Security
Headlines
HeadlinesLatestCVEs

Headline

Red Hat Security Advisory 2022-7279-01

Red Hat Security Advisory 2022-7279-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include privilege escalation and use-after-free vulnerabilities.

Packet Storm
#vulnerability#linux#red_hat#i2p#sap

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

====================================================================
Red Hat Security Advisory

Synopsis: Important: kernel security and bug fix update
Advisory ID: RHSA-2022:7279-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2022:7279
Issue date: 2022-11-01
CVE Names: CVE-2022-2588 CVE-2022-21123 CVE-2022-21125
CVE-2022-21166
====================================================================

  1. Summary:

An update for kernel is now available for Red Hat Enterprise Linux 8.2
Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.2
Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update
Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

  1. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS AUS (v. 8.2) - aarch64, noarch, ppc64le, s390x, x86_64
Red Hat Enterprise Linux BaseOS E4S (v. 8.2) - aarch64, noarch, ppc64le, s390x, x86_64
Red Hat Enterprise Linux BaseOS TUS (v. 8.2) - aarch64, noarch, ppc64le, s390x, x86_64

  1. Description:

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

Security Fix(es):

  • kernel: a use-after-free in cls_route filter implementation may lead to
    privilege escalation (CVE-2022-2588)

  • hw: cpu: Incomplete cleanup of multi-core shared buffers (aka SBDR)
    (CVE-2022-21123)

  • hw: cpu: Incomplete cleanup of microarchitectural fill buffers (aka SBDS)
    (CVE-2022-21125)

  • hw: cpu: Incomplete cleanup in specific special register write operations
    (aka DRPW) (CVE-2022-21166)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

Bug Fix(es):

  • RHEL8.6[64TB/240c Denali]:" vmcore failed, _exitcode:139" error observed
    while capturing vmcore during fadump after memory remove. incomplete vmcore
    is captured. (BZ#2107491)
  1. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

  1. Bugs fixed (https://bugzilla.redhat.com/):

2090237 - CVE-2022-21123 hw: cpu: Incomplete cleanup of multi-core shared buffers (aka SBDR)
2090240 - CVE-2022-21125 hw: cpu: Incomplete cleanup of microarchitectural fill buffers (aka SBDS)
2090241 - CVE-2022-21166 hw: cpu: Incomplete cleanup in specific special register write operations (aka DRPW)
2114849 - CVE-2022-2588 kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation

  1. Package List:

Red Hat Enterprise Linux BaseOS AUS (v. 8.2):

Source:
kernel-4.18.0-193.93.1.el8_2.src.rpm

aarch64:
bpftool-4.18.0-193.93.1.el8_2.aarch64.rpm
bpftool-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-core-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-cross-headers-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-core-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-devel-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-modules-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-modules-extra-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debuginfo-common-aarch64-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-devel-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-headers-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-modules-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-modules-extra-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-tools-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-tools-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-tools-libs-4.18.0-193.93.1.el8_2.aarch64.rpm
perf-4.18.0-193.93.1.el8_2.aarch64.rpm
perf-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
python3-perf-4.18.0-193.93.1.el8_2.aarch64.rpm
python3-perf-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm

noarch:
kernel-abi-whitelists-4.18.0-193.93.1.el8_2.noarch.rpm
kernel-doc-4.18.0-193.93.1.el8_2.noarch.rpm

ppc64le:
bpftool-4.18.0-193.93.1.el8_2.ppc64le.rpm
bpftool-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-core-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-cross-headers-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-core-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-devel-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-modules-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-modules-extra-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debuginfo-common-ppc64le-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-devel-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-headers-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-modules-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-modules-extra-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-tools-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-tools-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-tools-libs-4.18.0-193.93.1.el8_2.ppc64le.rpm
perf-4.18.0-193.93.1.el8_2.ppc64le.rpm
perf-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
python3-perf-4.18.0-193.93.1.el8_2.ppc64le.rpm
python3-perf-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm

s390x:
bpftool-4.18.0-193.93.1.el8_2.s390x.rpm
bpftool-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-core-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-cross-headers-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-core-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-devel-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-modules-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-modules-extra-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debuginfo-common-s390x-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-devel-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-headers-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-modules-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-modules-extra-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-tools-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-tools-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-core-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-devel-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-modules-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-modules-extra-4.18.0-193.93.1.el8_2.s390x.rpm
perf-4.18.0-193.93.1.el8_2.s390x.rpm
perf-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
python3-perf-4.18.0-193.93.1.el8_2.s390x.rpm
python3-perf-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm

x86_64:
bpftool-4.18.0-193.93.1.el8_2.x86_64.rpm
bpftool-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-core-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-cross-headers-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-core-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-devel-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-modules-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-modules-extra-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debuginfo-common-x86_64-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-devel-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-headers-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-modules-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-modules-extra-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-tools-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-tools-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-tools-libs-4.18.0-193.93.1.el8_2.x86_64.rpm
perf-4.18.0-193.93.1.el8_2.x86_64.rpm
perf-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
python3-perf-4.18.0-193.93.1.el8_2.x86_64.rpm
python3-perf-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm

Red Hat Enterprise Linux BaseOS E4S (v. 8.2):

Source:
kernel-4.18.0-193.93.1.el8_2.src.rpm

aarch64:
bpftool-4.18.0-193.93.1.el8_2.aarch64.rpm
bpftool-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-core-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-cross-headers-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-core-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-devel-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-modules-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-modules-extra-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debuginfo-common-aarch64-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-devel-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-headers-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-modules-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-modules-extra-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-tools-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-tools-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-tools-libs-4.18.0-193.93.1.el8_2.aarch64.rpm
perf-4.18.0-193.93.1.el8_2.aarch64.rpm
perf-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
python3-perf-4.18.0-193.93.1.el8_2.aarch64.rpm
python3-perf-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm

noarch:
kernel-abi-whitelists-4.18.0-193.93.1.el8_2.noarch.rpm
kernel-doc-4.18.0-193.93.1.el8_2.noarch.rpm

ppc64le:
bpftool-4.18.0-193.93.1.el8_2.ppc64le.rpm
bpftool-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-core-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-cross-headers-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-core-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-devel-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-modules-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-modules-extra-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debuginfo-common-ppc64le-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-devel-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-headers-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-modules-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-modules-extra-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-tools-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-tools-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-tools-libs-4.18.0-193.93.1.el8_2.ppc64le.rpm
perf-4.18.0-193.93.1.el8_2.ppc64le.rpm
perf-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
python3-perf-4.18.0-193.93.1.el8_2.ppc64le.rpm
python3-perf-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm

s390x:
bpftool-4.18.0-193.93.1.el8_2.s390x.rpm
bpftool-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-core-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-cross-headers-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-core-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-devel-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-modules-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-modules-extra-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debuginfo-common-s390x-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-devel-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-headers-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-modules-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-modules-extra-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-tools-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-tools-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-core-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-devel-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-modules-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-modules-extra-4.18.0-193.93.1.el8_2.s390x.rpm
perf-4.18.0-193.93.1.el8_2.s390x.rpm
perf-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
python3-perf-4.18.0-193.93.1.el8_2.s390x.rpm
python3-perf-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm

x86_64:
bpftool-4.18.0-193.93.1.el8_2.x86_64.rpm
bpftool-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-core-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-cross-headers-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-core-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-devel-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-modules-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-modules-extra-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debuginfo-common-x86_64-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-devel-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-headers-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-modules-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-modules-extra-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-tools-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-tools-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-tools-libs-4.18.0-193.93.1.el8_2.x86_64.rpm
perf-4.18.0-193.93.1.el8_2.x86_64.rpm
perf-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
python3-perf-4.18.0-193.93.1.el8_2.x86_64.rpm
python3-perf-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm

Red Hat Enterprise Linux BaseOS TUS (v. 8.2):

Source:
kernel-4.18.0-193.93.1.el8_2.src.rpm

aarch64:
bpftool-4.18.0-193.93.1.el8_2.aarch64.rpm
bpftool-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-core-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-cross-headers-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-core-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-devel-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-modules-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debug-modules-extra-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-debuginfo-common-aarch64-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-devel-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-headers-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-modules-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-modules-extra-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-tools-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-tools-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
kernel-tools-libs-4.18.0-193.93.1.el8_2.aarch64.rpm
perf-4.18.0-193.93.1.el8_2.aarch64.rpm
perf-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm
python3-perf-4.18.0-193.93.1.el8_2.aarch64.rpm
python3-perf-debuginfo-4.18.0-193.93.1.el8_2.aarch64.rpm

noarch:
kernel-abi-whitelists-4.18.0-193.93.1.el8_2.noarch.rpm
kernel-doc-4.18.0-193.93.1.el8_2.noarch.rpm

ppc64le:
bpftool-4.18.0-193.93.1.el8_2.ppc64le.rpm
bpftool-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-core-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-cross-headers-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-core-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-devel-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-modules-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debug-modules-extra-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-debuginfo-common-ppc64le-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-devel-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-headers-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-modules-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-modules-extra-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-tools-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-tools-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
kernel-tools-libs-4.18.0-193.93.1.el8_2.ppc64le.rpm
perf-4.18.0-193.93.1.el8_2.ppc64le.rpm
perf-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm
python3-perf-4.18.0-193.93.1.el8_2.ppc64le.rpm
python3-perf-debuginfo-4.18.0-193.93.1.el8_2.ppc64le.rpm

s390x:
bpftool-4.18.0-193.93.1.el8_2.s390x.rpm
bpftool-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-core-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-cross-headers-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-core-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-devel-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-modules-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debug-modules-extra-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-debuginfo-common-s390x-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-devel-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-headers-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-modules-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-modules-extra-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-tools-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-tools-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-core-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-devel-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-modules-4.18.0-193.93.1.el8_2.s390x.rpm
kernel-zfcpdump-modules-extra-4.18.0-193.93.1.el8_2.s390x.rpm
perf-4.18.0-193.93.1.el8_2.s390x.rpm
perf-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm
python3-perf-4.18.0-193.93.1.el8_2.s390x.rpm
python3-perf-debuginfo-4.18.0-193.93.1.el8_2.s390x.rpm

x86_64:
bpftool-4.18.0-193.93.1.el8_2.x86_64.rpm
bpftool-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-core-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-cross-headers-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-core-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-devel-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-modules-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debug-modules-extra-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-debuginfo-common-x86_64-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-devel-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-headers-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-modules-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-modules-extra-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-tools-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-tools-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
kernel-tools-libs-4.18.0-193.93.1.el8_2.x86_64.rpm
perf-4.18.0-193.93.1.el8_2.x86_64.rpm
perf-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm
python3-perf-4.18.0-193.93.1.el8_2.x86_64.rpm
python3-perf-debuginfo-4.18.0-193.93.1.el8_2.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

  1. References:

https://access.redhat.com/security/cve/CVE-2022-2588
https://access.redhat.com/security/cve/CVE-2022-21123
https://access.redhat.com/security/cve/CVE-2022-21125
https://access.redhat.com/security/cve/CVE-2022-21166
https://access.redhat.com/security/updates/classification/#important

  1. Contact:

The Red Hat security contact is [email protected]. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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k0bc
-----END PGP SIGNATURE-----

RHSA-announce mailing list
[email protected]
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Related news

CVE-2023-33953: Security Bulletins

gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exceptional cases/ Three vectors were found that allow the following DOS attacks: - Unbounded memory buffering in the HPACK parser - Unbounded CPU consumption in the HPACK parser The unbounded CPU consumption is down to a copy that occurred per-input-block in the parser, and because that could be unbounded due to the memory copy bug we end up with an O(n^2) parsing loop, with n selected by the client. The unbounded memory buffering bugs: - The header size limit check was behind the string reading code, so we needed to first buffer up to a 4 gigabyte string before rejecting it as longer than 8 or 16kb. - HPACK varints have an encoding quirk whereby an infinite number of 0’s can be added at the start of an integer. gRPC’s hpack parser needed to read all of them before concluding a parse. - gRPC’s metadata overflow check was performed per frame, so ...

CVE-2023-25536: DSA-2023-035: Dell PowerScale OneFS Security Updates for Multiple Security Vulnerabilities

Dell PowerScale OneFS 9.4.0.x contains exposure of sensitive information to an unauthorized actor. A malicious authenticated local user could potentially exploit this vulnerability in certificate management, leading to a potential system takeover.

RHSA-2022:8973: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-1158: kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region * CVE-2022-2639: kernel: openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size() * CVE-2022-2959: kernel: watch queue race condition can lead to privilege escalation * CVE-2022-21123: hw: cpu: incomplete clean-up of multi-co...

Red Hat Security Advisory 2022-7874-01

Red Hat Security Advisory 2022-7874-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.8.53. Issues addressed include a code execution vulnerability.

Red Hat Security Advisory 2022-7933-01

Red Hat Security Advisory 2022-7933-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include code execution, denial of service, double free, information leakage, null pointer, out of bounds access, out of bounds write, privilege escalation, and use-after-free vulnerabilities.

RHSA-2022:7885: Red Hat Security Advisory: kpatch-patch security update

An update for kpatch-patch is now available for Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation

Red Hat Security Advisory 2022-7216-01

Red Hat Security Advisory 2022-7216-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.9.51. Issues addressed include code execution and memory leak vulnerabilities.

Red Hat Security Advisory 2022-7337-01

Red Hat Security Advisory 2022-7337-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include code execution, privilege escalation, and use-after-free vulnerabilities.

Red Hat Security Advisory 2022-7211-01

Red Hat Security Advisory 2022-7211-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.10.39. Issues addressed include a code execution vulnerability.

RHSA-2022:7211: Red Hat Security Advisory: OpenShift Container Platform 4.10.39 bug fix and security update

Red Hat OpenShift Container Platform release 4.10.39 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-26945: go-getter: command injection vulnerability * CVE-2022-30321: go-getter: unsafe download (issue 1 of 3) * CVE-2022-30322: go-getter: unsafe download (issue 2 of 3) * CVE-2022-30323: ...

Red Hat Security Advisory 2022-7137-01

Red Hat Security Advisory 2022-7137-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include privilege escalation and use-after-free vulnerabilities.

Red Hat Security Advisory 2022-6991-01

Red Hat Security Advisory 2022-6991-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include information leakage, privilege escalation, and use-after-free vulnerabilities.

Red Hat Security Advisory 2022-6991-01

Red Hat Security Advisory 2022-6991-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include information leakage, privilege escalation, and use-after-free vulnerabilities.

Red Hat Security Advisory 2022-6991-01

Red Hat Security Advisory 2022-6991-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include information leakage, privilege escalation, and use-after-free vulnerabilities.

Red Hat Security Advisory 2022-6991-01

Red Hat Security Advisory 2022-6991-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include information leakage, privilege escalation, and use-after-free vulnerabilities.

Red Hat Security Advisory 2022-6983-01

Red Hat Security Advisory 2022-6983-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include information leakage, privilege escalation, and use-after-free vulnerabilities.

RHSA-2022:6983: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-45485: kernel: information leak in the IPv6 implementation * CVE-2021-45486: kernel: information leak in the IPv4 implementation * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation * CVE-2022-21123: hw: cpu: Incomplete cleanup of multi-core shared buffers (aka SBDR) * CV...

RHSA-2022:6991: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-45485: kernel: information leak in the IPv6 implementation * CVE-2021-45486: kernel: information leak in the IPv4 implementation * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation * CVE-2022-21123: hw: cpu: Incomplete cleanup of multi-core shared buffers (aka SBDR) *...

RHSA-2022:6978: Red Hat Security Advisory: kpatch-patch security update

An update is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation

Red Hat Security Advisory 2022-6872-01

Red Hat Security Advisory 2022-6872-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include privilege escalation and use-after-free vulnerabilities.

RHSA-2022:6875: Red Hat Security Advisory: kpatch-patch security update

An update is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation

Red Hat Security Advisory 2022-6560-01

Red Hat Security Advisory 2022-6560-01 - An update is now available for OpenShift Logging 5.3.12 Red Hat Product Security has rated this update as having a security impact of Moderate.

Red Hat Security Advisory 2022-6560-01

Red Hat Security Advisory 2022-6560-01 - An update is now available for OpenShift Logging 5.3.12 Red Hat Product Security has rated this update as having a security impact of Moderate.

Red Hat Security Advisory 2022-6560-01

Red Hat Security Advisory 2022-6560-01 - An update is now available for OpenShift Logging 5.3.12 Red Hat Product Security has rated this update as having a security impact of Moderate.

RHSA-2022:6560: Red Hat Security Advisory: Openshift Logging Bug Fix Release and Security Update (5.3.12)

An update is now available for OpenShift Logging 5.3.12 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-30631: golang: compress/gzip: stack exhaustion in Reader.Read

RHSA-2022:6560: Red Hat Security Advisory: Openshift Logging Bug Fix Release and Security Update (5.3.12)

An update is now available for OpenShift Logging 5.3.12 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-30631: golang: compress/gzip: stack exhaustion in Reader.Read

RHSA-2022:6560: Red Hat Security Advisory: Openshift Logging Bug Fix Release and Security Update (5.3.12)

An update is now available for OpenShift Logging 5.3.12 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-30631: golang: compress/gzip: stack exhaustion in Reader.Read

RHSA-2022:6536: Red Hat Security Advisory: OpenShift Container Platform 4.11.5 bug fix and security update

Red Hat OpenShift Container Platform release 4.11.5 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-3121: gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index validation

RHSA-2022:6536: Red Hat Security Advisory: OpenShift Container Platform 4.11.5 bug fix and security update

Red Hat OpenShift Container Platform release 4.11.5 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-3121: gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index validation

RHSA-2022:6536: Red Hat Security Advisory: OpenShift Container Platform 4.11.5 bug fix and security update

Red Hat OpenShift Container Platform release 4.11.5 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-3121: gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index validation

Red Hat Security Advisory 2022-6537-01

Red Hat Security Advisory 2022-6537-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.11.5. Issues addressed include denial of service and out of bounds read vulnerabilities.

Red Hat Security Advisory 2022-6537-01

Red Hat Security Advisory 2022-6537-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.11.5. Issues addressed include denial of service and out of bounds read vulnerabilities.

Red Hat Security Advisory 2022-6537-01

Red Hat Security Advisory 2022-6537-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.11.5. Issues addressed include denial of service and out of bounds read vulnerabilities.

RHSA-2022:6537: Red Hat Security Advisory: Moderate:OpenShift Container Platform 4.11.5 security and extras update

Red Hat OpenShift Container Platform release 4.11.5 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-38561: golang: out-of-bounds read in golang.org/x/text/language leads to DoS * CVE-2022-21698: prometheus/client_golang: Denial of service using InstrumentHandlerCounter

RHSA-2022:6537: Red Hat Security Advisory: Moderate:OpenShift Container Platform 4.11.5 security and extras update

Red Hat OpenShift Container Platform release 4.11.5 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-38561: golang: out-of-bounds read in golang.org/x/text/language leads to DoS * CVE-2022-21698: prometheus/client_golang: Denial of service using InstrumentHandlerCounter

RHSA-2022:6537: Red Hat Security Advisory: Moderate:OpenShift Container Platform 4.11.5 security and extras update

Red Hat OpenShift Container Platform release 4.11.5 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-38561: golang: out-of-bounds read in golang.org/x/text/language leads to DoS * CVE-2022-21698: prometheus/client_golang: Denial of service using InstrumentHandlerCounter

RHSA-2022:6437: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-21123: hw: cpu: Incomplete cleanup of multi-core shared buffers (aka SBDR) * CVE-2022-21125: hw: cpu: Incomplete cleanup of microarchitectural fill buffers (aka SBDS) * CVE-2022-21166: hw: cpu: Incomplete cleanup in specific special register write operations (aka DRPW)

RHSA-2022:6437: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-21123: hw: cpu: Incomplete cleanup of multi-core shared buffers (aka SBDR) * CVE-2022-21125: hw: cpu: Incomplete cleanup of microarchitectural fill buffers (aka SBDS) * CVE-2022-21166: hw: cpu: Incomplete cleanup in specific special register write operations (aka DRPW)

RHSA-2022:6437: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-21123: hw: cpu: Incomplete cleanup of multi-core shared buffers (aka SBDR) * CVE-2022-21125: hw: cpu: Incomplete cleanup of microarchitectural fill buffers (aka SBDS) * CVE-2022-21166: hw: cpu: Incomplete cleanup in specific special register write operations (aka DRPW)

RHSA-2022:5939: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-21123: hw: cpu: Incomplete cleanup of multi-core shared buffers (aka SBDR) * CVE-2022-21125: hw: cpu: Incomplete cleanup of microarchitectural fill buffers (aka SBDS) * CVE-2022-21166: hw: cpu: Incomplete cleanup in specific special register write operations (aka DRPW)

RHSA-2022:5939: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-21123: hw: cpu: Incomplete cleanup of multi-core shared buffers (aka SBDR) * CVE-2022-21125: hw: cpu: Incomplete cleanup of microarchitectural fill buffers (aka SBDS) * CVE-2022-21166: hw: cpu: Incomplete cleanup in specific special register write operations (aka DRPW)

RHSA-2022:5939: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-21123: hw: cpu: Incomplete cleanup of multi-core shared buffers (aka SBDR) * CVE-2022-21125: hw: cpu: Incomplete cleanup of microarchitectural fill buffers (aka SBDS) * CVE-2022-21166: hw: cpu: Incomplete cleanup in specific special register write operations (aka DRPW)

Ubuntu Security Notice USN-5513-1

Ubuntu Security Notice 5513-1 - Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could use this issue to execute arbitrary code. Likang Luo discovered that a race condition existed in the Bluetooth subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Ubuntu Security Notice USN-5513-1

Ubuntu Security Notice 5513-1 - Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could use this issue to execute arbitrary code. Likang Luo discovered that a race condition existed in the Bluetooth subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Ubuntu Security Notice USN-5513-1

Ubuntu Security Notice 5513-1 - Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could use this issue to execute arbitrary code. Likang Luo discovered that a race condition existed in the Bluetooth subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

CVE-2022-21166: INTEL-SA-00615

Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2022-21166: INTEL-SA-00615

Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2022-21166: INTEL-SA-00615

Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Packet Storm: Latest News

Acronis Cyber Protect/Backup Remote Code Execution