- Issued:
- 2023-01-30
- Updated:
- 2023-01-30
RHSA-2023:0531 - Security Advisory
Synopsis
Important: kernel-rt security and bug fix update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update for kernel-rt is now available for Red Hat Enterprise Linux 8.4 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
- kernel: memory corruption in AX88179_178A based USB ethernet device. (CVE-2022-2964)
- kernel: i915: Incorrect GPU TLB flush can lead to random memory access (CVE-2022-4139)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
- kernel-rt: update RT source tree to the RHEL-8.4.z14 source tree. (BZ#2151921)
Solution
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
The system must be rebooted for this update to take effect.
Affected Products
- Red Hat Enterprise Linux for Real Time - Telecommunications Update Service 8.4 x86_64
- Red Hat Enterprise Linux for Real Time for NFV - Telecommunications Update Service 8.4 x86_64
Fixes
- BZ - 2067482 - CVE-2022-2964 kernel: memory corruption in AX88179_178A based USB ethernet device.
- BZ - 2147572 - CVE-2022-4139 kernel: i915: Incorrect GPU TLB flush can lead to random memory access
Red Hat Enterprise Linux for Real Time - Telecommunications Update Service 8.4
SRPM | |
---|---|
kernel-rt-4.18.0-305.76.1.rt7.148.el8_4.src.rpm | SHA-256: 9761ef9371437e6c30906ecd09754550f74d5ff4a91dcd51452bb26b65bda7b0 |
x86_64 | |
kernel-rt-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: b3637508698984b7543019ef3bc0c3ddf533ace91182854b91137d612a898f04 |
kernel-rt-core-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: fcfdca81425a28b593dbbb3638bc4381436c190166a027e335658f88e0c07e0c |
kernel-rt-debug-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: c274f2ff3ca27ecdfa8bf8116589edc041285b33cb42439c68ce8075bb5eae4c |
kernel-rt-debug-core-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: 79b78ea9f639f76ccd49faceb852c82687229bccec28cf4e766263fe3c569311 |
kernel-rt-debug-debuginfo-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: 0f87e2b2e5475ab0a0847032e9445d2a50b4a9def1de89c82b1e73cb0ab2a489 |
kernel-rt-debug-devel-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: 2b0b09a7f63b0db6972c1d982a03842a59d8247f3b6ca7cca1acfd2cfb6d868e |
kernel-rt-debug-modules-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: acdff05c64b808f3f61ca77ae68f59e588ee27e0a59319319b7bc0825b7345ec |
kernel-rt-debug-modules-extra-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: a0af6874abfb3b99263439f50e2577b7772e7be7aaae4d9808aff78d5816d23d |
kernel-rt-debuginfo-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: c4f472039d01f9868693b0cf690d1a3d172fe808298aacdea2694644312fce4d |
kernel-rt-debuginfo-common-x86_64-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: 063553573eb014f772a9001c18c0061e21dcd975a66e4e19dd32d2f51024b1e5 |
kernel-rt-devel-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: dd5f5865cab6e1bd736c50f9c60ee279d08a084d261cc9e9af949f798a9a801c |
kernel-rt-modules-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: 647d1c671f713643d0e1fec47cfa8c830494b579770b61a8f753909fcdac7fef |
kernel-rt-modules-extra-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: c3155bce32921c085172bc8a18dd21a5938ed77824230562209d5171b9a77c06 |
Red Hat Enterprise Linux for Real Time for NFV - Telecommunications Update Service 8.4
SRPM | |
---|---|
kernel-rt-4.18.0-305.76.1.rt7.148.el8_4.src.rpm | SHA-256: 9761ef9371437e6c30906ecd09754550f74d5ff4a91dcd51452bb26b65bda7b0 |
x86_64 | |
kernel-rt-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: b3637508698984b7543019ef3bc0c3ddf533ace91182854b91137d612a898f04 |
kernel-rt-core-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: fcfdca81425a28b593dbbb3638bc4381436c190166a027e335658f88e0c07e0c |
kernel-rt-debug-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: c274f2ff3ca27ecdfa8bf8116589edc041285b33cb42439c68ce8075bb5eae4c |
kernel-rt-debug-core-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: 79b78ea9f639f76ccd49faceb852c82687229bccec28cf4e766263fe3c569311 |
kernel-rt-debug-debuginfo-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: 0f87e2b2e5475ab0a0847032e9445d2a50b4a9def1de89c82b1e73cb0ab2a489 |
kernel-rt-debug-devel-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: 2b0b09a7f63b0db6972c1d982a03842a59d8247f3b6ca7cca1acfd2cfb6d868e |
kernel-rt-debug-kvm-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: c0fcac20b4e3ee85a34c078c44efc75931bc7589cd487e966e9376a97ccef7de |
kernel-rt-debug-modules-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: acdff05c64b808f3f61ca77ae68f59e588ee27e0a59319319b7bc0825b7345ec |
kernel-rt-debug-modules-extra-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: a0af6874abfb3b99263439f50e2577b7772e7be7aaae4d9808aff78d5816d23d |
kernel-rt-debuginfo-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: c4f472039d01f9868693b0cf690d1a3d172fe808298aacdea2694644312fce4d |
kernel-rt-debuginfo-common-x86_64-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: 063553573eb014f772a9001c18c0061e21dcd975a66e4e19dd32d2f51024b1e5 |
kernel-rt-devel-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: dd5f5865cab6e1bd736c50f9c60ee279d08a084d261cc9e9af949f798a9a801c |
kernel-rt-kvm-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: 917f04733efca732e324172131534337f75948e11ff39dc0276b951166185630 |
kernel-rt-modules-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: 647d1c671f713643d0e1fec47cfa8c830494b579770b61a8f753909fcdac7fef |
kernel-rt-modules-extra-4.18.0-305.76.1.rt7.148.el8_4.x86_64.rpm | SHA-256: c3155bce32921c085172bc8a18dd21a5938ed77824230562209d5171b9a77c06 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.