Red Hat Product Errata RHSA-2024:6242 - Security Advisory
Issued:
2024-09-03
Updated:
2024-09-03

RHSA-2024:6242 - Security Advisory

Synopsis

Important: kpatch-patch-5_14_0-427_13_1 and kpatch-patch-5_14_0-427_31_1 security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kpatch-patch-5_14_0-427_13_1 and kpatch-patch-5_14_0-427_31_1 is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

This is a kernel live patch module which can be loaded by the kpatch command line utility to modify the code of a running kernel. This patch module is targeted for kernel-5.14.0-427.13.1.el9_4.

Security Fix(es):

  • kernel: virtio-net: tap: mlx5_core short frame denial of service (CVE-2024-41090)
  • kernel: virtio-net: tun: mlx5_core short frame denial of service (CVE-2024-41091)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.4 x86_64
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64

Fixes

  • BZ - 2299240 - CVE-2024-41090 kernel: virtio-net: tap: mlx5_core short frame denial of service
  • BZ - 2299336 - CVE-2024-41091 kernel: virtio-net: tun: mlx5_core short frame denial of service

Red Hat Enterprise Linux for x86_64 9

SRPM
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.src.rpm SHA-256: 0efd82ce926fa8f5c78179a2606e8ba1fde536624c9a5c44ca0e882451369144
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.src.rpm SHA-256: bac5687a2d8249f361d923805c4e20bd8f2443ff7da056ac5928e3d35dfe1274
x86_64
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.x86_64.rpm SHA-256: 5f4e2679f5d90b2074054cfce02b5e9a01f41c63121da087f4ac53416981a93d
kpatch-patch-5_14_0-427_13_1-debuginfo-1-3.el9_4.x86_64.rpm SHA-256: 0ad108a68a257f233392d0ba561b027252171878c282a4973fdbcfe2e7ff7248
kpatch-patch-5_14_0-427_13_1-debugsource-1-3.el9_4.x86_64.rpm SHA-256: c37ef667c0889558bb93bde7d31400b2242a1e79f88bd4de4bcb076a6dd298c7
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.x86_64.rpm SHA-256: 45156481ce0e83d18b4421baf3498361d4cbd97b4aa7048ef4df00a3fdf8481b
kpatch-patch-5_14_0-427_31_1-debuginfo-1-1.el9_4.x86_64.rpm SHA-256: cd66728bf5fdfae2203611f05108dbe1e579f6202d880093ff59d0c699123d63
kpatch-patch-5_14_0-427_31_1-debugsource-1-1.el9_4.x86_64.rpm SHA-256: 8d0baae4004916088ec36a547bef5c168c828ba9b97ef4196de438d61f181640

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6

SRPM
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.src.rpm SHA-256: 0efd82ce926fa8f5c78179a2606e8ba1fde536624c9a5c44ca0e882451369144
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.src.rpm SHA-256: bac5687a2d8249f361d923805c4e20bd8f2443ff7da056ac5928e3d35dfe1274
x86_64
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.x86_64.rpm SHA-256: 5f4e2679f5d90b2074054cfce02b5e9a01f41c63121da087f4ac53416981a93d
kpatch-patch-5_14_0-427_13_1-debuginfo-1-3.el9_4.x86_64.rpm SHA-256: 0ad108a68a257f233392d0ba561b027252171878c282a4973fdbcfe2e7ff7248
kpatch-patch-5_14_0-427_13_1-debugsource-1-3.el9_4.x86_64.rpm SHA-256: c37ef667c0889558bb93bde7d31400b2242a1e79f88bd4de4bcb076a6dd298c7
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.x86_64.rpm SHA-256: 45156481ce0e83d18b4421baf3498361d4cbd97b4aa7048ef4df00a3fdf8481b
kpatch-patch-5_14_0-427_31_1-debuginfo-1-1.el9_4.x86_64.rpm SHA-256: cd66728bf5fdfae2203611f05108dbe1e579f6202d880093ff59d0c699123d63
kpatch-patch-5_14_0-427_31_1-debugsource-1-1.el9_4.x86_64.rpm SHA-256: 8d0baae4004916088ec36a547bef5c168c828ba9b97ef4196de438d61f181640

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4

SRPM
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.src.rpm SHA-256: 0efd82ce926fa8f5c78179a2606e8ba1fde536624c9a5c44ca0e882451369144
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.src.rpm SHA-256: bac5687a2d8249f361d923805c4e20bd8f2443ff7da056ac5928e3d35dfe1274
x86_64
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.x86_64.rpm SHA-256: 5f4e2679f5d90b2074054cfce02b5e9a01f41c63121da087f4ac53416981a93d
kpatch-patch-5_14_0-427_13_1-debuginfo-1-3.el9_4.x86_64.rpm SHA-256: 0ad108a68a257f233392d0ba561b027252171878c282a4973fdbcfe2e7ff7248
kpatch-patch-5_14_0-427_13_1-debugsource-1-3.el9_4.x86_64.rpm SHA-256: c37ef667c0889558bb93bde7d31400b2242a1e79f88bd4de4bcb076a6dd298c7
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.x86_64.rpm SHA-256: 45156481ce0e83d18b4421baf3498361d4cbd97b4aa7048ef4df00a3fdf8481b
kpatch-patch-5_14_0-427_31_1-debuginfo-1-1.el9_4.x86_64.rpm SHA-256: cd66728bf5fdfae2203611f05108dbe1e579f6202d880093ff59d0c699123d63
kpatch-patch-5_14_0-427_31_1-debugsource-1-1.el9_4.x86_64.rpm SHA-256: 8d0baae4004916088ec36a547bef5c168c828ba9b97ef4196de438d61f181640

Red Hat Enterprise Linux Server - AUS 9.6

SRPM
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.src.rpm SHA-256: 0efd82ce926fa8f5c78179a2606e8ba1fde536624c9a5c44ca0e882451369144
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.src.rpm SHA-256: bac5687a2d8249f361d923805c4e20bd8f2443ff7da056ac5928e3d35dfe1274
x86_64
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.x86_64.rpm SHA-256: 5f4e2679f5d90b2074054cfce02b5e9a01f41c63121da087f4ac53416981a93d
kpatch-patch-5_14_0-427_13_1-debuginfo-1-3.el9_4.x86_64.rpm SHA-256: 0ad108a68a257f233392d0ba561b027252171878c282a4973fdbcfe2e7ff7248
kpatch-patch-5_14_0-427_13_1-debugsource-1-3.el9_4.x86_64.rpm SHA-256: c37ef667c0889558bb93bde7d31400b2242a1e79f88bd4de4bcb076a6dd298c7
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.x86_64.rpm SHA-256: 45156481ce0e83d18b4421baf3498361d4cbd97b4aa7048ef4df00a3fdf8481b
kpatch-patch-5_14_0-427_31_1-debuginfo-1-1.el9_4.x86_64.rpm SHA-256: cd66728bf5fdfae2203611f05108dbe1e579f6202d880093ff59d0c699123d63
kpatch-patch-5_14_0-427_31_1-debugsource-1-1.el9_4.x86_64.rpm SHA-256: 8d0baae4004916088ec36a547bef5c168c828ba9b97ef4196de438d61f181640

Red Hat Enterprise Linux Server - AUS 9.4

SRPM
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.src.rpm SHA-256: 0efd82ce926fa8f5c78179a2606e8ba1fde536624c9a5c44ca0e882451369144
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.src.rpm SHA-256: bac5687a2d8249f361d923805c4e20bd8f2443ff7da056ac5928e3d35dfe1274
x86_64
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.x86_64.rpm SHA-256: 5f4e2679f5d90b2074054cfce02b5e9a01f41c63121da087f4ac53416981a93d
kpatch-patch-5_14_0-427_13_1-debuginfo-1-3.el9_4.x86_64.rpm SHA-256: 0ad108a68a257f233392d0ba561b027252171878c282a4973fdbcfe2e7ff7248
kpatch-patch-5_14_0-427_13_1-debugsource-1-3.el9_4.x86_64.rpm SHA-256: c37ef667c0889558bb93bde7d31400b2242a1e79f88bd4de4bcb076a6dd298c7
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.x86_64.rpm SHA-256: 45156481ce0e83d18b4421baf3498361d4cbd97b4aa7048ef4df00a3fdf8481b
kpatch-patch-5_14_0-427_31_1-debuginfo-1-1.el9_4.x86_64.rpm SHA-256: cd66728bf5fdfae2203611f05108dbe1e579f6202d880093ff59d0c699123d63
kpatch-patch-5_14_0-427_31_1-debugsource-1-1.el9_4.x86_64.rpm SHA-256: 8d0baae4004916088ec36a547bef5c168c828ba9b97ef4196de438d61f181640

Red Hat Enterprise Linux for Power, little endian 9

SRPM
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.src.rpm SHA-256: 0efd82ce926fa8f5c78179a2606e8ba1fde536624c9a5c44ca0e882451369144
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.src.rpm SHA-256: bac5687a2d8249f361d923805c4e20bd8f2443ff7da056ac5928e3d35dfe1274
ppc64le
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.ppc64le.rpm SHA-256: a51b32c7a9ecfdc63f0d354de312b8c94b930a734bd4d2cbe48ac8789a179adb
kpatch-patch-5_14_0-427_13_1-debuginfo-1-3.el9_4.ppc64le.rpm SHA-256: 6d749cdf4fd8a52a6878797c0b25682714991e55f952a2afd744f9f2e7680564
kpatch-patch-5_14_0-427_13_1-debugsource-1-3.el9_4.ppc64le.rpm SHA-256: 8ac8eb4e6fbb44a1ea0d94f88ea0ebe6bf9506211179daf927586a2fe4fc5369
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.ppc64le.rpm SHA-256: 3c8590e09ae0f1578cf4d9abb442f18b02ebe627dd5383783296f32fcae17939
kpatch-patch-5_14_0-427_31_1-debuginfo-1-1.el9_4.ppc64le.rpm SHA-256: e3966669cb5774901abdb20c05616c7806e6238b47a28015a2bb994367fc58ad
kpatch-patch-5_14_0-427_31_1-debugsource-1-1.el9_4.ppc64le.rpm SHA-256: 9351bfe39abfe82a7ad03a57adc52c5bb283a075489b82d959570786d8260e2e

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6

SRPM
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.src.rpm SHA-256: 0efd82ce926fa8f5c78179a2606e8ba1fde536624c9a5c44ca0e882451369144
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.src.rpm SHA-256: bac5687a2d8249f361d923805c4e20bd8f2443ff7da056ac5928e3d35dfe1274
ppc64le
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.ppc64le.rpm SHA-256: a51b32c7a9ecfdc63f0d354de312b8c94b930a734bd4d2cbe48ac8789a179adb
kpatch-patch-5_14_0-427_13_1-debuginfo-1-3.el9_4.ppc64le.rpm SHA-256: 6d749cdf4fd8a52a6878797c0b25682714991e55f952a2afd744f9f2e7680564
kpatch-patch-5_14_0-427_13_1-debugsource-1-3.el9_4.ppc64le.rpm SHA-256: 8ac8eb4e6fbb44a1ea0d94f88ea0ebe6bf9506211179daf927586a2fe4fc5369
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.ppc64le.rpm SHA-256: 3c8590e09ae0f1578cf4d9abb442f18b02ebe627dd5383783296f32fcae17939
kpatch-patch-5_14_0-427_31_1-debuginfo-1-1.el9_4.ppc64le.rpm SHA-256: e3966669cb5774901abdb20c05616c7806e6238b47a28015a2bb994367fc58ad
kpatch-patch-5_14_0-427_31_1-debugsource-1-1.el9_4.ppc64le.rpm SHA-256: 9351bfe39abfe82a7ad03a57adc52c5bb283a075489b82d959570786d8260e2e

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4

SRPM
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.src.rpm SHA-256: 0efd82ce926fa8f5c78179a2606e8ba1fde536624c9a5c44ca0e882451369144
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.src.rpm SHA-256: bac5687a2d8249f361d923805c4e20bd8f2443ff7da056ac5928e3d35dfe1274
ppc64le
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.ppc64le.rpm SHA-256: a51b32c7a9ecfdc63f0d354de312b8c94b930a734bd4d2cbe48ac8789a179adb
kpatch-patch-5_14_0-427_13_1-debuginfo-1-3.el9_4.ppc64le.rpm SHA-256: 6d749cdf4fd8a52a6878797c0b25682714991e55f952a2afd744f9f2e7680564
kpatch-patch-5_14_0-427_13_1-debugsource-1-3.el9_4.ppc64le.rpm SHA-256: 8ac8eb4e6fbb44a1ea0d94f88ea0ebe6bf9506211179daf927586a2fe4fc5369
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.ppc64le.rpm SHA-256: 3c8590e09ae0f1578cf4d9abb442f18b02ebe627dd5383783296f32fcae17939
kpatch-patch-5_14_0-427_31_1-debuginfo-1-1.el9_4.ppc64le.rpm SHA-256: e3966669cb5774901abdb20c05616c7806e6238b47a28015a2bb994367fc58ad
kpatch-patch-5_14_0-427_31_1-debugsource-1-1.el9_4.ppc64le.rpm SHA-256: 9351bfe39abfe82a7ad03a57adc52c5bb283a075489b82d959570786d8260e2e

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6

SRPM
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.src.rpm SHA-256: 0efd82ce926fa8f5c78179a2606e8ba1fde536624c9a5c44ca0e882451369144
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.src.rpm SHA-256: bac5687a2d8249f361d923805c4e20bd8f2443ff7da056ac5928e3d35dfe1274
ppc64le
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.ppc64le.rpm SHA-256: a51b32c7a9ecfdc63f0d354de312b8c94b930a734bd4d2cbe48ac8789a179adb
kpatch-patch-5_14_0-427_13_1-debuginfo-1-3.el9_4.ppc64le.rpm SHA-256: 6d749cdf4fd8a52a6878797c0b25682714991e55f952a2afd744f9f2e7680564
kpatch-patch-5_14_0-427_13_1-debugsource-1-3.el9_4.ppc64le.rpm SHA-256: 8ac8eb4e6fbb44a1ea0d94f88ea0ebe6bf9506211179daf927586a2fe4fc5369
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.ppc64le.rpm SHA-256: 3c8590e09ae0f1578cf4d9abb442f18b02ebe627dd5383783296f32fcae17939
kpatch-patch-5_14_0-427_31_1-debuginfo-1-1.el9_4.ppc64le.rpm SHA-256: e3966669cb5774901abdb20c05616c7806e6238b47a28015a2bb994367fc58ad
kpatch-patch-5_14_0-427_31_1-debugsource-1-1.el9_4.ppc64le.rpm SHA-256: 9351bfe39abfe82a7ad03a57adc52c5bb283a075489b82d959570786d8260e2e

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4

SRPM
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.src.rpm SHA-256: 0efd82ce926fa8f5c78179a2606e8ba1fde536624c9a5c44ca0e882451369144
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.src.rpm SHA-256: bac5687a2d8249f361d923805c4e20bd8f2443ff7da056ac5928e3d35dfe1274
ppc64le
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.ppc64le.rpm SHA-256: a51b32c7a9ecfdc63f0d354de312b8c94b930a734bd4d2cbe48ac8789a179adb
kpatch-patch-5_14_0-427_13_1-debuginfo-1-3.el9_4.ppc64le.rpm SHA-256: 6d749cdf4fd8a52a6878797c0b25682714991e55f952a2afd744f9f2e7680564
kpatch-patch-5_14_0-427_13_1-debugsource-1-3.el9_4.ppc64le.rpm SHA-256: 8ac8eb4e6fbb44a1ea0d94f88ea0ebe6bf9506211179daf927586a2fe4fc5369
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.ppc64le.rpm SHA-256: 3c8590e09ae0f1578cf4d9abb442f18b02ebe627dd5383783296f32fcae17939
kpatch-patch-5_14_0-427_31_1-debuginfo-1-1.el9_4.ppc64le.rpm SHA-256: e3966669cb5774901abdb20c05616c7806e6238b47a28015a2bb994367fc58ad
kpatch-patch-5_14_0-427_31_1-debugsource-1-1.el9_4.ppc64le.rpm SHA-256: 9351bfe39abfe82a7ad03a57adc52c5bb283a075489b82d959570786d8260e2e

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6

SRPM
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.src.rpm SHA-256: 0efd82ce926fa8f5c78179a2606e8ba1fde536624c9a5c44ca0e882451369144
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.src.rpm SHA-256: bac5687a2d8249f361d923805c4e20bd8f2443ff7da056ac5928e3d35dfe1274
x86_64
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.x86_64.rpm SHA-256: 5f4e2679f5d90b2074054cfce02b5e9a01f41c63121da087f4ac53416981a93d
kpatch-patch-5_14_0-427_13_1-debuginfo-1-3.el9_4.x86_64.rpm SHA-256: 0ad108a68a257f233392d0ba561b027252171878c282a4973fdbcfe2e7ff7248
kpatch-patch-5_14_0-427_13_1-debugsource-1-3.el9_4.x86_64.rpm SHA-256: c37ef667c0889558bb93bde7d31400b2242a1e79f88bd4de4bcb076a6dd298c7
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.x86_64.rpm SHA-256: 45156481ce0e83d18b4421baf3498361d4cbd97b4aa7048ef4df00a3fdf8481b
kpatch-patch-5_14_0-427_31_1-debuginfo-1-1.el9_4.x86_64.rpm SHA-256: cd66728bf5fdfae2203611f05108dbe1e579f6202d880093ff59d0c699123d63
kpatch-patch-5_14_0-427_31_1-debugsource-1-1.el9_4.x86_64.rpm SHA-256: 8d0baae4004916088ec36a547bef5c168c828ba9b97ef4196de438d61f181640

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4

SRPM
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.src.rpm SHA-256: 0efd82ce926fa8f5c78179a2606e8ba1fde536624c9a5c44ca0e882451369144
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.src.rpm SHA-256: bac5687a2d8249f361d923805c4e20bd8f2443ff7da056ac5928e3d35dfe1274
x86_64
kpatch-patch-5_14_0-427_13_1-1-3.el9_4.x86_64.rpm SHA-256: 5f4e2679f5d90b2074054cfce02b5e9a01f41c63121da087f4ac53416981a93d
kpatch-patch-5_14_0-427_13_1-debuginfo-1-3.el9_4.x86_64.rpm SHA-256: 0ad108a68a257f233392d0ba561b027252171878c282a4973fdbcfe2e7ff7248
kpatch-patch-5_14_0-427_13_1-debugsource-1-3.el9_4.x86_64.rpm SHA-256: c37ef667c0889558bb93bde7d31400b2242a1e79f88bd4de4bcb076a6dd298c7
kpatch-patch-5_14_0-427_31_1-1-1.el9_4.x86_64.rpm SHA-256: 45156481ce0e83d18b4421baf3498361d4cbd97b4aa7048ef4df00a3fdf8481b
kpatch-patch-5_14_0-427_31_1-debuginfo-1-1.el9_4.x86_64.rpm SHA-256: cd66728bf5fdfae2203611f05108dbe1e579f6202d880093ff59d0c699123d63
kpatch-patch-5_14_0-427_31_1-debugsource-1-1.el9_4.x86_64.rpm SHA-256: 8d0baae4004916088ec36a547bef5c168c828ba9b97ef4196de438d61f181640

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.