Security
Headlines
HeadlinesLatestCVEs

Headline

RHSA-2022:7337: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

Related CVEs:

  • CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation
  • CVE-2022-23816: hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions
  • CVE-2022-23825: hw: cpu: AMD: Branch Type Confusion (non-retbleed)
  • CVE-2022-26373: hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions
  • CVE-2022-29900: hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions
  • CVE-2022-29901: hw: cpu: Intel: RetBleed Arbitrary Speculative Code Execution with Return Instructions
Red Hat Security Data
#vulnerability#linux#red_hat#intel#amd#ibm

Synopsis

Important: kernel security and bug fix update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • a use-after-free in cls_route filter implementation may lead to privilege escalation (CVE-2022-2588)
  • RetBleed Arbitrary Speculative Code Execution with Return Instructions (CVE-2022-23816, CVE-2022-29900)
  • Branch Type Confusion (non-retbleed) (CVE-2022-23825)
  • Intel: Post-barrier Return Stack Buffer Predictions (CVE-2022-26373)
  • Intel: RetBleed Arbitrary Speculative Code Execution with Return Instructions (CVE-2022-29901)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • lpfc panics in lpfc_els_free_iocb() during port recovery (BZ#1969988)
  • mlx5 reports error messages during shutdown then panic with mce (BZ#2077711)
  • Kernel panic due to hard lockup caused by deadlock between tasklist_lock and k_itimer->it_lock (BZ#2115147)
  • fix excess double put in nfs_prime_dcache (BZ#2117856)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux Server 7 x86_64
  • Red Hat Enterprise Linux Workstation 7 x86_64
  • Red Hat Enterprise Linux Desktop 7 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 7 s390x
  • Red Hat Enterprise Linux for Power, big endian 7 ppc64
  • Red Hat Enterprise Linux for Scientific Computing 7 x86_64
  • Red Hat Enterprise Linux for Power, little endian 7 ppc64le
  • Red Hat Virtualization Host 4 for RHEL 7 x86_64

Fixes

  • BZ - 2090226 - CVE-2022-23816 CVE-2022-29900 hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions
  • BZ - 2103148 - CVE-2022-29901 hw: cpu: Intel: RetBleed Arbitrary Speculative Code Execution with Return Instructions
  • BZ - 2103153 - CVE-2022-23825 hw: cpu: AMD: Branch Type Confusion (non-retbleed)
  • BZ - 2114849 - CVE-2022-2588 kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation
  • BZ - 2115065 - CVE-2022-26373 hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions

CVEs

  • CVE-2022-2588
  • CVE-2022-23816
  • CVE-2022-23825
  • CVE-2022-26373
  • CVE-2022-29900
  • CVE-2022-29901

References

  • https://access.redhat.com/security/updates/classification/#important
  • https://access.redhat.com/solutions/6971358

Red Hat Enterprise Linux Server 7

SRPM

kernel-3.10.0-1160.80.1.el7.src.rpm

SHA-256: 7d1fddeac3c5819a4681d2e098810a0e0b606b915d4824240abbdaf60bf18c71

x86_64

bpftool-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 65045b10dcc728bfacd715913bda91f672fcfe3549f1c3fa8ac918b17cddf5bb

bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b016335d9753972db532d65f55a438dbe3ef8e64bd00d98284903fdb34ece82d

bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b016335d9753972db532d65f55a438dbe3ef8e64bd00d98284903fdb34ece82d

kernel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 68be064934aa146de78b742da6cd536609aa828831424d975c573b9ab7a37e90

kernel-abi-whitelists-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 28635e4fd5cb45e51431aa562041e75f62ae8b70733872c7ce85fc33f05de20b

kernel-debug-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: a27207ef2e7e2226701ce7509342561c32eadebc274f456b554f1965d976c13c

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 3b430c8dfab63d830c345d9583c3f177052dc785e640d5d2c3442ff764825442

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 3b430c8dfab63d830c345d9583c3f177052dc785e640d5d2c3442ff764825442

kernel-debug-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 100ca212d053c0359377c3f744d81a8a05aed161d19a6292d9beeed267415664

kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 54b25c5ff89df6f444434e7907b3eb45fd0111ae8d36ccdaee38cfb8263ddeb8

kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 54b25c5ff89df6f444434e7907b3eb45fd0111ae8d36ccdaee38cfb8263ddeb8

kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 43d6b2aefe3c63ed04f4086df0560a1c77db4f3452a3332a9daed8c9f6a27400

kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 43d6b2aefe3c63ed04f4086df0560a1c77db4f3452a3332a9daed8c9f6a27400

kernel-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b1c8c88822362ffd692d52ed8e1763c5c07011133c0528b88869b56f3a0f47af

kernel-doc-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 61026d9b06631d6d121cec1d1a1dfd064a3a0ea086d522b2f9c8bac4842a4088

kernel-headers-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 067633289b678eb8b1d49e890ced6bc2dbf8f3d3b964a7fbd0412be21a621b9c

kernel-tools-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: deebff9945a6e7aad34d0cad01528b1d9473a9d3c6b25058344c4c1d17101060

kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: cc5d888c9dc0befa5768e557ad92d85e4677ac06000c75b83038854750e1eb34

kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: cc5d888c9dc0befa5768e557ad92d85e4677ac06000c75b83038854750e1eb34

kernel-tools-libs-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 65f65ba26fa92a8c6ffd7a499149e993bb17c68d4c12c0b9955afbe4075149cf

kernel-tools-libs-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 8a08e82ef53cdbd3d9e212b3028899cd641e125aeacb31dc76a21d41dab2e68a

perf-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 40491ed88f8372369cf6e02449aef537ee79953dd87f37b605605ea153c7fa19

perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 2a7c8b7ebe10b4ab2eac34b57516e93710fbb0a1f09620d6c27a6915f15fd72d

perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 2a7c8b7ebe10b4ab2eac34b57516e93710fbb0a1f09620d6c27a6915f15fd72d

python-perf-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 47a07a9a0667b772af1ca7b3a81e3a2b0f96fab21ed0e4bf7eddf6318a1cedd8

python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 19d4cae028dc4f6e7db5423c3a4e2f69aebd0b68304590da639dca298a94a913

python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 19d4cae028dc4f6e7db5423c3a4e2f69aebd0b68304590da639dca298a94a913

Red Hat Enterprise Linux Workstation 7

SRPM

kernel-3.10.0-1160.80.1.el7.src.rpm

SHA-256: 7d1fddeac3c5819a4681d2e098810a0e0b606b915d4824240abbdaf60bf18c71

x86_64

bpftool-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 65045b10dcc728bfacd715913bda91f672fcfe3549f1c3fa8ac918b17cddf5bb

bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b016335d9753972db532d65f55a438dbe3ef8e64bd00d98284903fdb34ece82d

bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b016335d9753972db532d65f55a438dbe3ef8e64bd00d98284903fdb34ece82d

kernel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 68be064934aa146de78b742da6cd536609aa828831424d975c573b9ab7a37e90

kernel-abi-whitelists-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 28635e4fd5cb45e51431aa562041e75f62ae8b70733872c7ce85fc33f05de20b

kernel-debug-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: a27207ef2e7e2226701ce7509342561c32eadebc274f456b554f1965d976c13c

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 3b430c8dfab63d830c345d9583c3f177052dc785e640d5d2c3442ff764825442

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 3b430c8dfab63d830c345d9583c3f177052dc785e640d5d2c3442ff764825442

kernel-debug-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 100ca212d053c0359377c3f744d81a8a05aed161d19a6292d9beeed267415664

kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 54b25c5ff89df6f444434e7907b3eb45fd0111ae8d36ccdaee38cfb8263ddeb8

kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 54b25c5ff89df6f444434e7907b3eb45fd0111ae8d36ccdaee38cfb8263ddeb8

kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 43d6b2aefe3c63ed04f4086df0560a1c77db4f3452a3332a9daed8c9f6a27400

kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 43d6b2aefe3c63ed04f4086df0560a1c77db4f3452a3332a9daed8c9f6a27400

kernel-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b1c8c88822362ffd692d52ed8e1763c5c07011133c0528b88869b56f3a0f47af

kernel-doc-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 61026d9b06631d6d121cec1d1a1dfd064a3a0ea086d522b2f9c8bac4842a4088

kernel-headers-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 067633289b678eb8b1d49e890ced6bc2dbf8f3d3b964a7fbd0412be21a621b9c

kernel-tools-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: deebff9945a6e7aad34d0cad01528b1d9473a9d3c6b25058344c4c1d17101060

kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: cc5d888c9dc0befa5768e557ad92d85e4677ac06000c75b83038854750e1eb34

kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: cc5d888c9dc0befa5768e557ad92d85e4677ac06000c75b83038854750e1eb34

kernel-tools-libs-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 65f65ba26fa92a8c6ffd7a499149e993bb17c68d4c12c0b9955afbe4075149cf

kernel-tools-libs-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 8a08e82ef53cdbd3d9e212b3028899cd641e125aeacb31dc76a21d41dab2e68a

perf-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 40491ed88f8372369cf6e02449aef537ee79953dd87f37b605605ea153c7fa19

perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 2a7c8b7ebe10b4ab2eac34b57516e93710fbb0a1f09620d6c27a6915f15fd72d

perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 2a7c8b7ebe10b4ab2eac34b57516e93710fbb0a1f09620d6c27a6915f15fd72d

python-perf-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 47a07a9a0667b772af1ca7b3a81e3a2b0f96fab21ed0e4bf7eddf6318a1cedd8

python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 19d4cae028dc4f6e7db5423c3a4e2f69aebd0b68304590da639dca298a94a913

python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 19d4cae028dc4f6e7db5423c3a4e2f69aebd0b68304590da639dca298a94a913

Red Hat Enterprise Linux Desktop 7

SRPM

kernel-3.10.0-1160.80.1.el7.src.rpm

SHA-256: 7d1fddeac3c5819a4681d2e098810a0e0b606b915d4824240abbdaf60bf18c71

x86_64

bpftool-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 65045b10dcc728bfacd715913bda91f672fcfe3549f1c3fa8ac918b17cddf5bb

bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b016335d9753972db532d65f55a438dbe3ef8e64bd00d98284903fdb34ece82d

bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b016335d9753972db532d65f55a438dbe3ef8e64bd00d98284903fdb34ece82d

kernel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 68be064934aa146de78b742da6cd536609aa828831424d975c573b9ab7a37e90

kernel-abi-whitelists-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 28635e4fd5cb45e51431aa562041e75f62ae8b70733872c7ce85fc33f05de20b

kernel-debug-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: a27207ef2e7e2226701ce7509342561c32eadebc274f456b554f1965d976c13c

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 3b430c8dfab63d830c345d9583c3f177052dc785e640d5d2c3442ff764825442

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 3b430c8dfab63d830c345d9583c3f177052dc785e640d5d2c3442ff764825442

kernel-debug-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 100ca212d053c0359377c3f744d81a8a05aed161d19a6292d9beeed267415664

kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 54b25c5ff89df6f444434e7907b3eb45fd0111ae8d36ccdaee38cfb8263ddeb8

kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 54b25c5ff89df6f444434e7907b3eb45fd0111ae8d36ccdaee38cfb8263ddeb8

kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 43d6b2aefe3c63ed04f4086df0560a1c77db4f3452a3332a9daed8c9f6a27400

kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 43d6b2aefe3c63ed04f4086df0560a1c77db4f3452a3332a9daed8c9f6a27400

kernel-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b1c8c88822362ffd692d52ed8e1763c5c07011133c0528b88869b56f3a0f47af

kernel-doc-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 61026d9b06631d6d121cec1d1a1dfd064a3a0ea086d522b2f9c8bac4842a4088

kernel-headers-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 067633289b678eb8b1d49e890ced6bc2dbf8f3d3b964a7fbd0412be21a621b9c

kernel-tools-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: deebff9945a6e7aad34d0cad01528b1d9473a9d3c6b25058344c4c1d17101060

kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: cc5d888c9dc0befa5768e557ad92d85e4677ac06000c75b83038854750e1eb34

kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: cc5d888c9dc0befa5768e557ad92d85e4677ac06000c75b83038854750e1eb34

kernel-tools-libs-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 65f65ba26fa92a8c6ffd7a499149e993bb17c68d4c12c0b9955afbe4075149cf

kernel-tools-libs-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 8a08e82ef53cdbd3d9e212b3028899cd641e125aeacb31dc76a21d41dab2e68a

perf-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 40491ed88f8372369cf6e02449aef537ee79953dd87f37b605605ea153c7fa19

perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 2a7c8b7ebe10b4ab2eac34b57516e93710fbb0a1f09620d6c27a6915f15fd72d

perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 2a7c8b7ebe10b4ab2eac34b57516e93710fbb0a1f09620d6c27a6915f15fd72d

python-perf-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 47a07a9a0667b772af1ca7b3a81e3a2b0f96fab21ed0e4bf7eddf6318a1cedd8

python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 19d4cae028dc4f6e7db5423c3a4e2f69aebd0b68304590da639dca298a94a913

python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 19d4cae028dc4f6e7db5423c3a4e2f69aebd0b68304590da639dca298a94a913

Red Hat Enterprise Linux for IBM z Systems 7

SRPM

kernel-3.10.0-1160.80.1.el7.src.rpm

SHA-256: 7d1fddeac3c5819a4681d2e098810a0e0b606b915d4824240abbdaf60bf18c71

s390x

bpftool-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: 106c3fabd4cebad2c8d2834d95304401411d1c2d7db17cae7e79cd496976e8af

bpftool-debuginfo-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: d75542f98116ac9b448337c292295d161790db742487ba43175b9a3711187ad3

kernel-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: 9adb9ff9965dc9440af8279bdf0a5df39b6506eaea811716b5ff209c468f5a17

kernel-abi-whitelists-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 28635e4fd5cb45e51431aa562041e75f62ae8b70733872c7ce85fc33f05de20b

kernel-debug-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: 6b40e381cb6f4aee08f957fd661f43d9eeeb56fc514a63881a4e99a83244a4e9

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: 76746cfbc92b76d01c7471db8173d00f8ddd91b5e7075b64c13e8a345cd8ceed

kernel-debug-devel-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: 086bae521799f33e82aacdd5363457ffc4d2335dad8353a194935d8ecbfc5073

kernel-debuginfo-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: e399741f695aff5576163ce9883e165b6ab955def7f8499cc765e2ea9686ce14

kernel-debuginfo-common-s390x-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: 359866c4d9dbd891b1e22d675b8307a7d0a7d373d21fa10d37cbe916e57d2418

kernel-devel-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: feda850769f5199abeae32c0d53603cee9167783b8fa9d85de2c921c40a4cf97

kernel-doc-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 61026d9b06631d6d121cec1d1a1dfd064a3a0ea086d522b2f9c8bac4842a4088

kernel-headers-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: 885d25c1346e6b4817d73ea48c224c8c92405a0d4c23e23211dcb399ebde5f51

kernel-kdump-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: e469f2124f76f1c81be89c7e296eec0d01b2efb5578a34b23aba437ceb905d8d

kernel-kdump-debuginfo-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: 75ba2fd2496b3d1e346f17ebf63674648b1c68b14367822ee20093e2c20a6eea

kernel-kdump-devel-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: 22d0f33a51bfed379960d7d8d459d364b51c0026c32ca33d6ae37dc40bcdf6ae

perf-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: e107300f67f1e2347eeac0da75765c5ebeefed777a31044a36a12a22840658eb

perf-debuginfo-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: f9d12b4dd4f21b5cc983c29c7619600d625f7584e87c1161d3d1417d690c072d

python-perf-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: c0f90eb413f175deefa5f0f8304ee6b0755b3546c71eeb4dcee8bdcb0ddcd998

python-perf-debuginfo-3.10.0-1160.80.1.el7.s390x.rpm

SHA-256: fc6e8de9910b372c2fe8be60e5de57815b862e15ece0cbb32c44991f488de771

Red Hat Enterprise Linux for Power, big endian 7

SRPM

kernel-3.10.0-1160.80.1.el7.src.rpm

SHA-256: 7d1fddeac3c5819a4681d2e098810a0e0b606b915d4824240abbdaf60bf18c71

ppc64

bpftool-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: b54745e0cbab61f27c59462b83b4f31128ed6107a306e8b7210d705ffff50938

bpftool-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: d3e0bf17e2c43c52e5df0fa506d50d2ffd223106fc4caa01bbad2d437120f2d9

bpftool-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: d3e0bf17e2c43c52e5df0fa506d50d2ffd223106fc4caa01bbad2d437120f2d9

kernel-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 94dba0669621e1d3fd490a3cb2e70a61ec4cbcbd8e61930b0a260f726285091c

kernel-abi-whitelists-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 28635e4fd5cb45e51431aa562041e75f62ae8b70733872c7ce85fc33f05de20b

kernel-bootwrapper-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 2ab0697192e44de15f6fcde47a43529eba05b915463950347a9cf06c7774ad57

kernel-debug-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 2f52697e7397e522fdb63b978bb130da9e2cfde1710bafa60e85e74277751889

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 3e6f82d6725d36d8b14d345639100eea29c12b496ce23944d8fbf9a80468a33b

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 3e6f82d6725d36d8b14d345639100eea29c12b496ce23944d8fbf9a80468a33b

kernel-debug-devel-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: b74ea5d9ea50609e28e3d78a808ab3dcf312fe29dda78532fc844e41bf103e58

kernel-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: f1974d5dc39053e386c7da8ce6093547564991491a914b2649962e04d443fc43

kernel-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: f1974d5dc39053e386c7da8ce6093547564991491a914b2649962e04d443fc43

kernel-debuginfo-common-ppc64-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: a1fe98d029e2a1fdb40ac6287d763d948288f025bb749546d178ac701799e7b2

kernel-debuginfo-common-ppc64-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: a1fe98d029e2a1fdb40ac6287d763d948288f025bb749546d178ac701799e7b2

kernel-devel-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 935faf21d2c9f78043db1dce60495190a8113a2a48e78b8cbb2ae58609db66cd

kernel-doc-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 61026d9b06631d6d121cec1d1a1dfd064a3a0ea086d522b2f9c8bac4842a4088

kernel-headers-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 199f0243f06c3499134bd5470c69e3805da958256422f6c1f0d14186ac9aaa4e

kernel-tools-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 2b2bf98e9b5b2e264d218b58fe2115252543160b815c04f8d6ea983a1fe6c07f

kernel-tools-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 7c25c55dd981a10031d641df285b0703d4e3147b0668afd2ded96eb5bed70838

kernel-tools-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 7c25c55dd981a10031d641df285b0703d4e3147b0668afd2ded96eb5bed70838

kernel-tools-libs-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: b2fc5943c65c466a100de692f9e8c6cea57ba7b8cf53a29266bf829121be6a10

kernel-tools-libs-devel-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 696457cd5b945981e2d90ecc02a63efcb9bdbfeeb7ad635cd32f5a27083756d4

perf-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 7a2ccd205ce4524110aa0e682e7176f32823c553cafa642aae36398c32d37779

perf-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: e805c4daf1a84ec7f29f92422e35b684ed0653c046a4335abc54da6f6a30f2d0

perf-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: e805c4daf1a84ec7f29f92422e35b684ed0653c046a4335abc54da6f6a30f2d0

python-perf-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 1d6c29ce04eb1d7b0a798ba1a019d7c24d5fd092170bc1189c986ef6937868c6

python-perf-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 32ab6fc52ccf2a92b0699e162a9d6418b23dc0db7e998b73a2d1fb67905d95fe

python-perf-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

SHA-256: 32ab6fc52ccf2a92b0699e162a9d6418b23dc0db7e998b73a2d1fb67905d95fe

Red Hat Enterprise Linux for Scientific Computing 7

SRPM

kernel-3.10.0-1160.80.1.el7.src.rpm

SHA-256: 7d1fddeac3c5819a4681d2e098810a0e0b606b915d4824240abbdaf60bf18c71

x86_64

bpftool-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 65045b10dcc728bfacd715913bda91f672fcfe3549f1c3fa8ac918b17cddf5bb

bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b016335d9753972db532d65f55a438dbe3ef8e64bd00d98284903fdb34ece82d

bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b016335d9753972db532d65f55a438dbe3ef8e64bd00d98284903fdb34ece82d

kernel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 68be064934aa146de78b742da6cd536609aa828831424d975c573b9ab7a37e90

kernel-abi-whitelists-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 28635e4fd5cb45e51431aa562041e75f62ae8b70733872c7ce85fc33f05de20b

kernel-debug-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: a27207ef2e7e2226701ce7509342561c32eadebc274f456b554f1965d976c13c

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 3b430c8dfab63d830c345d9583c3f177052dc785e640d5d2c3442ff764825442

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 3b430c8dfab63d830c345d9583c3f177052dc785e640d5d2c3442ff764825442

kernel-debug-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 100ca212d053c0359377c3f744d81a8a05aed161d19a6292d9beeed267415664

kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 54b25c5ff89df6f444434e7907b3eb45fd0111ae8d36ccdaee38cfb8263ddeb8

kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 54b25c5ff89df6f444434e7907b3eb45fd0111ae8d36ccdaee38cfb8263ddeb8

kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 43d6b2aefe3c63ed04f4086df0560a1c77db4f3452a3332a9daed8c9f6a27400

kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 43d6b2aefe3c63ed04f4086df0560a1c77db4f3452a3332a9daed8c9f6a27400

kernel-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b1c8c88822362ffd692d52ed8e1763c5c07011133c0528b88869b56f3a0f47af

kernel-doc-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 61026d9b06631d6d121cec1d1a1dfd064a3a0ea086d522b2f9c8bac4842a4088

kernel-headers-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 067633289b678eb8b1d49e890ced6bc2dbf8f3d3b964a7fbd0412be21a621b9c

kernel-tools-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: deebff9945a6e7aad34d0cad01528b1d9473a9d3c6b25058344c4c1d17101060

kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: cc5d888c9dc0befa5768e557ad92d85e4677ac06000c75b83038854750e1eb34

kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: cc5d888c9dc0befa5768e557ad92d85e4677ac06000c75b83038854750e1eb34

kernel-tools-libs-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 65f65ba26fa92a8c6ffd7a499149e993bb17c68d4c12c0b9955afbe4075149cf

kernel-tools-libs-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 8a08e82ef53cdbd3d9e212b3028899cd641e125aeacb31dc76a21d41dab2e68a

perf-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 40491ed88f8372369cf6e02449aef537ee79953dd87f37b605605ea153c7fa19

perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 2a7c8b7ebe10b4ab2eac34b57516e93710fbb0a1f09620d6c27a6915f15fd72d

perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 2a7c8b7ebe10b4ab2eac34b57516e93710fbb0a1f09620d6c27a6915f15fd72d

python-perf-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 47a07a9a0667b772af1ca7b3a81e3a2b0f96fab21ed0e4bf7eddf6318a1cedd8

python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 19d4cae028dc4f6e7db5423c3a4e2f69aebd0b68304590da639dca298a94a913

python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 19d4cae028dc4f6e7db5423c3a4e2f69aebd0b68304590da639dca298a94a913

Red Hat Enterprise Linux for Power, little endian 7

SRPM

kernel-3.10.0-1160.80.1.el7.src.rpm

SHA-256: 7d1fddeac3c5819a4681d2e098810a0e0b606b915d4824240abbdaf60bf18c71

ppc64le

bpftool-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 19c3d18d6d1c475162b147b48e6afc2b4de191e672da965a36b52a27debcd2bb

bpftool-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 2ee92603c5b1f6d86764b5655ef267ceca1556ebde5be50f5e17915971769681

bpftool-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 2ee92603c5b1f6d86764b5655ef267ceca1556ebde5be50f5e17915971769681

kernel-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 2a3235aed5faee42e429b9ed58fd8450aee6d4d19821973de099ac4c3e85bca0

kernel-abi-whitelists-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 28635e4fd5cb45e51431aa562041e75f62ae8b70733872c7ce85fc33f05de20b

kernel-bootwrapper-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 3d9c5f1f88d48001d5f4a467cd92b2ce90e26f09c34f1cafa7311cf0352a4f80

kernel-debug-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: d81cfcb5da284d83e3128962fa7eddc6548483a84b082f144f89729e97fc686d

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 17782764890ba6e56275ef935e447d526c215880d8d4bdea2c41d946032a995a

kernel-debug-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 17782764890ba6e56275ef935e447d526c215880d8d4bdea2c41d946032a995a

kernel-debug-devel-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 3be5a5a83c17280d2d2eab84f1b223ac4c0f5874d1967f0092efe7e925053169

kernel-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 7dc17f685b92a9dd5d0789c49fe905f719b783323599ef26f6e8e871151b65e1

kernel-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 7dc17f685b92a9dd5d0789c49fe905f719b783323599ef26f6e8e871151b65e1

kernel-debuginfo-common-ppc64le-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 21363a373d27f69e79a714717a2e7f0b49509cd59de73f7ebd1d23c64f32aef4

kernel-debuginfo-common-ppc64le-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 21363a373d27f69e79a714717a2e7f0b49509cd59de73f7ebd1d23c64f32aef4

kernel-devel-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 3935e2145a350e655c9343b6cff18c84d84f84b813a9912b83fb6e4437baf502

kernel-doc-3.10.0-1160.80.1.el7.noarch.rpm

SHA-256: 61026d9b06631d6d121cec1d1a1dfd064a3a0ea086d522b2f9c8bac4842a4088

kernel-headers-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 42dfa5d5e24db654d1e143e0af13df549cf6692f0775533d25f9d18f1ea65128

kernel-tools-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 4659cf64db4e95dc98bb018e7461b90420276634799d90694c8ed7a2885f2b95

kernel-tools-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 488217782f97bb66186a1327baf4bcfce7153180871eb5b17a0bbbc8567faf4d

kernel-tools-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 488217782f97bb66186a1327baf4bcfce7153180871eb5b17a0bbbc8567faf4d

kernel-tools-libs-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 4b1917d68ab19d66c5590cec484cace143055883551829ef1d98fb3c44579aa2

kernel-tools-libs-devel-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 6cb5491bb4c14bbd159c1dffc016ed3c3dab9d8d50f5ef540247b9291f3994fc

perf-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 4379c4ec6f6ebaa3a27d94441ac493926662d021f0a9f247eb3b06e98cd82d09

perf-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: cc0f2728cbaa155a27a26def5370211855740efa44494c9967959e14606f446c

perf-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: cc0f2728cbaa155a27a26def5370211855740efa44494c9967959e14606f446c

python-perf-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 790d821fc968e689602a5d0eb12e4b5ff7507f6dd46934292be3dfbd60cc8f78

python-perf-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 7667b45910f63273ea0b9ac016730e85c4121990d3381a654913ff43c6138c25

python-perf-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

SHA-256: 7667b45910f63273ea0b9ac016730e85c4121990d3381a654913ff43c6138c25

Red Hat Virtualization Host 4 for RHEL 7

SRPM

x86_64

kernel-devel-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: b1c8c88822362ffd692d52ed8e1763c5c07011133c0528b88869b56f3a0f47af

kernel-headers-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 067633289b678eb8b1d49e890ced6bc2dbf8f3d3b964a7fbd0412be21a621b9c

perf-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 40491ed88f8372369cf6e02449aef537ee79953dd87f37b605605ea153c7fa19

python-perf-3.10.0-1160.80.1.el7.x86_64.rpm

SHA-256: 47a07a9a0667b772af1ca7b3a81e3a2b0f96fab21ed0e4bf7eddf6318a1cedd8

Related news

Gentoo Linux Security Advisory 202402-07

Gentoo Linux Security Advisory 202402-7 - Multiple vulnerabilities have been found in Xen, the worst of which can lead to arbitrary code execution. Versions greater than or equal to 4.16.6_pre1 are affected.

Collide+Power, Downfall, and Inception: New Side-Channel Attacks Affecting Modern CPUs

Cybersecurity researchers have disclosed details of a trio of side-channel attacks that could be exploited to leak sensitive data from modern CPUs. Called Collide+Power (CVE-2023-20583), Downfall (CVE-2022-40982), and Inception (CVE-2023-20569), the novel methods follow the disclosure of another newly discovered security vulnerability affecting AMD's Zen 2 architecture-based processors known as

RHSA-2023:4022: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support, Red Hat Enterprise Linux 7.7 Telco Extended Update Support, and Red Hat Enterprise Linux 7.7 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-2588: A use-after-free flaw was found in route4_change in the net/sched/cls_route.c filter implementation in the Linux kernel. This flaw allows a local user to crash the system and possibly lead to a l...

Microsoft Zero-Day Bugs Allow Security Feature Bypass

Security vendors urge organizations to fix the actively exploited bugs, in Microsoft Outlook and the Mark of the Web feature, immediately.

Ubuntu Security Notice USN-5924-1

Ubuntu Security Notice 5924-1 - It was discovered that the Upper Level Protocol subsystem in the Linux kernel did not properly handle sockets entering the LISTEN state in certain protocols, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use this to cause a denial of service.

Ubuntu Security Notice USN-5865-1

Ubuntu Security Notice 5865-1 - It was discovered that an out-of-bounds write vulnerability existed in the Video for Linux 2 implementation in the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Pawan Kumar Gupta, Alyssa Milburn, Amit Peled, Shani Rehana, Nir Shildan and Ariel Sabba discovered that some Intel processors with Enhanced Indirect Branch Restricted Speculation did not properly handle RET instructions after a VM exits. A local attacker could potentially use this to expose sensitive information.

Ubuntu Security Notice USN-5854-1

Ubuntu Security Notice 5854-1 - It was discovered that an out-of-bounds write vulnerability existed in the Video for Linux 2 implementation in the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Pawan Kumar Gupta, Alyssa Milburn, Amit Peled, Shani Rehana, Nir Shildan and Ariel Sabba discovered that some Intel processors with Enhanced Indirect Branch Restricted Speculation did not properly handle RET instructions after a VM exits. A local attacker could potentially use this to expose sensitive information.

CVE-2022-46756: DSA-2022-335: Dell VxRail Security Update for Multiple Third-Party Component Vulnerabilities

Dell VxRail, versions prior to 7.0.410, contain a Container Escape Vulnerability. A local high-privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the container's underlying OS. Exploitation may lead to a system take over by an attacker.

Red Hat Security Advisory 2023-0440-01

Red Hat Security Advisory 2023-0440-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system.

Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs

Hello everyone! Great news for my open source Scanvus project! You can now perform vulnerability checks on Linux hosts and docker images not only using the Vulners.com API, but also with the Vulns.io VM API. It’s especially nice that all the code to support the new API was written and contributed by colleagues from Vulns.io. […]

Red Hat Security Advisory 2022-8973-01

Red Hat Security Advisory 2022-8973-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include buffer overflow, code execution, memory leak, out of bounds write, and privilege escalation vulnerabilities.

RHSA-2022:8973: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-1158: kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region * CVE-2022-2639: kernel: openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size() * CVE-2022-2959: kernel: watch queue race condition can lead to privilege escalation * CVE-2022-21123: hw: cpu: incomplete clean-up of multi-co...

Red Hat Security Advisory 2022-8889-01

Red Hat Security Advisory 2022-8889-01 - This is an Openshift Logging bug fix release. Issues addressed include a denial of service vulnerability.

RHSA-2022:8781: Red Hat Security Advisory: Logging Subsystem 5.5.5 - Red Hat OpenShift security update

Logging Subsystem 5.5.5 - Red Hat OpenShift Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2020-36518: jackson-databind: denial of service via a large depth of nested objects * CVE-2022-2879: golang: archive/tar: unbounded memory consumption when reading headers * CVE-2022-2880: golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters * CVE-2022-27664: golang: net/http: handle server errors after sending GOAWAY * CVE-2022-32189: golang: math/b...

Ubuntu Security Notice USN-5728-2

Ubuntu Security Notice 5728-2 - Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that a race condition existed in the memory address space accounting implementation in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

RHSA-2022:8267: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2020-36516: kernel: off-path attacker may inject data or terminate victim's TCP session * CVE-2021-3640: kernel: use-after-free vulnerability in function sco_sock_sendmsg() * CVE-2022-0168: kernel: smb2_ioctl_query_info NULL pointer dereference * CVE-2022-0617: kernel: NULL pointer dereference in udf_expand_file_adinicbdue() during writeback * CVE-2022-0854: ...

RHSA-2022:7933: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2020-36516: kernel: off-path attacker may inject data or terminate victim's TCP session * CVE-2021-3640: kernel: use-after-free vulnerability in function sco_sock_sendmsg() * CVE-2022-0168: kernel: smb2_ioctl_query_info NULL pointer dereference * CVE-2022-0617: kernel: NULL pointer dereference in udf_expand_file_adinicbdue() during writeback * CVE-2022-085...

Red Hat Security Advisory 2022-7434-01

Red Hat Security Advisory 2022-7434-01 - A Red Hat OpenShift security update has been provided for the Logging Subsystem.

Red Hat Security Advisory 2022-6882-01

Red Hat Security Advisory 2022-6882-01 - Openshift Logging 5.3.13 security and bug fix release.

RHSA-2022:6882: Red Hat Security Advisory: Openshift Logging 5.3.13 security and bug fix release

An update is now available for OpenShift Logging 5.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-32149: golang: golang.org/x/text/language: ParseAcceptLanguage takes a long time to parse complex tags

RHSA-2022:7683: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2020-36516: kernel: off-path attacker may inject data or terminate victim's TCP session * CVE-2020-36558: kernel: race condition in VT_RESIZEX ioctl when vc_cons[i].d is already NULL leading to NULL pointer dereference * CVE-2021-3640: kernel: use-after-free vulnerability in function sco_sock_sendmsg() * CVE-2021-30002: kernel: memory leak for large arguments...

RHSA-2022:7444: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2020-36516: kernel: off-path attacker may inject data or terminate victim's TCP session * CVE-2020-36558: kernel: race condition in VT_RESIZEX ioctl when vc_cons[i].d is already NULL leading to NULL pointer dereference * CVE-2021-3640: kernel: use-after-free vulnerability in function sco_sock_sendmsg() * CVE-2021-30002: kernel: memory leak for large argume...

CVE-2022-43449: en/security-disclosure/2022/2022-11.md · OpenHarmony/security - Gitee.com

OpenHarmony-v3.1.2 and prior versions had an Arbitrary file read vulnerability via download_server. Local attackers can install an malicious application on the device and reveal any file from the filesystem that is accessible to download_server service which run with UID 1000.

Red Hat Security Advisory 2022-7338-01

Red Hat Security Advisory 2022-7338-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include code execution, privilege escalation, and use-after-free vulnerabilities.

Red Hat Security Advisory 2022-7313-01

Red Hat Security Advisory 2022-7313-01 - Red Hat Advanced Cluster Management for Kubernetes 2.6.2 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Issues addressed include denial of service and remote SQL injection vulnerabilities.

Red Hat Security Advisory 2022-7337-01

Red Hat Security Advisory 2022-7337-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include code execution, privilege escalation, and use-after-free vulnerabilities.

RHSA-2022:7338: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation * CVE-2022-23816: hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions * CVE-2022-23825: hw: cpu: AMD: Branch Type Confusion (non-retbleed) * CVE-2022-26373: hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions * ...

RHSA-2022:7338: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation * CVE-2022-23816: hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions * CVE-2022-23825: hw: cpu: AMD: Branch Type Confusion (non-retbleed) * CVE-2022-26373: hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions * ...

RHSA-2022:7338: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation * CVE-2022-23816: hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions * CVE-2022-23825: hw: cpu: AMD: Branch Type Confusion (non-retbleed) * CVE-2022-26373: hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions * ...

Red Hat Security Advisory 2022-7201-01

Red Hat Security Advisory 2022-7201-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.11.12. Issues addressed include a code execution vulnerability.

Red Hat Security Advisory 2022-7201-01

Red Hat Security Advisory 2022-7201-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.11.12. Issues addressed include a code execution vulnerability.

Red Hat Security Advisory 2022-7201-01

Red Hat Security Advisory 2022-7201-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.11.12. Issues addressed include a code execution vulnerability.

Red Hat Security Advisory 2022-7201-01

Red Hat Security Advisory 2022-7201-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.11.12. Issues addressed include a code execution vulnerability.

Red Hat Security Advisory 2022-7276-01

Red Hat Security Advisory 2022-7276-01 - Red Hat Advanced Cluster Management for Kubernetes 2.4.8 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in. This advisory contains the container images for Red Hat Advanced Cluster Management for Kubernetes, which fix several bugs. Issues addressed include denial of service, server-side request forgery, and remote SQL injection vulnerabilities.

Red Hat Security Advisory 2022-7276-01

Red Hat Security Advisory 2022-7276-01 - Red Hat Advanced Cluster Management for Kubernetes 2.4.8 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in. This advisory contains the container images for Red Hat Advanced Cluster Management for Kubernetes, which fix several bugs. Issues addressed include denial of service, server-side request forgery, and remote SQL injection vulnerabilities.

Red Hat Security Advisory 2022-7280-01

Red Hat Security Advisory 2022-7280-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include privilege escalation and use-after-free vulnerabilities.

RHSA-2022:7313: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.6.2 security update and bug fixes

Red Hat Advanced Cluster Management for Kubernetes 2.6.2 General Availability release images, which fix bugs and update container images. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-2238: search-api: SQL injection leads to remote denial of service * CVE-2022-25858: terser: insecure use of regular expressions leads to ReDoS * CVE-2022-25887: sanitize-html: insecure global regular expression replacement logic may lead to ReDoS * CVE-2022-25896: passport: incorrect ses...

RHSA-2022:7201: Red Hat Security Advisory: OpenShift Container Platform 4.11.12 security update

Red Hat OpenShift Container Platform release 4.11.12 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-26945: go-getter: command injection vulnerability * CVE-2022-30321: go-getter: unsafe download (issue 1 of 3) * CVE-2022-30322: go-getter: unsafe download (issue 2 of 3) * CVE-2022-30323: go-getter: unsafe download (issue 3 of 3)

RHSA-2022:7201: Red Hat Security Advisory: OpenShift Container Platform 4.11.12 security update

Red Hat OpenShift Container Platform release 4.11.12 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-26945: go-getter: command injection vulnerability * CVE-2022-30321: go-getter: unsafe download (issue 1 of 3) * CVE-2022-30322: go-getter: unsafe download (issue 2 of 3) * CVE-2022-30323: go-getter: unsafe download (issue 3 of 3)

RHSA-2022:7201: Red Hat Security Advisory: OpenShift Container Platform 4.11.12 security update

Red Hat OpenShift Container Platform release 4.11.12 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-26945: go-getter: command injection vulnerability * CVE-2022-30321: go-getter: unsafe download (issue 1 of 3) * CVE-2022-30322: go-getter: unsafe download (issue 2 of 3) * CVE-2022-30323: go-getter: unsafe download (issue 3 of 3)

RHSA-2022:7201: Red Hat Security Advisory: OpenShift Container Platform 4.11.12 security update

Red Hat OpenShift Container Platform release 4.11.12 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-26945: go-getter: command injection vulnerability * CVE-2022-30321: go-getter: unsafe download (issue 1 of 3) * CVE-2022-30322: go-getter: unsafe download (issue 2 of 3) * CVE-2022-30323: go-getter: unsafe download (issue 3 of 3)

RHSA-2022:7276: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.4.8 security fixes and container updates

Red Hat Advanced Cluster Management for Kubernetes 2.4.8 General Availability release images, which fix security issues. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-2238: search-api: SQL injection leads to remote denial of service * CVE-2022-25858: terser: insecure use of regular expressions leads to ReDoS * CVE-2022-31129: moment: inefficient parsing algorithm resulting in DoS * CVE-2022-35948: nodejs: undici vulnerable to CRLF via content headers * CVE-2022-35949: n...

RHSA-2022:7276: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.4.8 security fixes and container updates

Red Hat Advanced Cluster Management for Kubernetes 2.4.8 General Availability release images, which fix security issues. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-2238: search-api: SQL injection leads to remote denial of service * CVE-2022-25858: terser: insecure use of regular expressions leads to ReDoS * CVE-2022-31129: moment: inefficient parsing algorithm resulting in DoS * CVE-2022-35948: nodejs: undici vulnerable to CRLF via content headers * CVE-2022-35949: n...

RHSA-2022:7276: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.4.8 security fixes and container updates

Red Hat Advanced Cluster Management for Kubernetes 2.4.8 General Availability release images, which fix security issues. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-2238: search-api: SQL injection leads to remote denial of service * CVE-2022-25858: terser: insecure use of regular expressions leads to ReDoS * CVE-2022-31129: moment: inefficient parsing algorithm resulting in DoS * CVE-2022-35948: nodejs: undici vulnerable to CRLF via content headers * CVE-2022-35949: n...

Ubuntu Security Notice USN-5706-1

Ubuntu Security Notice 5706-1 - It was discovered that the BPF verifier in the Linux kernel did not properly handle internal data structures. A local attacker could use this to expose sensitive information. It was discovered that an out-of-bounds write vulnerability existed in the Video for Linux 2 implementation in the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Ubuntu Security Notice USN-5703-1

Ubuntu Security Notice 5703-1 - Selim Enes Karaduman discovered that a race condition existed in the General notification queue implementation of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Pawan Kumar Gupta, Alyssa Milburn, Amit Peled, Shani Rehana, Nir Shildan and Ariel Sabba discovered that some Intel processors with Enhanced Indirect Branch Restricted Speculation did not properly handle RET instructions after a VM exits. A local attacker could potentially use this to expose sensitive information.

Red Hat Security Advisory 2022-7110-01

Red Hat Security Advisory 2022-7110-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include code execution, information leakage, memory leak, privilege escalation, and use-after-free vulnerabilities.

Red Hat Security Advisory 2022-7110-01

Red Hat Security Advisory 2022-7110-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include code execution, information leakage, memory leak, privilege escalation, and use-after-free vulnerabilities.

Red Hat Security Advisory 2022-7110-01

Red Hat Security Advisory 2022-7110-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include code execution, information leakage, memory leak, privilege escalation, and use-after-free vulnerabilities.

Red Hat Security Advisory 2022-7110-01

Red Hat Security Advisory 2022-7110-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include code execution, information leakage, memory leak, privilege escalation, and use-after-free vulnerabilities.

Red Hat Security Advisory 2022-7146-01

Red Hat Security Advisory 2022-7146-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include privilege escalation and use-after-free vulnerabilities.

RHSA-2022:7146: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation

RHSA-2022:7134: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-0494: kernel: information leak in scsi_ioctl() * CVE-2022-1353: Kernel: A kernel-info-leak issue in pfkey_register * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation * CVE-2022-23816: hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions * CVE-2022-23825: hw: c...

RHSA-2022:7134: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-0494: kernel: information leak in scsi_ioctl() * CVE-2022-1353: Kernel: A kernel-info-leak issue in pfkey_register * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation * CVE-2022-23816: hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions * CVE-2022-23825: hw: c...

RHSA-2022:7110: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-0494: kernel: information leak in scsi_ioctl() * CVE-2022-1353: Kernel: A kernel-info-leak issue in pfkey_register * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation * CVE-2022-23816: hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions * CVE-2022-23825: hw: cpu:...

RHSA-2022:7110: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-0494: kernel: information leak in scsi_ioctl() * CVE-2022-1353: Kernel: A kernel-info-leak issue in pfkey_register * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation * CVE-2022-23816: hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions * CVE-2022-23825: hw: cpu:...

RHSA-2022:7110: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-0494: kernel: information leak in scsi_ioctl() * CVE-2022-1353: Kernel: A kernel-info-leak issue in pfkey_register * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation * CVE-2022-23816: hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions * CVE-2022-23825: hw: cpu:...

RHSA-2022:7110: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-0494: kernel: information leak in scsi_ioctl() * CVE-2022-1353: Kernel: A kernel-info-leak issue in pfkey_register * CVE-2022-2588: kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation * CVE-2022-23816: hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions * CVE-2022-23825: hw: cpu:...

CVE-2022-36957: Published | Zero Day Initiative

SolarWinds Platform was susceptible to the Deserialization of Untrusted Data. This vulnerability allows a remote adversary with Orion admin-level account access to SolarWinds Web Console to execute arbitrary commands.

Ubuntu Security Notice USN-5682-1

Ubuntu Security Notice 5682-1 - It was discovered that the BPF verifier in the Linux kernel did not properly handle internal data structures. A local attacker could use this to expose sensitive information. It was discovered that an out-of-bounds write vulnerability existed in the Video for Linux 2 implementation in the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Ubuntu Security Notice USN-5683-1

Ubuntu Security Notice 5683-1 - It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of- bounds write. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Selim Enes Karaduman discovered that a race condition existed in the General notification queue implementation of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Red Hat Security Advisory 2022-6875-01

Red Hat Security Advisory 2022-6875-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include privilege escalation and use-after-free vulnerabilities.

Ubuntu Security Notice USN-5667-1

Ubuntu Security Notice 5667-1 - Selim Enes Karaduman discovered that a race condition existed in the General notification queue implementation of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Pawan Kumar Gupta, Alyssa Milburn, Amit Peled, Shani Rehana, Nir Shildan and Ariel Sabba discovered that some Intel processors with Enhanced Indirect Branch Restricted Speculation did not properly handle RET instructions after a VM exits. A local attacker could potentially use this to expose sensitive information.

Ubuntu Security Notice USN-5668-1

Ubuntu Security Notice 5668-1 - It was discovered that the BPF verifier in the Linux kernel did not properly handle internal data structures. A local attacker could use this to expose sensitive information. It was discovered that an out-of-bounds write vulnerability existed in the Video for Linux 2 implementation in the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Red Hat Security Advisory 2022-6551-01

Red Hat Security Advisory 2022-6551-01 - The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. The ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. Issues addressed include denial of service, information leakage, privilege escalation, and use-after...

Kernel Live Patch Security Notice LSN-0089-1

Aaron Adams discovered that the netfilter subsystem in the Linux kernel did not properly handle the removal of stateful expressions in some situations, leading to a use-after-free vulnerability. Ziming Zhang discovered that the netfilter subsystem in the Linux kernel did not properly validate sets with multiple ranged fields. It was discovered that the implementation of POSIX timers in the Linux kernel did not properly clean up timers in some situations. Various other vulnerabilities were also discovered.

CVE-2022-26373: INTEL-SA-00706

Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

Ubuntu Security Notice USN-5565-1

Ubuntu Security Notice 5565-1 - Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service or execute arbitrary code. It was discovered that the netfilter subsystem of the Linux kernel did not prevent one nft object from referencing an nft set in another nft table, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or execute arbitrary code.

Ubuntu Security Notice USN-5565-1

Ubuntu Security Notice 5565-1 - Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service or execute arbitrary code. It was discovered that the netfilter subsystem of the Linux kernel did not prevent one nft object from referencing an nft set in another nft table, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or execute arbitrary code.

Ubuntu Security Notice USN-5564-1

Ubuntu Security Notice 5564-1 - Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service or execute arbitrary code. It was discovered that the netfilter subsystem of the Linux kernel did not prevent one nft object from referencing an nft set in another nft table, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or execute arbitrary code.

Ubuntu Security Notice USN-5564-1

Ubuntu Security Notice 5564-1 - Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service or execute arbitrary code. It was discovered that the netfilter subsystem of the Linux kernel did not prevent one nft object from referencing an nft set in another nft table, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or execute arbitrary code.

Ubuntu Security Notice USN-5562-1

Ubuntu Security Notice 5562-1 - Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service or execute arbitrary code. It was discovered that the netfilter subsystem of the Linux kernel did not prevent one nft object from referencing an nft set in another nft table, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or execute arbitrary code.

Ubuntu Security Notice USN-5560-2

Ubuntu Security Notice 5560-2 - Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service or execute arbitrary code. It was discovered that the netfilter subsystem of the Linux kernel did not prevent one nft object from referencing an nft set in another nft table, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or execute arbitrary code.

Ubuntu Security Notice USN-5560-1

Ubuntu Security Notice 5560-1 - Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service or execute arbitrary code. It was discovered that the netfilter subsystem of the Linux kernel did not prevent one nft object from referencing an nft set in another nft table, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or execute arbitrary code.

Retbleed Fixed in Linux Kernel, Patch Delayed

Linus Torvalds says Retbleed has been addressed in the Linux kernel, but code complexity means the release will be delayed by a week to give more time for testing.

New 'Retbleed' Speculative Execution Attack Affects AMD and Intel CPUs

Security researchers have uncovered yet another vulnerability affecting numerous older AMD and Intel microprocessors that could bypass current defenses and result in Spectre-based speculative-execution attacks. Dubbed Retbleed by ETH Zurich researchers Johannes Wikner and Kaveh Razavi, the issues are tracked as CVE-2022-29900 (AMD) and CVE-2022-29901 (Intel), with the chipmakers releasing

New 'Retbleed' Speculative Execution Attack Affects AMD and Intel CPUs

Security researchers have uncovered yet another vulnerability affecting numerous older AMD and Intel microprocessors that could bypass current defenses and result in Spectre-based speculative-execution attacks. Dubbed Retbleed by ETH Zurich researchers Johannes Wikner and Kaveh Razavi, the issues are tracked as CVE-2022-29900 (AMD) and CVE-2022-29901 (Intel), with the chipmakers releasing

CVE-2022-29901: oss-security - Xen Security Advisory 407 v1 (CVE-2022-23816,CVE-2022-23825,CVE-2022-29900) - Retbleed

Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution under certain microarchitecture-dependent conditions.

CVE-2022-29900: 407 - Xen Security Advisories

AMD microprocessor families 15h to 18h are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution under certain microarchitecture-dependent conditions.

CVE-2022-29901: oss-security - Xen Security Advisory 407 v1 (CVE-2022-23816,CVE-2022-23825,CVE-2022-29900) - Retbleed

Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution under certain microarchitecture-dependent conditions.

CVE-2022-29901: oss-security - Xen Security Advisory 407 v1 (CVE-2022-23816,CVE-2022-23825,CVE-2022-29900) - Retbleed

Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution under certain microarchitecture-dependent conditions.

CVE-2022-29901: oss-security - Xen Security Advisory 407 v1 (CVE-2022-23816,CVE-2022-23825,CVE-2022-29900) - Retbleed

Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution under certain microarchitecture-dependent conditions.

CVE-2022-29900: 407 - Xen Security Advisories

AMD microprocessor families 15h to 18h are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution under certain microarchitecture-dependent conditions.

CVE-2022-29900: 407 - Xen Security Advisories

AMD microprocessor families 15h to 18h are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution under certain microarchitecture-dependent conditions.

CVE-2022-29900: 407 - Xen Security Advisories

AMD microprocessor families 15h to 18h are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution under certain microarchitecture-dependent conditions.