RHSA-2024:5281
Advisory lineage Upstream: 18 Downstream: 0
Published: 01 Oct 2024, 05:17
Last modified:05 May 2026, 10:07
Vulnerability Summary
Overall Risk (default)
medium
31/100 CVSS Score
7.8 HIGH
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
01 Oct 2024, 05:17
Published
Vulnerability first disclosed
05 May 2026, 10:07
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: kernel security update
CVSS Metrics
- v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Systems
- redhat•bpftool
< 0:4.18.0-372.118.1.el8_6
- redhat•bpftool-debuginfo
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-abi-stablelists
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-core
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-debug
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-debug-core
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-debug-debuginfo
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-debug-devel
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-debug-modules
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-debug-modules-extra
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-debuginfo
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-debuginfo-common-aarch64
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-debuginfo-common-ppc64le
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-debuginfo-common-s390x
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-debuginfo-common-x86_64
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-devel
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-doc
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-modules
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-modules-extra
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-tools
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-tools-debuginfo
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-tools-libs
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-zfcpdump
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-zfcpdump-core
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-zfcpdump-debuginfo
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-zfcpdump-devel
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-zfcpdump-modules
< 0:4.18.0-372.118.1.el8_6
- redhat•kernel-zfcpdump-modules-extra
< 0:4.18.0-372.118.1.el8_6
- redhat•perf
< 0:4.18.0-372.118.1.el8_6
- redhat•perf-debuginfo
< 0:4.18.0-372.118.1.el8_6
- redhat•python3-perf
< 0:4.18.0-372.118.1.el8_6
- redhat•python3-perf-debuginfo
< 0:4.18.0-372.118.1.el8_6
References (95)
- https://access.redhat.com/errata/RHSA-2024:5281
- https://access.redhat.com/security/updates/classification/#important
- https://bugzilla.redhat.com/show_bug.cgi?id=2258875
- https://bugzilla.redhat.com/show_bug.cgi?id=2265271
- https://bugzilla.redhat.com/show_bug.cgi?id=2265653
- https://bugzilla.redhat.com/show_bug.cgi?id=2277831
- https://bugzilla.redhat.com/show_bug.cgi?id=2278989
- https://bugzilla.redhat.com/show_bug.cgi?id=2281257
- https://bugzilla.redhat.com/show_bug.cgi?id=2282355
- https://bugzilla.redhat.com/show_bug.cgi?id=2282471
- https://bugzilla.redhat.com/show_bug.cgi?id=2283463
- https://bugzilla.redhat.com/show_bug.cgi?id=2284417
- https://bugzilla.redhat.com/show_bug.cgi?id=2292331
- https://bugzilla.redhat.com/show_bug.cgi?id=2297474
- https://bugzilla.redhat.com/show_bug.cgi?id=2297730
- https://bugzilla.redhat.com/show_bug.cgi?id=2298166
- https://bugzilla.redhat.com/show_bug.cgi?id=2298167
- https://bugzilla.redhat.com/show_bug.cgi?id=2298168
- https://bugzilla.redhat.com/show_bug.cgi?id=2299240
- https://bugzilla.redhat.com/show_bug.cgi?id=2299336
- https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5281.json
- https://access.redhat.com/security/cve/CVE-2021-47311
- https://www.cve.org/CVERecord?id=CVE-2021-47311
- https://nvd.nist.gov/vuln/detail/CVE-2021-47311
- https://lore.kernel.org/linux-cve-announce/2024052129-CVE-2021-47311-47f4@gregkh/T
- https://access.redhat.com/security/cve/CVE-2021-47385
- https://www.cve.org/CVERecord?id=CVE-2021-47385
- https://nvd.nist.gov/vuln/detail/CVE-2021-47385
- https://lore.kernel.org/linux-cve-announce/2024052144-CVE-2021-47385-a7e7@gregkh/T
- https://access.redhat.com/security/cve/CVE-2021-47566
- https://www.cve.org/CVERecord?id=CVE-2021-47566
- https://nvd.nist.gov/vuln/detail/CVE-2021-47566
- https://lore.kernel.org/linux-cve-announce/2024052453-CVE-2021-47566-12b8@gregkh/T
- https://access.redhat.com/security/cve/CVE-2022-48637
- https://www.cve.org/CVERecord?id=CVE-2022-48637
- https://nvd.nist.gov/vuln/detail/CVE-2022-48637
- https://lore.kernel.org/linux-cve-announce/2024042855-CVE-2022-48637-d149@gregkh/T
- https://access.redhat.com/security/cve/CVE-2022-48827
- https://www.cve.org/CVERecord?id=CVE-2022-48827
- https://nvd.nist.gov/vuln/detail/CVE-2022-48827
- https://lore.kernel.org/linux-cve-announce/2024071652-CVE-2022-48827-f95b@gregkh/T
- https://access.redhat.com/security/cve/CVE-2022-48828
- https://www.cve.org/CVERecord?id=CVE-2022-48828
- https://nvd.nist.gov/vuln/detail/CVE-2022-48828
- https://lore.kernel.org/linux-cve-announce/2024071652-CVE-2022-48828-97cb@gregkh/T
- https://access.redhat.com/security/cve/CVE-2022-48829
- https://www.cve.org/CVERecord?id=CVE-2022-48829
- https://nvd.nist.gov/vuln/detail/CVE-2022-48829
- https://lore.kernel.org/linux-cve-announce/2024071652-CVE-2022-48829-2145@gregkh/T
- https://access.redhat.com/security/cve/CVE-2023-52439
- https://www.cve.org/CVERecord?id=CVE-2023-52439
- https://nvd.nist.gov/vuln/detail/CVE-2023-52439
- https://lore.kernel.org/linux-cve-announce/2024022026-wobbling-jumbo-748e@gregkh/T/#u
- https://access.redhat.com/security/cve/CVE-2023-52448
- https://www.cve.org/CVERecord?id=CVE-2023-52448
- https://nvd.nist.gov/vuln/detail/CVE-2023-52448
- https://lore.kernel.org/linux-cve-announce/2024022255-CVE-2023-52448-7bf2@gregkh/T/#u
- https://access.redhat.com/security/cve/CVE-2023-52881
- https://www.cve.org/CVERecord?id=CVE-2023-52881
- https://nvd.nist.gov/vuln/detail/CVE-2023-52881
- https://lore.kernel.org/all/20231205161841.2702925-1-edumazet@google.com/
- https://lore.kernel.org/linux-cve-announce/2024052941-CVE-2023-52881-4283@gregkh/T/#u
- https://access.redhat.com/security/cve/CVE-2023-52885
- https://www.cve.org/CVERecord?id=CVE-2023-52885
- https://nvd.nist.gov/vuln/detail/CVE-2023-52885
- https://lore.kernel.org/linux-cve-announce/2024071432-CVE-2023-52885-e934@gregkh/T
- https://access.redhat.com/security/cve/CVE-2024-21823
- https://www.cve.org/CVERecord?id=CVE-2024-21823
- https://nvd.nist.gov/vuln/detail/CVE-2024-21823
- https://access.redhat.com/security/cve/CVE-2024-35852
- https://www.cve.org/CVERecord?id=CVE-2024-35852
- https://nvd.nist.gov/vuln/detail/CVE-2024-35852
- https://lore.kernel.org/linux-cve-announce/2024051740-CVE-2024-35852-9e9a@gregkh/T
- https://access.redhat.com/security/cve/CVE-2024-36017
- https://www.cve.org/CVERecord?id=CVE-2024-36017
- https://nvd.nist.gov/vuln/detail/CVE-2024-36017
- https://lore.kernel.org/linux-cve-announce/2024053015-CVE-2024-36017-bf96@gregkh/T
- https://access.redhat.com/security/cve/CVE-2024-36971
- https://www.cve.org/CVERecord?id=CVE-2024-36971
- https://nvd.nist.gov/vuln/detail/CVE-2024-36971
- https://lore.kernel.org/linux-cve-announce/20240610090330.1347021-2-lee@kernel.org/T
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- https://access.redhat.com/security/cve/CVE-2024-39502
- https://www.cve.org/CVERecord?id=CVE-2024-39502
- https://nvd.nist.gov/vuln/detail/CVE-2024-39502
- https://lore.kernel.org/linux-cve-announce/2024071204-CVE-2024-39502-afe9@gregkh/T
- https://access.redhat.com/security/cve/CVE-2024-41090
- https://www.cve.org/CVERecord?id=CVE-2024-41090
- https://nvd.nist.gov/vuln/detail/CVE-2024-41090
- https://lore.kernel.org/linux-cve-announce/2024072916-CVE-2024-41090-9830@gregkh
- https://www.openwall.com/lists/oss-security/2024/07/24/4
- https://access.redhat.com/security/cve/CVE-2024-41091
- https://www.cve.org/CVERecord?id=CVE-2024-41091
- https://nvd.nist.gov/vuln/detail/CVE-2024-41091
- https://lore.kernel.org/linux-cve-announce/2024072918-CVE-2024-41091-35b7@gregkh