RHSA-2024:3810

Description

Red Hat Security Advisory: kernel security and bug fix update

CVSS Metrics

• v3.1•HIGH•Score: 7.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Affected Systems

• redhat•bpftool

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•bpftool-debuginfo

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-abi-stablelists

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-core

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-debug

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-debug-core

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-debug-debuginfo

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-debug-devel

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-debug-modules

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-debug-modules-extra

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-debuginfo

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-debuginfo-common-aarch64

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-debuginfo-common-ppc64le

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-debuginfo-common-s390x

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-debuginfo-common-x86_64

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-devel

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-doc

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-modules

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-modules-extra

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-tools

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-tools-debuginfo

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-tools-libs

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-tools-libs-devel

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-zfcpdump

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-zfcpdump-core

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-zfcpdump-debuginfo

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-zfcpdump-devel

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-zfcpdump-modules

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•kernel-zfcpdump-modules-extra

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•perf

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•perf-debuginfo

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•python3-perf

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

• redhat•python3-perf-debuginfo

  < 0:4.18.0-477.58.1.el8_8 | < 0:4.18.0-477.58.1.el8_8

References (66)

• https://access.redhat.com/errata/RHSA-2024:3810
• https://access.redhat.com/security/updates/classification/#moderate
• https://bugzilla.redhat.com/show_bug.cgi?id=2174400
• https://bugzilla.redhat.com/show_bug.cgi?id=2187257
• https://bugzilla.redhat.com/show_bug.cgi?id=2254052
• https://bugzilla.redhat.com/show_bug.cgi?id=2254053
• https://bugzilla.redhat.com/show_bug.cgi?id=2254054
• https://bugzilla.redhat.com/show_bug.cgi?id=2265645
• https://bugzilla.redhat.com/show_bug.cgi?id=2266841
• https://bugzilla.redhat.com/show_bug.cgi?id=2267695
• https://bugzilla.redhat.com/show_bug.cgi?id=2267758
• https://bugzilla.redhat.com/show_bug.cgi?id=2270836
• https://bugzilla.redhat.com/show_bug.cgi?id=2270881
• https://issues.redhat.com/browse/RHEL-27235
• https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_3810.json
• https://access.redhat.com/security/cve/CVE-2021-47013
• https://www.cve.org/CVERecord?id=CVE-2021-47013
• https://nvd.nist.gov/vuln/detail/CVE-2021-47013
• https://lore.kernel.org/linux-cve-announce/2024022831-CVE-2021-47013-034a@gregkh/T/#u
• https://access.redhat.com/security/cve/CVE-2022-50717
• https://bugzilla.redhat.com/show_bug.cgi?id=2425070
• https://www.cve.org/CVERecord?id=CVE-2022-50717
• https://nvd.nist.gov/vuln/detail/CVE-2022-50717
• https://lore.kernel.org/linux-cve-announce/2025122416-CVE-2022-50717-dc68@gregkh/T
• https://access.redhat.com/security/cve/CVE-2023-1118
• https://www.cve.org/CVERecord?id=CVE-2023-1118
• https://nvd.nist.gov/vuln/detail/CVE-2023-1118
• https://github.com/torvalds/linux/commit/29b0589a865b6f66d141d79b2dd1373e4e50fe17
• https://access.redhat.com/security/cve/CVE-2023-1998
• https://www.cve.org/CVERecord?id=CVE-2023-1998
• https://nvd.nist.gov/vuln/detail/CVE-2023-1998
• https://github.com/google/security-research/security/advisories/GHSA-mj4w-6495-6crx
• https://access.redhat.com/security/cve/CVE-2023-6356
• https://www.cve.org/CVERecord?id=CVE-2023-6356
• https://nvd.nist.gov/vuln/detail/CVE-2023-6356
• https://access.redhat.com/security/cve/CVE-2023-6535
• https://www.cve.org/CVERecord?id=CVE-2023-6535
• https://nvd.nist.gov/vuln/detail/CVE-2023-6535
• https://access.redhat.com/security/cve/CVE-2023-6536
• https://www.cve.org/CVERecord?id=CVE-2023-6536
• https://nvd.nist.gov/vuln/detail/CVE-2023-6536
• https://access.redhat.com/security/cve/CVE-2023-52578
• https://www.cve.org/CVERecord?id=CVE-2023-52578
• https://nvd.nist.gov/vuln/detail/CVE-2023-52578
• https://lore.kernel.org/linux-cve-announce/2024030257-CVE-2023-52578-50cb@gregkh/T/#u
• https://access.redhat.com/security/cve/CVE-2024-25742
• https://www.cve.org/CVERecord?id=CVE-2024-25742
• https://nvd.nist.gov/vuln/detail/CVE-2024-25742
• https://arxiv.org/html/2404.03526v1
• https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3008.html
• https://access.redhat.com/security/cve/CVE-2024-25743
• https://www.cve.org/CVERecord?id=CVE-2024-25743
• https://nvd.nist.gov/vuln/detail/CVE-2024-25743
• https://access.redhat.com/security/cve/CVE-2024-26586
• https://www.cve.org/CVERecord?id=CVE-2024-26586
• https://nvd.nist.gov/vuln/detail/CVE-2024-26586
• https://lore.kernel.org/linux-cve-announce/2024022253-CVE-2024-26586-6632@gregkh/T/#u
• https://access.redhat.com/security/cve/CVE-2024-26602
• https://www.cve.org/CVERecord?id=CVE-2024-26602
• https://nvd.nist.gov/vuln/detail/CVE-2024-26602
• https://github.com/torvalds/linux/commit/944d5fe50f3f03daacfea16300e656a1691c4a23
• https://lore.kernel.org/linux-cve-announce/2024022414-CVE-2024-26602-5e76@gregkh/
• https://access.redhat.com/security/cve/CVE-2024-26642
• https://www.cve.org/CVERecord?id=CVE-2024-26642
• https://nvd.nist.gov/vuln/detail/CVE-2024-26642
• https://lore.kernel.org/linux-cve-announce/2024032150-CVE-2024-26642-3549@gregkh/T