Red Hat Product Errata RHSA-2025:1067 - Security Advisory
Issued:
2025-02-05
Updated:
2025-02-05

RHSA-2025:1067 - Security Advisory

Synopsis

Moderate: kernel-rt security update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

  • kernel: scsi: core: Fix unremoved procfs host directory regression (CVE-2024-26935)
  • kernel: arm64/sve: Discard stale CPU state when handling SVE traps (CVE-2024-50275)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux for Real Time 8 x86_64
  • Red Hat Enterprise Linux for Real Time for NFV 8 x86_64

Fixes

  • BZ - 2278235 - CVE-2024-26935 kernel: scsi: core: Fix unremoved procfs host directory regression
  • BZ - 2327198 - CVE-2024-50275 kernel: arm64/sve: Discard stale CPU state when handling SVE traps

Red Hat Enterprise Linux for Real Time 8

SRPM
kernel-rt-4.18.0-553.37.1.rt7.378.el8_10.src.rpm SHA-256: e24cfaee2d10581949618bceaa0235e69c22c446ac6ac0025fbb284c9c09f7f6
x86_64
kernel-rt-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 1346d0fe8364d74b063f94f2724ae7e2186b8aa8ff2f8bca8bde10dfb84eebc7
kernel-rt-core-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 58dbc54abe31a1c817458c1f41d635ec49175aaead0edf2e384283fe5ad7213e
kernel-rt-debug-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: ec78b3c6a7d50f832558fd22c4b3b51373092d36d253b86568f101c7dd4ef8d0
kernel-rt-debug-core-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: ec0e618b4cec038bba480181ae6ac29fb6ac4ba20f7f5f6a8fdf3aa23845c9c3
kernel-rt-debug-debuginfo-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 6abbeffaabfaab9fc5f2b508cc312fe0a45e59a626fb280ad8e3328c191e2077
kernel-rt-debug-devel-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 1636e7cbddba4061c0012e0da198cb03579556a5fbec8df5e19d089d8064a0fa
kernel-rt-debug-modules-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: ef035b0f7ce472ef58f09dc63a57537815e85488fee32b517d11bc6b06c60f08
kernel-rt-debug-modules-extra-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 25b24b51f3b24ea720be2d24f1ac1f56a74400b6b68d71f6bce1d0ed838d2a66
kernel-rt-debuginfo-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 99baef21d7cd0b47b211391cd3d14a3eae946d7447f09ebb69914f49a74813fd
kernel-rt-debuginfo-common-x86_64-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 26be009dc02e8e0cd5adcb44a6d28308a079dec8c8962492c4c2045e27a25212
kernel-rt-devel-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 583c6d51460ca772bbd26299b14ef189cd4082148b2197231722157986619ddf
kernel-rt-modules-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 97389cb547f490ef7465d724a99b2af554087df94a04594ad74cd1cd0310dc84
kernel-rt-modules-extra-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: bfc016a64d021892340a0a371ccd3b2c6f513ff0c46669e1882999a679f488ed

Red Hat Enterprise Linux for Real Time for NFV 8

SRPM
kernel-rt-4.18.0-553.37.1.rt7.378.el8_10.src.rpm SHA-256: e24cfaee2d10581949618bceaa0235e69c22c446ac6ac0025fbb284c9c09f7f6
x86_64
kernel-rt-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 1346d0fe8364d74b063f94f2724ae7e2186b8aa8ff2f8bca8bde10dfb84eebc7
kernel-rt-core-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 58dbc54abe31a1c817458c1f41d635ec49175aaead0edf2e384283fe5ad7213e
kernel-rt-debug-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: ec78b3c6a7d50f832558fd22c4b3b51373092d36d253b86568f101c7dd4ef8d0
kernel-rt-debug-core-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: ec0e618b4cec038bba480181ae6ac29fb6ac4ba20f7f5f6a8fdf3aa23845c9c3
kernel-rt-debug-debuginfo-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 6abbeffaabfaab9fc5f2b508cc312fe0a45e59a626fb280ad8e3328c191e2077
kernel-rt-debug-devel-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 1636e7cbddba4061c0012e0da198cb03579556a5fbec8df5e19d089d8064a0fa
kernel-rt-debug-kvm-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: c9c4520da52b5f090e06ff04338b6bebe0abb34a1ba22c72acf869560c5b23c7
kernel-rt-debug-modules-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: ef035b0f7ce472ef58f09dc63a57537815e85488fee32b517d11bc6b06c60f08
kernel-rt-debug-modules-extra-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 25b24b51f3b24ea720be2d24f1ac1f56a74400b6b68d71f6bce1d0ed838d2a66
kernel-rt-debuginfo-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 99baef21d7cd0b47b211391cd3d14a3eae946d7447f09ebb69914f49a74813fd
kernel-rt-debuginfo-common-x86_64-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 26be009dc02e8e0cd5adcb44a6d28308a079dec8c8962492c4c2045e27a25212
kernel-rt-devel-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 583c6d51460ca772bbd26299b14ef189cd4082148b2197231722157986619ddf
kernel-rt-kvm-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 0bdb6fd3a28b1190cc03020e7ecb1cc51bf5e310520b4b2810fab519e9700e0e
kernel-rt-modules-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: 97389cb547f490ef7465d724a99b2af554087df94a04594ad74cd1cd0310dc84
kernel-rt-modules-extra-4.18.0-553.37.1.rt7.378.el8_10.x86_64.rpm SHA-256: bfc016a64d021892340a0a371ccd3b2c6f513ff0c46669e1882999a679f488ed

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.