s390x

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-debuginfo-common-x86_64

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-devel

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-devel-matched

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-doc

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-modules

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-modules-core

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-modules-extra

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-tools

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-tools-debuginfo

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-tools-libs

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-tools-libs-devel

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-uki-virt

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-zfcpdump

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-zfcpdump-core

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-zfcpdump-debuginfo

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

• redhat•kernel-zfcpdump-devel

  < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2 | < 0:5.14.0-284.55.1.el9_2

Showing first 50 affected entries in server-rendered view.

References (56)

• https://access.redhat.com/errata/RHSA-2024:1018
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2133452
• https://bugzilla.redhat.com/show_bug.cgi?id=2235306
• https://bugzilla.redhat.com/show_bug.cgi?id=2252731
• https://bugzilla.redhat.com/show_bug.cgi?id=2255139
• https://bugzilla.redhat.com/show_bug.cgi?id=2255498
• https://bugzilla.redhat.com/show_bug.cgi?id=2255653
• https://bugzilla.redhat.com/show_bug.cgi?id=2259866
• https://bugzilla.redhat.com/show_bug.cgi?id=2260005
• https://bugzilla.redhat.com/show_bug.cgi?id=2262126
• https://bugzilla.redhat.com/show_bug.cgi?id=2262127
• https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1018.json
• https://access.redhat.com/security/cve/CVE-2022-38096
• https://www.cve.org/CVERecord?id=CVE-2022-38096
• https://nvd.nist.gov/vuln/detail/CVE-2022-38096
• https://access.redhat.com/security/cve/CVE-2023-4244
• https://www.cve.org/CVERecord?id=CVE-2023-4244
• https://nvd.nist.gov/vuln/detail/CVE-2023-4244
• https://lore.kernel.org/netdev/20230810070830.24064-1-pablo@netfilter.org/
• https://lore.kernel.org/netdev/20230815223011.7019-1-fw@strlen.de/
• https://access.redhat.com/security/cve/CVE-2023-6546
• https://www.cve.org/CVERecord?id=CVE-2023-6546
• https://nvd.nist.gov/vuln/detail/CVE-2023-6546
• https://github.com/torvalds/linux/commit/3c4f8333b582487a2d1e02171f1465531cde53e3
• https://www.zerodayinitiative.com/advisories/ZDI-CAN-20527
• https://access.redhat.com/security/cve/CVE-2023-6817
• https://www.cve.org/CVERecord?id=CVE-2023-6817
• https://nvd.nist.gov/vuln/detail/CVE-2023-6817
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=317eb9685095678f2c9f5a8189de698c5354316a
• https://access.redhat.com/security/cve/CVE-2023-6931
• https://www.cve.org/CVERecord?id=CVE-2023-6931
• https://nvd.nist.gov/vuln/detail/CVE-2023-6931
• https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=382c27f4ed28f803b1f1473ac2d8db0afc795a1b
• https://access.redhat.com/security/cve/CVE-2023-51042
• https://www.cve.org/CVERecord?id=CVE-2023-51042
• https://nvd.nist.gov/vuln/detail/CVE-2023-51042
• https://github.com/torvalds/linux/commit/2e54154b9f27262efd0cb4f903cc7d5ad1fe9628
• https://access.redhat.com/security/cve/CVE-2023-51043
• https://www.cve.org/CVERecord?id=CVE-2023-51043
• https://nvd.nist.gov/vuln/detail/CVE-2023-51043
• https://github.com/torvalds/linux/commit/4e076c73e4f6e90816b30fcd4a0d7ab365087255
• https://access.redhat.com/security/cve/CVE-2024-0193
• https://www.cve.org/CVERecord?id=CVE-2024-0193
• https://nvd.nist.gov/vuln/detail/CVE-2024-0193
• https://access.redhat.com/security/cve/CVE-2024-1085
• https://www.cve.org/CVERecord?id=CVE-2024-1085
• https://nvd.nist.gov/vuln/detail/CVE-2024-1085
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b1db244ffd041a49ecc9618e8feb6b5c1afcdaa7
• https://kernel.dance/b1db244ffd041a49ecc9618e8feb6b5c1afcdaa7
• https://access.redhat.com/security/cve/CVE-2024-1086
• https://www.cve.org/CVERecord?id=CVE-2024-1086
• https://nvd.nist.gov/vuln/detail/CVE-2024-1086
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f342de4e2f33e0e39165d8639387aa6c19dff660
• https://kernel.dance/f342de4e2f33e0e39165d8639387aa6c19dff660
• https://www.cisa.gov/known-exploited-vulnerabilities-catalog