- Issued:
- 2023-04-25
- Updated:
- 2023-04-25
RHSA-2023:1980 - Security Advisory
Synopsis
Important: kernel-rt security and bug fix update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update for kernel-rt is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
- kernel: FUSE filesystem low-privileged user privileges escalation (CVE-2023-0386)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
- kernel-rt: update RT source tree to the latest RHEL-9.0.z8 Batch (BZ#2182175)
Solution
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
The system must be rebooted for this update to take effect.
Affected Products
- Red Hat Enterprise Linux for Real Time for x86_64 - 4 years of updates 9.0 x86_64
- Red Hat Enterprise Linux for Real Time for NFV for x86_64 - 4 years of updates 9.0 x86_64
Fixes
- BZ - 2159505 - CVE-2023-0386 kernel: FUSE filesystem low-privileged user privileges escalation
CVEs
Red Hat Enterprise Linux for Real Time for x86_64 - 4 years of updates 9.0
SRPM | |
---|---|
kernel-rt-5.14.0-70.53.1.rt21.124.el9_0.src.rpm | SHA-256: b051055a0d9fa676ae0668dfe0b0e95035990c28be594c0265f0a8aec3430d52 |
x86_64 | |
kernel-rt-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 2aef791cf8f31f619b71e5fdbe6ba3052e2f53ed73d4890b495167603e8221d5 |
kernel-rt-core-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: c387c898ce6eea80fea02b9582ef553250950281e6304610b461bbbe3fb4e53b |
kernel-rt-debug-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: e2148092d24d3b99cca8732479a6408ce56bdb29b8223902d6a32ed3a690b11b |
kernel-rt-debug-core-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 723e42d66ce4bc9be86b7352f5b491a2730873c9e9105d8191639c7803109740 |
kernel-rt-debug-debuginfo-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: bc0afc336ce83ac7ff564c8c70e3b2b77355fd6d9a8c5e5b659b81cf1214cadc |
kernel-rt-debug-devel-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: c021eaea4c47fc2032ecdd4d683405bf486175377b60379cabb68b713772128c |
kernel-rt-debug-modules-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 3fd414c653bb4a5659b434707212a67331ff4e559c048ed21d42f78ce054a5c9 |
kernel-rt-debug-modules-extra-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: cf0ff35494131991857380cf33242ee95fe65d6f0b2e771d6b439de877489ac7 |
kernel-rt-debuginfo-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 685d04d6bba195e8ce4bdffbbf84f2c76a8a3ce0d9a316a97a89d2547a92322b |
kernel-rt-debuginfo-common-x86_64-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 106652ce1d54dbda1dbb5735724ce2dad09e770329b824f73560dd801ce93def |
kernel-rt-devel-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 20e52a8d4b394427b9a63dae48d38eda6bc45a8198a1c8295731c3e54a4b8fc2 |
kernel-rt-modules-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 6c3acbfe2dd6a1bc96036feb7ac8e1af3fe9ccdf596df1d3cdf92e9745df3938 |
kernel-rt-modules-extra-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: fd5a0b02f15ad95b8d33a582d1456df9dcd625f56b36a171dbb420c0c6349cdb |
Red Hat Enterprise Linux for Real Time for NFV for x86_64 - 4 years of updates 9.0
SRPM | |
---|---|
kernel-rt-5.14.0-70.53.1.rt21.124.el9_0.src.rpm | SHA-256: b051055a0d9fa676ae0668dfe0b0e95035990c28be594c0265f0a8aec3430d52 |
x86_64 | |
kernel-rt-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 2aef791cf8f31f619b71e5fdbe6ba3052e2f53ed73d4890b495167603e8221d5 |
kernel-rt-core-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: c387c898ce6eea80fea02b9582ef553250950281e6304610b461bbbe3fb4e53b |
kernel-rt-debug-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: e2148092d24d3b99cca8732479a6408ce56bdb29b8223902d6a32ed3a690b11b |
kernel-rt-debug-core-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 723e42d66ce4bc9be86b7352f5b491a2730873c9e9105d8191639c7803109740 |
kernel-rt-debug-debuginfo-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: bc0afc336ce83ac7ff564c8c70e3b2b77355fd6d9a8c5e5b659b81cf1214cadc |
kernel-rt-debug-devel-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: c021eaea4c47fc2032ecdd4d683405bf486175377b60379cabb68b713772128c |
kernel-rt-debug-kvm-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 8527325f62c1e3df6f24e1f9c155d9bf26a36ac224ac802760c70ff807dbae2b |
kernel-rt-debug-modules-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 3fd414c653bb4a5659b434707212a67331ff4e559c048ed21d42f78ce054a5c9 |
kernel-rt-debug-modules-extra-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: cf0ff35494131991857380cf33242ee95fe65d6f0b2e771d6b439de877489ac7 |
kernel-rt-debuginfo-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 685d04d6bba195e8ce4bdffbbf84f2c76a8a3ce0d9a316a97a89d2547a92322b |
kernel-rt-debuginfo-common-x86_64-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 106652ce1d54dbda1dbb5735724ce2dad09e770329b824f73560dd801ce93def |
kernel-rt-devel-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 20e52a8d4b394427b9a63dae48d38eda6bc45a8198a1c8295731c3e54a4b8fc2 |
kernel-rt-kvm-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: f9479357415b19a43797d75d920d3b2b674bec24d07b6a6a1b9975fe8b4034a2 |
kernel-rt-modules-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: 6c3acbfe2dd6a1bc96036feb7ac8e1af3fe9ccdf596df1d3cdf92e9745df3938 |
kernel-rt-modules-extra-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm | SHA-256: fd5a0b02f15ad95b8d33a582d1456df9dcd625f56b36a171dbb420c0c6349cdb |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.