Red Hat Product Errata RHSA-2025:9493 - Security Advisory
Issued:
2025-06-24
Updated:
2025-06-24

RHSA-2025:9493 - Security Advisory

Synopsis

Moderate: kernel-rt security update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

  • kernel: tipc: fix use-after-free Read in tipc_named_reinit (CVE-2022-49696)
  • kernel: mt76: fix use-after-free by removing a non-RCU wcid pointer (CVE-2022-49328)
  • kernel: ndisc: use RCU protection in ndisc_alloc_skb() (CVE-2025-21764)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64

Fixes

  • BZ - 2347851 - CVE-2022-49696 kernel: tipc: fix use-after-free Read in tipc_named_reinit
  • BZ - 2348217 - CVE-2022-49328 kernel: mt76: fix use-after-free by removing a non-RCU wcid pointer
  • BZ - 2348575 - CVE-2025-21764 kernel: ndisc: use RCU protection in ndisc_alloc_skb()

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0

SRPM
kernel-rt-5.14.0-70.134.1.rt21.206.el9_0.src.rpm SHA-256: d320e008cc9a1d1518aecca96fbc567376e3ac23f8b0312f968aa38e06b82f70
x86_64
kernel-rt-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 675f31e7079e1255b56db3c882cdebfb74d4af5961c1e14898040268dc29f43b
kernel-rt-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 675f31e7079e1255b56db3c882cdebfb74d4af5961c1e14898040268dc29f43b
kernel-rt-core-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 260a14f6d9d20eaaae6f7d829f13ad65ac0b41dca213e4c4bf9b0d664fb6c139
kernel-rt-core-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 260a14f6d9d20eaaae6f7d829f13ad65ac0b41dca213e4c4bf9b0d664fb6c139
kernel-rt-debug-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 07b2872239ad20a8b941914cd16ba691e91898f20bd895538998cbad38f8b6eb
kernel-rt-debug-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 07b2872239ad20a8b941914cd16ba691e91898f20bd895538998cbad38f8b6eb
kernel-rt-debug-core-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 43ae8c0880ec80d25f3bb99e2fd398b3b14d3772113164dc41925dc371cd0713
kernel-rt-debug-core-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 43ae8c0880ec80d25f3bb99e2fd398b3b14d3772113164dc41925dc371cd0713
kernel-rt-debug-debuginfo-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 5b9476361096a065c7e7b553f6e42950c96c4d52c87cb41baa3e3f7019c03644
kernel-rt-debug-debuginfo-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 5b9476361096a065c7e7b553f6e42950c96c4d52c87cb41baa3e3f7019c03644
kernel-rt-debug-devel-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 4bd9efc23e31ab8a1c280017250524aeba23f2f46250315c475a91a947930c3a
kernel-rt-debug-devel-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 4bd9efc23e31ab8a1c280017250524aeba23f2f46250315c475a91a947930c3a
kernel-rt-debug-kvm-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 408e5f64ae0b50b9ad68e40dc28a835d0fef26fe579fcd3008dd2e07ec01d280
kernel-rt-debug-modules-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: b7e9ac834b69a8b7f60ee52c4b7bd193c4d7c38bd09784b93f8446f07991c19a
kernel-rt-debug-modules-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: b7e9ac834b69a8b7f60ee52c4b7bd193c4d7c38bd09784b93f8446f07991c19a
kernel-rt-debug-modules-extra-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 1f4c7e3b4730e1cdc94a039fe36a6d6e6b58d4db909fc886298c8b2d20d17edc
kernel-rt-debug-modules-extra-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 1f4c7e3b4730e1cdc94a039fe36a6d6e6b58d4db909fc886298c8b2d20d17edc
kernel-rt-debuginfo-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 05106774762f5636b3344427a5a89eb7002b350ce59817d5f88331ca28850309
kernel-rt-debuginfo-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 05106774762f5636b3344427a5a89eb7002b350ce59817d5f88331ca28850309
kernel-rt-debuginfo-common-x86_64-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 90bbacf45e72922428cf3cbafd0cd57d0634b8f27f8244146c65136cc029ad06
kernel-rt-debuginfo-common-x86_64-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 90bbacf45e72922428cf3cbafd0cd57d0634b8f27f8244146c65136cc029ad06
kernel-rt-devel-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: f3bf42c6d883ede5b18edbda0e9be44e9a5345804796a5b9749be26fb7eb7ac2
kernel-rt-devel-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: f3bf42c6d883ede5b18edbda0e9be44e9a5345804796a5b9749be26fb7eb7ac2
kernel-rt-kvm-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: 760bc2d3c2b773c3d0a090c30b7420fd9f90df721eb1528b4a2282086eb6d844
kernel-rt-modules-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: cfe5d4e664a71f22d4b4bc43448ee009067b3b81e5f6d5846f7c85fe67637080
kernel-rt-modules-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: cfe5d4e664a71f22d4b4bc43448ee009067b3b81e5f6d5846f7c85fe67637080
kernel-rt-modules-extra-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: fd7549d48f0e0d43c6c31ab55f09da0d5cf4f00cfe522f3db1d747ac919915d5
kernel-rt-modules-extra-5.14.0-70.134.1.rt21.206.el9_0.x86_64.rpm SHA-256: fd7549d48f0e0d43c6c31ab55f09da0d5cf4f00cfe522f3db1d747ac919915d5

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.