Red Hat Product Errata RHSA-2023:1980 - Security Advisory
Issued:
2023-04-25
Updated:
2023-04-25

RHSA-2023:1980 - Security Advisory

Synopsis

Important: kernel-rt security and bug fix update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

  • kernel: FUSE filesystem low-privileged user privileges escalation (CVE-2023-0386)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • kernel-rt: update RT source tree to the latest RHEL-9.0.z8 Batch (BZ#2182175)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64

Fixes

  • BZ - 2159505 - CVE-2023-0386 kernel: FUSE filesystem low-privileged user privileges escalation

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0

SRPM
kernel-rt-5.14.0-70.53.1.rt21.124.el9_0.src.rpm SHA-256: b051055a0d9fa676ae0668dfe0b0e95035990c28be594c0265f0a8aec3430d52
x86_64
kernel-rt-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 2aef791cf8f31f619b71e5fdbe6ba3052e2f53ed73d4890b495167603e8221d5
kernel-rt-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 2aef791cf8f31f619b71e5fdbe6ba3052e2f53ed73d4890b495167603e8221d5
kernel-rt-core-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: c387c898ce6eea80fea02b9582ef553250950281e6304610b461bbbe3fb4e53b
kernel-rt-core-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: c387c898ce6eea80fea02b9582ef553250950281e6304610b461bbbe3fb4e53b
kernel-rt-debug-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: e2148092d24d3b99cca8732479a6408ce56bdb29b8223902d6a32ed3a690b11b
kernel-rt-debug-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: e2148092d24d3b99cca8732479a6408ce56bdb29b8223902d6a32ed3a690b11b
kernel-rt-debug-core-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 723e42d66ce4bc9be86b7352f5b491a2730873c9e9105d8191639c7803109740
kernel-rt-debug-core-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 723e42d66ce4bc9be86b7352f5b491a2730873c9e9105d8191639c7803109740
kernel-rt-debug-debuginfo-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: bc0afc336ce83ac7ff564c8c70e3b2b77355fd6d9a8c5e5b659b81cf1214cadc
kernel-rt-debug-debuginfo-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: bc0afc336ce83ac7ff564c8c70e3b2b77355fd6d9a8c5e5b659b81cf1214cadc
kernel-rt-debug-devel-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: c021eaea4c47fc2032ecdd4d683405bf486175377b60379cabb68b713772128c
kernel-rt-debug-devel-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: c021eaea4c47fc2032ecdd4d683405bf486175377b60379cabb68b713772128c
kernel-rt-debug-kvm-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 8527325f62c1e3df6f24e1f9c155d9bf26a36ac224ac802760c70ff807dbae2b
kernel-rt-debug-modules-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 3fd414c653bb4a5659b434707212a67331ff4e559c048ed21d42f78ce054a5c9
kernel-rt-debug-modules-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 3fd414c653bb4a5659b434707212a67331ff4e559c048ed21d42f78ce054a5c9
kernel-rt-debug-modules-extra-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: cf0ff35494131991857380cf33242ee95fe65d6f0b2e771d6b439de877489ac7
kernel-rt-debug-modules-extra-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: cf0ff35494131991857380cf33242ee95fe65d6f0b2e771d6b439de877489ac7
kernel-rt-debuginfo-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 685d04d6bba195e8ce4bdffbbf84f2c76a8a3ce0d9a316a97a89d2547a92322b
kernel-rt-debuginfo-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 685d04d6bba195e8ce4bdffbbf84f2c76a8a3ce0d9a316a97a89d2547a92322b
kernel-rt-debuginfo-common-x86_64-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 106652ce1d54dbda1dbb5735724ce2dad09e770329b824f73560dd801ce93def
kernel-rt-debuginfo-common-x86_64-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 106652ce1d54dbda1dbb5735724ce2dad09e770329b824f73560dd801ce93def
kernel-rt-devel-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 20e52a8d4b394427b9a63dae48d38eda6bc45a8198a1c8295731c3e54a4b8fc2
kernel-rt-devel-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 20e52a8d4b394427b9a63dae48d38eda6bc45a8198a1c8295731c3e54a4b8fc2
kernel-rt-kvm-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: f9479357415b19a43797d75d920d3b2b674bec24d07b6a6a1b9975fe8b4034a2
kernel-rt-modules-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 6c3acbfe2dd6a1bc96036feb7ac8e1af3fe9ccdf596df1d3cdf92e9745df3938
kernel-rt-modules-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: 6c3acbfe2dd6a1bc96036feb7ac8e1af3fe9ccdf596df1d3cdf92e9745df3938
kernel-rt-modules-extra-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: fd5a0b02f15ad95b8d33a582d1456df9dcd625f56b36a171dbb420c0c6349cdb
kernel-rt-modules-extra-5.14.0-70.53.1.rt21.124.el9_0.x86_64.rpm SHA-256: fd5a0b02f15ad95b8d33a582d1456df9dcd625f56b36a171dbb420c0c6349cdb

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.