Red Hat Product Errata RHSA-2024:0980 - Security Advisory
Issued:
2024-02-26
Updated:
2024-02-26

RHSA-2024:0980 - Security Advisory

Synopsis

Important: kernel security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in net/bluetooth/l2cap_core.c (CVE-2022-42896)
  • kernel: use-after-free in sch_qfq network scheduler (CVE-2023-4921)
  • kernel: IGB driver inadequate buffer size for frames larger than MTU (CVE-2023-45871)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux Server - AUS 7.6 x86_64

Fixes

  • BZ - 2147364 - CVE-2022-42896 kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in net/bluetooth/l2cap_core.c
  • BZ - 2244723 - CVE-2023-45871 kernel: IGB driver inadequate buffer size for frames larger than MTU
  • BZ - 2245514 - CVE-2023-4921 kernel: use-after-free in sch_qfq network scheduler

Red Hat Enterprise Linux Server - AUS 7.6

SRPM
kernel-3.10.0-957.111.1.el7.src.rpm SHA-256: 2ffe3e14f0af13b1db1a2115240e82a3c418168fcedf2ff14a9d7c515eb2fae0
x86_64
bpftool-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: ed3476240936786078e8df5b39227ba42238dee1a3a51cf8d8dca2834e62077f
kernel-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 04dff32776553c54c3cb52f93afeaf9c79be0810a72536e027641ac2c1448ca8
kernel-abi-whitelists-3.10.0-957.111.1.el7.noarch.rpm SHA-256: a51edf8b8f50ee1b6924982873fc01fa6130d0628d38d5d184e0f214b9064a9d
kernel-debug-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 8c04f2e83256dd82476f1780c8cc3fe0e6fc63f9d03e7eac7221c6d16b45d93a
kernel-debug-debuginfo-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: db68738314ef38459ea6b6b1f6936f3fc7dbcb844502bc24416d0addea4ed099
kernel-debug-debuginfo-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: db68738314ef38459ea6b6b1f6936f3fc7dbcb844502bc24416d0addea4ed099
kernel-debug-devel-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: e1085b9150712aa483a9f3265f45e7cc1f832fd2f3b2260e2673dcf0aeec0d26
kernel-debuginfo-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 0de8cd4c1617a9e3ea6902505a2eb01c167997fec22eec2df8d450c0c68b26a5
kernel-debuginfo-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 0de8cd4c1617a9e3ea6902505a2eb01c167997fec22eec2df8d450c0c68b26a5
kernel-debuginfo-common-x86_64-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: cedbeda8388b999dc9a9a5fcff8eb2b3c3989de6c10dd201e1bee80d99d5eda6
kernel-debuginfo-common-x86_64-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: cedbeda8388b999dc9a9a5fcff8eb2b3c3989de6c10dd201e1bee80d99d5eda6
kernel-devel-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: a73e875af12f4e671104155ef3afb395ce8e4083092feda14234bd49f35f5158
kernel-doc-3.10.0-957.111.1.el7.noarch.rpm SHA-256: 0948de877d58a1c8726ad901c772f5a322e93fbd707539fc31d77e17aba8120a
kernel-headers-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 621f8335e9f1151a66c3197b3cacd008e39f8e89dec0106a453bc56ca347584b
kernel-tools-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 5fd6a3825eb529d234963e7a729142cc362b7cff2b8862214a0525f49ba8dcf9
kernel-tools-debuginfo-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 303bb84d428dfdc251d578e5dcb8572720d1beaf73547a1daa2d10aa7c253cf9
kernel-tools-debuginfo-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 303bb84d428dfdc251d578e5dcb8572720d1beaf73547a1daa2d10aa7c253cf9
kernel-tools-libs-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 51cb81dd9cb72e2575b413372c3c8f80b45b65cbdb4e78d4e62dbd3e43056462
kernel-tools-libs-devel-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 1a61a05c83c6f79243caa8fbaf854a143832449914228d6a8a650461084728c1
perf-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: e48b80d7e43efe537394ac212eb6132e6d7cbdb0262e42038057e6cc2603eeb7
perf-debuginfo-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: a69eda758cb28981a55805c41e87afb34e68a8ec29a651207cc5a6b73db4be16
perf-debuginfo-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: a69eda758cb28981a55805c41e87afb34e68a8ec29a651207cc5a6b73db4be16
python-perf-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 792c3978b0f837ddf1072da26350ab037a99a627f35c49f903f1371e4e77714b
python-perf-debuginfo-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 5f40681710c85ef0c216ac35d0fe19b43ac2ece3b7bb0ca49c3a6638de293627
python-perf-debuginfo-3.10.0-957.111.1.el7.x86_64.rpm SHA-256: 5f40681710c85ef0c216ac35d0fe19b43ac2ece3b7bb0ca49c3a6638de293627

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.