RHSA-2024:1882

Description

Red Hat Security Advisory: kernel-rt security and bug fix update

CVSS Metrics

• v3.1•MEDIUM•Score: 6.7CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•kernel-rt

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-core

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-debug

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-debug-core

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-debug-debuginfo

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-debug-devel

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-debug-kvm

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-debug-modules

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-debug-modules-core

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-debug-modules-extra

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-debuginfo

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-debuginfo-common-x86_64

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-devel

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-kvm

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-modules

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-modules-core

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

• redhat•kernel-rt-modules-extra

  < 0:5.14.0-284.62.1.rt14.347.el9_2 | < 0:5.14.0-284.62.1.rt14.347.el9_2

References (24)

• https://access.redhat.com/errata/RHSA-2024:1882
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2250843
• https://bugzilla.redhat.com/show_bug.cgi?id=2265518
• https://bugzilla.redhat.com/show_bug.cgi?id=2265519
• https://bugzilla.redhat.com/show_bug.cgi?id=2265645
• https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1882.json
• https://access.redhat.com/security/cve/CVE-2023-6240
• https://www.cve.org/CVERecord?id=CVE-2023-6240
• https://nvd.nist.gov/vuln/detail/CVE-2023-6240
• https://people.redhat.com/~hkario/marvin/
• https://securitypitfalls.wordpress.com/2023/10/16/experiment-with-side-channel-attacks-yourself/
• https://access.redhat.com/security/cve/CVE-2024-26582
• https://www.cve.org/CVERecord?id=CVE-2024-26582
• https://nvd.nist.gov/vuln/detail/CVE-2024-26582
• https://lore.kernel.org/linux-cve-announce/2024022139-spruce-prelude-c358@gregkh/T/#u
• https://access.redhat.com/security/cve/CVE-2024-26584
• https://www.cve.org/CVERecord?id=CVE-2024-26584
• https://nvd.nist.gov/vuln/detail/CVE-2024-26584
• https://lore.kernel.org/linux-cve-announce/2024022148-showpiece-yanking-107c@gregkh/T/#u
• https://access.redhat.com/security/cve/CVE-2024-26586
• https://www.cve.org/CVERecord?id=CVE-2024-26586
• https://nvd.nist.gov/vuln/detail/CVE-2024-26586
• https://lore.kernel.org/linux-cve-announce/2024022253-CVE-2024-26586-6632@gregkh/T/#u