红帽产品勘误 RHSA-2025:8057 - Security Advisory
发布:
2025-05-21
已更新:
2025-05-21

RHSA-2025:8057 - Security Advisory

概述

Important: kernel-rt security update

类型/严重性

Security Advisory: Important

Red Hat Insights 补丁分析

识别并修复受此公告影响的系统。

查看受影响的系统

标题

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

描述

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

  • kernel: net/mlx5: Always stop health timer during driver removal (CVE-2024-40906)
  • kernel: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (CVE-2024-44970)
  • kernel: vsock: Keep the binding until socket destruction (CVE-2025-21756)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

解决方案

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

受影响的产品

  • Red Hat Enterprise Linux for Real Time 8 x86_64
  • Red Hat Enterprise Linux for Real Time for NFV 8 x86_64

修复

  • BZ - 2297490 - CVE-2024-40906 kernel: net/mlx5: Always stop health timer during driver removal
  • BZ - 2309801 - CVE-2024-44970 kernel: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink
  • BZ - 2348609 - CVE-2025-21756 kernel: vsock: Keep the binding until socket destruction

Red Hat Enterprise Linux for Real Time 8

SRPM
kernel-rt-4.18.0-553.53.1.rt7.394.el8_10.src.rpm SHA-256: 9efa6dddf91e790e9880e42824c6725d4247948d0411cb375c87bdf90445d17b
x86_64
kernel-rt-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 7d7180cf485d8e114947e6b53e86118002ce75df7637e60f7de4acddbf079fb1
kernel-rt-core-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 550e2542f92a742d9624af8fe9a550bb71ae3be25ee3bc92f204638c94163cf3
kernel-rt-debug-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 13537f46ce13b2841e07bb07703346289e20d4b1bdd67ecdbfe45c30d19eed53
kernel-rt-debug-core-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 38106f30e3ce56c09be418b363b4b889a86c51ce834eecfbbd302abe9ffa505a
kernel-rt-debug-debuginfo-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 7197eaad781c01daf05892f3f6cdb3cd0f7e0f4eebad13bfe4e36e4639d64846
kernel-rt-debug-devel-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 148539d4b9c619a56138111056b57dcb0e4be36f6660707040e81a00412bc56a
kernel-rt-debug-modules-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 22a544c2651955d23e7f253da9b4c30a30a4fcb6305bbb0e836f8be156bcf21a
kernel-rt-debug-modules-extra-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 3179101649b2a52d74fee8404d121c050d24537736f8d95d71dada8454b3e92b
kernel-rt-debuginfo-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 4e4ba4a628f31c386bf5403be0873b51f0972557352ccc8a8f7dc532174c54d5
kernel-rt-debuginfo-common-x86_64-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 390dd190e78fc3637bbdaa05589c99dc4aa47cd3425c990e1dcca12ec1eaf9ce
kernel-rt-devel-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 70714782d24acb70840133c709330a5a68e02d3eb5c73b0a865eb028e64304f5
kernel-rt-modules-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 235492a7c1791672403ef9690840aa3949ee88c6e5cb31ef8d14cbdef508f883
kernel-rt-modules-extra-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 0f1673b549dee768cf23428311ef7b021981c3b5a95d325e9852e8a7b616ae0e

Red Hat Enterprise Linux for Real Time for NFV 8

SRPM
kernel-rt-4.18.0-553.53.1.rt7.394.el8_10.src.rpm SHA-256: 9efa6dddf91e790e9880e42824c6725d4247948d0411cb375c87bdf90445d17b
x86_64
kernel-rt-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 7d7180cf485d8e114947e6b53e86118002ce75df7637e60f7de4acddbf079fb1
kernel-rt-core-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 550e2542f92a742d9624af8fe9a550bb71ae3be25ee3bc92f204638c94163cf3
kernel-rt-debug-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 13537f46ce13b2841e07bb07703346289e20d4b1bdd67ecdbfe45c30d19eed53
kernel-rt-debug-core-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 38106f30e3ce56c09be418b363b4b889a86c51ce834eecfbbd302abe9ffa505a
kernel-rt-debug-debuginfo-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 7197eaad781c01daf05892f3f6cdb3cd0f7e0f4eebad13bfe4e36e4639d64846
kernel-rt-debug-devel-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 148539d4b9c619a56138111056b57dcb0e4be36f6660707040e81a00412bc56a
kernel-rt-debug-kvm-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 649bb8790adfa6a0aa48e6e52fc4ce7110bc748081ba6be54261b6feac68f0c7
kernel-rt-debug-modules-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 22a544c2651955d23e7f253da9b4c30a30a4fcb6305bbb0e836f8be156bcf21a
kernel-rt-debug-modules-extra-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 3179101649b2a52d74fee8404d121c050d24537736f8d95d71dada8454b3e92b
kernel-rt-debuginfo-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 4e4ba4a628f31c386bf5403be0873b51f0972557352ccc8a8f7dc532174c54d5
kernel-rt-debuginfo-common-x86_64-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 390dd190e78fc3637bbdaa05589c99dc4aa47cd3425c990e1dcca12ec1eaf9ce
kernel-rt-devel-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 70714782d24acb70840133c709330a5a68e02d3eb5c73b0a865eb028e64304f5
kernel-rt-kvm-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 7392b71ed4463cc809f90940a7f612ae7a1eb10c56d8f99545fc876c9e328bf6
kernel-rt-modules-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 235492a7c1791672403ef9690840aa3949ee88c6e5cb31ef8d14cbdef508f883
kernel-rt-modules-extra-4.18.0-553.53.1.rt7.394.el8_10.x86_64.rpm SHA-256: 0f1673b549dee768cf23428311ef7b021981c3b5a95d325e9852e8a7b616ae0e

Red Hat 安全团队联络方式为 secalert@redhat.com。 更多联络细节请参考 https://access.redhat.com/security/team/contact/