Red Hat Security Advisory 2022-7318-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include privilege escalation and use-after-free vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel security, bug fix, and enhancement update  
Advisory ID:       RHSA-2022:7318-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7318  
Issue date:        2022-11-02  
CVE Names:         CVE-2022-2585 CVE-2022-30594  
====================================================================  
1. Summary:

An update for kernel is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat CodeReady Linux Builder (v. 9) - aarch64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux AppStream (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux BaseOS (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux  
operating system.

Security Fix(es):

* posix cpu timer use-after-free may lead to local privilege escalation  
(CVE-2022-2585)

* Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP  
option (CVE-2022-30594)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* kernel crash after reboot of T14/G2 AMD laptop (mt7921e module)  
(BZ#2095653)

* execve exit tracepoint not called (BZ#2106661)

* Matrox black screen on VGA output on some systems. (BZ#2112017)

* The kernel needs to offer a way to reseed the Crypto DRBG and atomically  
extract random numbers from it (BZ#2121129)

* watchdog BUG: soft lockup - CPU#30 stuck for 34s! [swapper/30:0]  
(BZ#2127857)

* Update cifs to 5.16 (BZ#2127858)

* Bad page state in process qemu-kvm  pfn:68a74600 (BZ#2127859)

* vfio zero page mappings fail after 2M instances (BZ#2128791)

* The kernel needs to offer a way to reseed the Crypto DRBG and atomically  
extract random numbers from it (part 2) (BZ#2128970)

Enhancement(s):

* Need to enable hpilo to support new HPE RL300 Gen11 for ARM (aarch64)  
(BZ#2129453)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2085300 - CVE-2022-30594 kernel: Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP option  
2114874 - CVE-2022-2585 kernel: posix cpu timer use-after-free may lead to local privilege escalation

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

aarch64:  
bpftool-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debug-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debug-devel-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debug-devel-matched-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debuginfo-common-aarch64-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-devel-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-devel-matched-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-headers-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-tools-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
perf-5.14.0-70.30.1.el9_0.aarch64.rpm  
perf-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
python3-perf-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm

noarch:  
kernel-doc-5.14.0-70.30.1.el9_0.noarch.rpm

ppc64le:  
bpftool-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debug-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debug-devel-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debug-devel-matched-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-devel-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-devel-matched-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-headers-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-tools-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
perf-5.14.0-70.30.1.el9_0.ppc64le.rpm  
perf-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
python3-perf-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm

s390x:  
bpftool-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debug-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debug-devel-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debug-devel-matched-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debuginfo-common-s390x-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-devel-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-devel-matched-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-headers-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-tools-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-zfcpdump-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-zfcpdump-devel-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-zfcpdump-devel-matched-5.14.0-70.30.1.el9_0.s390x.rpm  
perf-5.14.0-70.30.1.el9_0.s390x.rpm  
perf-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
python3-perf-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm

x86_64:  
bpftool-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debug-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debug-devel-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debug-devel-matched-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debuginfo-common-x86_64-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-devel-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-devel-matched-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-headers-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-tools-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
perf-5.14.0-70.30.1.el9_0.x86_64.rpm  
perf-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
python3-perf-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm

Red Hat Enterprise Linux BaseOS (v. 9):

Source:  
kernel-5.14.0-70.30.1.el9_0.src.rpm

aarch64:  
bpftool-5.14.0-70.30.1.el9_0.aarch64.rpm  
bpftool-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-core-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debug-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debug-core-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debug-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debug-modules-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debug-modules-extra-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debuginfo-common-aarch64-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-modules-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-modules-extra-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-tools-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-tools-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-tools-libs-5.14.0-70.30.1.el9_0.aarch64.rpm  
perf-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
python3-perf-5.14.0-70.30.1.el9_0.aarch64.rpm  
python3-perf-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm

noarch:  
kernel-abi-stablelists-5.14.0-70.30.1.el9_0.noarch.rpm

ppc64le:  
bpftool-5.14.0-70.30.1.el9_0.ppc64le.rpm  
bpftool-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-core-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debug-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debug-core-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debug-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debug-modules-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debug-modules-extra-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-modules-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-modules-extra-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-tools-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-tools-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-tools-libs-5.14.0-70.30.1.el9_0.ppc64le.rpm  
perf-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
python3-perf-5.14.0-70.30.1.el9_0.ppc64le.rpm  
python3-perf-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm

s390x:  
bpftool-5.14.0-70.30.1.el9_0.s390x.rpm  
bpftool-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-core-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debug-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debug-core-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debug-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debug-modules-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debug-modules-extra-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debuginfo-common-s390x-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-modules-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-modules-extra-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-tools-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-tools-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-zfcpdump-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-zfcpdump-core-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-zfcpdump-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-zfcpdump-modules-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-zfcpdump-modules-extra-5.14.0-70.30.1.el9_0.s390x.rpm  
perf-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
python3-perf-5.14.0-70.30.1.el9_0.s390x.rpm  
python3-perf-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm

x86_64:  
bpftool-5.14.0-70.30.1.el9_0.x86_64.rpm  
bpftool-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-core-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debug-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debug-core-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debug-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debug-modules-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debug-modules-extra-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debuginfo-common-x86_64-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-modules-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-modules-extra-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-tools-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-tools-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-tools-libs-5.14.0-70.30.1.el9_0.x86_64.rpm  
perf-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
python3-perf-5.14.0-70.30.1.el9_0.x86_64.rpm  
python3-perf-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm

Red Hat CodeReady Linux Builder (v. 9):

aarch64:  
bpftool-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-cross-headers-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debug-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-debuginfo-common-aarch64-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-tools-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
kernel-tools-libs-devel-5.14.0-70.30.1.el9_0.aarch64.rpm  
perf-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm  
python3-perf-debuginfo-5.14.0-70.30.1.el9_0.aarch64.rpm

ppc64le:  
bpftool-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-cross-headers-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debug-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-tools-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
kernel-tools-libs-devel-5.14.0-70.30.1.el9_0.ppc64le.rpm  
perf-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm  
python3-perf-debuginfo-5.14.0-70.30.1.el9_0.ppc64le.rpm

s390x:  
bpftool-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-cross-headers-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debug-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-debuginfo-common-s390x-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-tools-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
kernel-zfcpdump-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
perf-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm  
python3-perf-debuginfo-5.14.0-70.30.1.el9_0.s390x.rpm

x86_64:  
bpftool-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-cross-headers-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debug-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-debuginfo-common-x86_64-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-tools-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
kernel-tools-libs-devel-5.14.0-70.30.1.el9_0.x86_64.rpm  
perf-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm  
python3-perf-debuginfo-5.14.0-70.30.1.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2585  
https://access.redhat.com/security/cve/CVE-2022-30594  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY2K9RtzjgjWX9erEAQg5dw//ZFjS/ugn0S2QF94xP3PXnxhZgdfOXqrV  
DLv2UvywBFzf8GTz/0Lkf7zl9SQ7QF+ZPf2MHIYLPxqswTOt9XXJKrhcbh5E+zAt  
M3FIGkNoPBKxPalPp9lwjSQUU5fpYMSnOkvJIGx8LasUz7NlRuwQrK7k7Qb0tDqc  
AjXAnvz2bE3G9P1bPbkoYzBYk4J4WYGS8w3GRFzhmqqn32Uex6rF+sH5+YqxYt0P  
24FTJDa6ggybzCbYfFNxEmbySP2s/feTAejA0P/AADxKjURj2GCeTzYZBAiAh07Q  
Ui0wOly0VoFCE1dDiRP0A821mve6WK9OJtVdQGnOwf/XiOxxpZQKDNap8AHXGLiz  
F9uq7eC6u/ISHosgs5z/cyFW/CshAYQjrEbl3LZ9LGFnbV5ZFU6eOxTUhyNp/x0Z  
Re9aD/xEJdA/W4YDd4a6Pb7SzEY8N5N/uhFn8MpEmDEcTp6ydxVnFBiHAEhW7bO7  
5jeneVnc8qQTetNkSvF5EswMISmy9grZMWX+7wx5YLPRKYSWHv5Y7ZcPan8G3QfP  
Atiin4WjSDztlDaHR+y69da2T+aGGHIzXu0if/hlanncWI4YT2i7N99ViTqJJStf  
Xp+r1Jp2xhZYRfrCa5YCn4M8nxyrlaMfQE0IdzTpj8L0A2LTflFAEMC1CedxzWc0  
nXkBWQ86WbA=KfTC  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7318-01

Red Hat Security Advisory 2022-7313-01 - Red Hat Advanced Cluster Management for Kubernetes 2.6.2 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Issues addressed include denial of service and remote SQL injection vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: Red Hat Advanced Cluster Management 2.6.2 security update and bug fixes  
Advisory ID:       RHSA-2022:7313-01  
Product:           Red Hat ACM  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7313  
Issue date:        2022-11-02  
CVE Names:         CVE-2015-20107 CVE-2020-35525 CVE-2020-35527   
                   CVE-2022-0391 CVE-2022-0494 CVE-2022-1353   
                   CVE-2022-2238 CVE-2022-2509 CVE-2022-2588   
                   CVE-2022-3515 CVE-2022-23816 CVE-2022-23825   
                   CVE-2022-25858 CVE-2022-25887 CVE-2022-25896   
                   CVE-2022-29900 CVE-2022-29901 CVE-2022-31129   
                   CVE-2022-34903 CVE-2022-37434 CVE-2022-40674   
=====================================================================

1. Summary:

Red Hat Advanced Cluster Management for Kubernetes 2.6.2 General  
Availability release images, which fix bugs and update container images.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Description:

Red Hat Advanced Cluster Management for Kubernetes 2.6.2 images

Red Hat Advanced Cluster Management for Kubernetes provides the  
capabilities to address common challenges that administrators and site  
reliability engineers face as they work across a range of public and  
private cloud environments. Clusters and applications are all visible and  
managed from a single console—with security policy built in.

This advisory contains the container images for Red Hat Advanced Cluster  
Management for Kubernetes, which fix several bugs. See the following  
Release Notes documentation, which will be updated shortly for this  
release, for additional details about this release:

https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.6/html/release_notes/

Security fixes:

* moment: inefficient parsing algorithm resulting in DoS (CVE-2022-31129)

* passport: incorrect session regeneration (CVE-2022-25896)

* sanitize-html: insecure global regular expression replacement logic may  
lead to ReDoS (CVE-2022-25887)

* terser: insecure use of regular expressions leads to ReDoS  
(CVE-2022-25858)

* search-api: SQL injection leads to remote denial of service  
(CVE-2022-2238)

Bug fixes:

* ACM 2.6.2 images (BZ# 2126195)

* Infra MachineSet Replicate Taint (BZ# 2116528)

* Work agent panic when apply the manifestwork (BZ# 2120920)

* unexpected difference of behavior in inform policies with lists of  
apiGroups for ClusterRole resources (BZ# 2130985)

3. Solution:

For Red Hat Advanced Cluster Management for Kubernetes, see the following  
documentation, which will be updated shortly for this release, for  
important  
instructions on installing this release:

https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.6/html-single/install/index#installing

4. Bugs fixed (https://bugzilla.redhat.com/):

2101669 - CVE-2022-2238 search-api: SQL injection leads to remote denial of service  
2105075 - CVE-2022-31129 moment: inefficient parsing algorithm resulting in DoS  
2111862 - CVE-2022-25896 passport: incorrect session regeneration  
2116528 - Infra MachineSet Replicate Taint  
2120920 - work agent panic when apply the manifestwork  
2123376 - CVE-2022-25887 sanitize-html: insecure global regular expression replacement logic may lead to ReDoS  
2126277 - CVE-2022-25858 terser: insecure use of regular expressions leads to ReDoS  
2130985 - unexpected difference of behaviour in inform policies with lists of apiGroups for ClusterRole ressources

5. References:

https://access.redhat.com/security/cve/CVE-2015-20107  
https://access.redhat.com/security/cve/CVE-2020-35525  
https://access.redhat.com/security/cve/CVE-2020-35527  
https://access.redhat.com/security/cve/CVE-2022-0391  
https://access.redhat.com/security/cve/CVE-2022-0494  
https://access.redhat.com/security/cve/CVE-2022-1353  
https://access.redhat.com/security/cve/CVE-2022-2238  
https://access.redhat.com/security/cve/CVE-2022-2509  
https://access.redhat.com/security/cve/CVE-2022-2588  
https://access.redhat.com/security/cve/CVE-2022-3515  
https://access.redhat.com/security/cve/CVE-2022-23816  
https://access.redhat.com/security/cve/CVE-2022-23825  
https://access.redhat.com/security/cve/CVE-2022-25858  
https://access.redhat.com/security/cve/CVE-2022-25887  
https://access.redhat.com/security/cve/CVE-2022-25896  
https://access.redhat.com/security/cve/CVE-2022-29900  
https://access.redhat.com/security/cve/CVE-2022-29901  
https://access.redhat.com/security/cve/CVE-2022-31129  
https://access.redhat.com/security/cve/CVE-2022-34903  
https://access.redhat.com/security/cve/CVE-2022-37434  
https://access.redhat.com/security/cve/CVE-2022-40674  
https://access.redhat.com/security/updates/classification/#moderate

6. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY2K9StzjgjWX9erEAQiBbw/8CKQ3ZcFqNuB4sb/VejlKEzOmNEeEu6yw  
++bW4JaVsfBCQwUZC9YctDPmF3rq6vpASbHTFchJ4jRw8jb2gOimEAbzDOlEJCo9  
t2O6Ud5utnSrzTJXghV5zr0ZEoz2OlLfDyO9pEpeXGtRCP+zJvXNheKiDJU4rt8m  
9zyQAlkUTW+ECY6D5WE5yaizXVatwOOhitwb1URGipCxyxCwvZq9IwHpfZPfvzRD  
pkmJQy/hfKe2jmnfVsGfilltCrnyTZgWmkLRWfWhJUhttMRPmTRsaB4gWcb5QnGJ  
7iPtP9BLq/BPRfajQoOWXUh7F19xUTlrkJkIEdBAqSglE1OQ0YAe/XqUT5YcxCT1  
j9AeUN26MLQnR3lF7n2NN7WCLAiVd90y9uE1T58KGEHJXB5w+Trdae+2u4a5DlXc  
EFVesa8kWsT1zf26+xsVNyfmxHbYgFfaJ34/knllJCAvIZuKUVAdqSuZXGwbQH7o  
Lwcin81O9DWz+My0DUNDH2S5bNziXMB4fir9E2wNHZ7mBYcpB/DbqSxNdS8E3oGg  
GCPgs0kET7gW8A/z4+G1scrTGP5vrm6aaH0y3ilUT844gaeYh5Kb5Qe8kEgeqh4S  
u7IriHK0aMEm7Fw1KzrzELImX6Qti1GqrfbF7RnwMj2JqkOidj7BJ/1wBnTP+K05  
KDH5TbKA8f4=  
=9tk5  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7313-01

Red Hat Security Advisory 2022-7330-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include privilege escalation and use-after-free vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kpatch-patch security update  
Advisory ID:       RHSA-2022:7330-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7330  
Issue date:        2022-11-02  
CVE Names:         CVE-2022-2585  
====================================================================  
1. Summary:

An update for kpatch-patch is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS (v. 9) - ppc64le, x86_64

3. Description:

This is a kernel live patch module which is automatically loaded by the RPM  
post-install script to modify the code of a running kernel.

Security Fix(es):

* posix cpu timer use-after-free may lead to local privilege escalation  
(CVE-2022-2585)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2114874 - CVE-2022-2585 kernel: posix cpu timer use-after-free may lead to local privilege escalation

6. Package List:

Red Hat Enterprise Linux BaseOS (v. 9):

Source:  
kpatch-patch-5_14_0-70_13_1-1-4.el9_0.src.rpm  
kpatch-patch-5_14_0-70_17_1-1-3.el9_0.src.rpm  
kpatch-patch-5_14_0-70_22_1-1-3.el9_0.src.rpm  
kpatch-patch-5_14_0-70_26_1-1-2.el9_0.src.rpm

ppc64le:  
kpatch-patch-5_14_0-70_13_1-1-4.el9_0.ppc64le.rpm  
kpatch-patch-5_14_0-70_13_1-debuginfo-1-4.el9_0.ppc64le.rpm  
kpatch-patch-5_14_0-70_13_1-debugsource-1-4.el9_0.ppc64le.rpm  
kpatch-patch-5_14_0-70_17_1-1-3.el9_0.ppc64le.rpm  
kpatch-patch-5_14_0-70_17_1-debuginfo-1-3.el9_0.ppc64le.rpm  
kpatch-patch-5_14_0-70_17_1-debugsource-1-3.el9_0.ppc64le.rpm  
kpatch-patch-5_14_0-70_22_1-1-3.el9_0.ppc64le.rpm  
kpatch-patch-5_14_0-70_22_1-debuginfo-1-3.el9_0.ppc64le.rpm  
kpatch-patch-5_14_0-70_22_1-debugsource-1-3.el9_0.ppc64le.rpm  
kpatch-patch-5_14_0-70_26_1-1-2.el9_0.ppc64le.rpm  
kpatch-patch-5_14_0-70_26_1-debuginfo-1-2.el9_0.ppc64le.rpm  
kpatch-patch-5_14_0-70_26_1-debugsource-1-2.el9_0.ppc64le.rpm

x86_64:  
kpatch-patch-5_14_0-70_13_1-1-4.el9_0.x86_64.rpm  
kpatch-patch-5_14_0-70_13_1-debuginfo-1-4.el9_0.x86_64.rpm  
kpatch-patch-5_14_0-70_13_1-debugsource-1-4.el9_0.x86_64.rpm  
kpatch-patch-5_14_0-70_17_1-1-3.el9_0.x86_64.rpm  
kpatch-patch-5_14_0-70_17_1-debuginfo-1-3.el9_0.x86_64.rpm  
kpatch-patch-5_14_0-70_17_1-debugsource-1-3.el9_0.x86_64.rpm  
kpatch-patch-5_14_0-70_22_1-1-3.el9_0.x86_64.rpm  
kpatch-patch-5_14_0-70_22_1-debuginfo-1-3.el9_0.x86_64.rpm  
kpatch-patch-5_14_0-70_22_1-debugsource-1-3.el9_0.x86_64.rpm  
kpatch-patch-5_14_0-70_26_1-1-2.el9_0.x86_64.rpm  
kpatch-patch-5_14_0-70_26_1-debuginfo-1-2.el9_0.x86_64.rpm  
kpatch-patch-5_14_0-70_26_1-debugsource-1-2.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2585  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY2K9OdzjgjWX9erEAQhHwBAAmFCYqZgU3Cuh3eHw9KxVa9qYDFUDrZDt  
rFO4fWiEhsvuSzTL+4WxHZsHQaW8AbLjWBkCqzPXf/LT64lNs6HRc8Jmhg3i892W  
XVXSDN/EbXBqYkwPJBdI6JqK2S4WQPt1wkGOnMILeIczgoXiBuOrCQGHWkb0LwXN  
Ca1Q5H9pxZyE5/1YzZ6XbTL33NleV+Lc1Lhx0hmeJSSPCJ/YnMOHj9TRz5pxNc+b  
0NXwp8tIvI88PYKVOF84yDFjEAOCp3hNPrngrZpEyVnisqjXh14J451itUvdytb8  
IhEMa7LCgkpvTqUb87zhUq8jvVNJZcpDiCy+UmNZcYVZKJ9p7jmGXb9ExjQMgxum  
gVAvcPHEeE933vLMIhETzmhbs50MA5Drq3+1FyBXoyuPSOCWS0DtcZoQzl4ruQjd  
Dv1g8cliXciv2g7/31kdAJ4DFQVOBhqUW/axjHrQ8dtiXHqJEUExkpIc0Wg7woMn  
abjnlYFGOBAA4Q3zed9034TpbbqDEn7/ZKkPDurPd2DtiT8hTWjqs9Fss56VDmy+  
rMV+hD1FTLst3P3Ky8KcshPVmfX6mU+7SvmZgTY2alS6jmU576Fo+EDeu3/HQsxW  
6idF/qK0CgxKpH10heDmL+G/CV8oAk7Le+ShQMMqw4wTkx/N+ocDffimuv1hLYZr  
yvAqmRXF+CE=Ugtn  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7330-01

Debian Linux Security Advisory 5269-1 - Nicky Mouha discovered a buffer overflow in the sha3 module of PyPy, a fast, compliant alternative implementation of the Python language.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5269-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffNovember 02, 2022                     https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : pypy3CVE ID         : CVE-2022-37454Nicky Mouha discovered a buffer overflow in the sha3 module of PyPy, afast, compliant alternative implementation of the Python language.For the stable distribution (bullseye), this problem has been fixed inversion 7.3.5+dfsg-2+deb11u2.We recommend that you upgrade your pypy3 packages.For the detailed security status of pypy3 please refer toits security tracker page at:https://security-tracker.debian.org/tracker/pypy3Further information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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2m5H-----END PGP SIGNATURE-----

Debian Security Advisory 5269-1

Red Hat Security Advisory 2022-7319-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include privilege escalation and use-after-free vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel-rt security and bug fix update  
Advisory ID:       RHSA-2022:7319-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7319  
Issue date:        2022-11-02  
CVE Names:         CVE-2022-2585 CVE-2022-30594  
====================================================================  
1. Summary:

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Real Time (v. 9) - x86_64  
Red Hat Enterprise Linux Real Time for NFV (v. 9) - x86_64

3. Description:

The kernel-rt packages provide the Real Time Linux Kernel, which enables  
fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

* posix cpu timer use-after-free may lead to local privilege escalation  
(CVE-2022-2585)

* Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP  
option (CVE-2022-30594)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* Update RT source tree to the latest RHEL-9.0.z4 Batch (BZ#2123498)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2085300 - CVE-2022-30594 kernel: Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP option  
2114874 - CVE-2022-2585 kernel: posix cpu timer use-after-free may lead to local privilege escalation

6. Package List:

Red Hat Enterprise Linux Real Time for NFV (v. 9):

Source:  
kernel-rt-5.14.0-70.30.1.rt21.102.el9_0.src.rpm

x86_64:  
kernel-rt-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-core-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-core-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-debuginfo-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-devel-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-kvm-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-modules-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-modules-extra-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debuginfo-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-devel-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-kvm-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-modules-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-modules-extra-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm

Red Hat Enterprise Linux Real Time (v. 9):

Source:  
kernel-rt-5.14.0-70.30.1.rt21.102.el9_0.src.rpm

x86_64:  
kernel-rt-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-core-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-core-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-debuginfo-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-devel-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-modules-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debug-modules-extra-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debuginfo-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-devel-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-modules-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm  
kernel-rt-modules-extra-5.14.0-70.30.1.rt21.102.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2585  
https://access.redhat.com/security/cve/CVE-2022-30594  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY2K9QtzjgjWX9erEAQiFLQ/+K6viC4XHwAj5lozXPGUlcQGQbeWWMB7q  
0IMXwfGG+V8e4hRGQkqzBy2xZ5utcryPOCEbtygSbcZVHzyTvZbVU0yxJiH1fKLO  
+YfjYCoiu19G/KRkhOUEOB/23yJE9iKAL78pobh4GRCZ5/dp2tQDgRT7Nh72RXQT  
G/QkCNxQ5KMFtcsVNg4yN8BR5XS2vT83UrQ/B0PK4hcTIGlNw8OD2m6269HvSU4O  
fsVnF/igjUeLCcjCp/bHlT7+mJaTDSOro5EiMtEi2Q12etYIMnFIWBa8C8SzrjQc  
Mtn6Olon8s6uZt7KHan1zjJX6bGCKmnJZULW1IPnpDMWIRHBccOiM7vb9hrQVqCT  
QBWzf9hEOxc6ZzAwEO0mmFC6qrnBQUClZRF1/crDswTcp64RhBBgQZ0LlQvs1M1K  
L8wnuPCL4gY50B9nH2CX2sg8OffX9T8jNakSSbZCLduFvp0r7m2oQOK9vF5lMfQX  
3B9vvq628DDVzveiw/LRxXtrFHAOM/SlYhz8iTp+L9JMQiwIl8c6SRMkXEqvLvLH  
C2iizwJircxlyXO6Jnd36yiy2Acbr24gPP2cycCYvlAWEegTcUAHEAiYVRmNiEzO  
csQhdzfQvGAawuiNSxuoNY608XWFdgBLGnXMjWKEZaxZiZi7W38ptsTgSn6LnEms  
fL5bpq4kKqk=cpHx  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7319-01

Red Hat Security Advisory 2022-7344-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include privilege escalation and use-after-free vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kpatch-patch security update  
Advisory ID:       RHSA-2022:7344-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7344  
Issue date:        2022-11-02  
CVE Names:         CVE-2022-2588  
====================================================================  
1. Summary:

An update for kpatch-patch is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Server (v. 7) - ppc64le, x86_64

3. Description:

This is a kernel live patch module which is automatically loaded by the RPM  
post-install script to modify the code of a running kernel.

Security Fix(es):

* a use-after-free in cls_route filter implementation may lead to privilege  
escalation (CVE-2022-2588)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2114849 - CVE-2022-2588 kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation

6. Package List:

Red Hat Enterprise Linux Server (v. 7):

Source:  
kpatch-patch-3_10_0-1160_62_1-1-3.el7.src.rpm  
kpatch-patch-3_10_0-1160_66_1-1-2.el7.src.rpm  
kpatch-patch-3_10_0-1160_71_1-1-1.el7.src.rpm  
kpatch-patch-3_10_0-1160_76_1-1-1.el7.src.rpm

ppc64le:  
kpatch-patch-3_10_0-1160_62_1-1-3.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_62_1-debuginfo-1-3.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_66_1-1-2.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_66_1-debuginfo-1-2.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_71_1-1-1.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_71_1-debuginfo-1-1.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_76_1-1-1.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_76_1-debuginfo-1-1.el7.ppc64le.rpm

x86_64:  
kpatch-patch-3_10_0-1160_62_1-1-3.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_62_1-debuginfo-1-3.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_66_1-1-2.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_66_1-debuginfo-1-2.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_71_1-1-1.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_71_1-debuginfo-1-1.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_76_1-1-1.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_76_1-debuginfo-1-1.el7.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2588  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY2K9LNzjgjWX9erEAQhsnA//UwMUCdN9W7+utXqcMS6RGN73XG9tWWwq  
IWdXzGq+LnE+qllL5QeY33PKcAFZSOGLrRT/g1uy2C4K+ib4Y2gJ9Xd4FPfnnmgU  
wCQMNCy8aPPPnDcomwfiAYNhVdH/RLwQniiYpcd4NcD+8Xrwn4X9QZIitT4o7ihZ  
oD1DQLlHylRKiyf1R3QtnkJcdDgkMf2Lfs4pldhjqXkVS2TaK583dG9kXX2SAvWC  
a//aLchmWTL9gECnVEbDE7gSLclR9hNoaMWIKXoHvnathc65nStoeU7YxFB55xrq  
9SU1tHNY2NWUsblsOVGbyUdxsE8UoEXnwBVwwUh60us/XHpcbQD3yIAKBAYuxr21  
FDAKG3QZ+ucju71h7W2mOL9LWd5aFF8tsp7yHoyc2SFI7bDLRPNZSgRMAqhqPohN  
1CIAAUrO2ep+o9/KjQhgOpJS8VZLRLxNFA5xCcQq6g1QWFYXA3waDYxxpDTGLVDz  
mSwiZtUFec1ReepALgo5B5vxpGSRvWWKiS1jh8cnNynwm+u0veF15f9di+jI1B8J  
B8giDVmK/jb1Tp/SqpK1NwFVBnL6WJ56VKAKQ8tEfPtmc6PbIAmOFCO60YEX4Mpo  
i8+sBeSnYiCzoDckA07DAldePiRO6nU6Xph0V16//T1WUMyfTYeQh5HQ1hiDiVHe  
6T8/N5WxKa8=8+4B  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7344-01

Red Hat Security Advisory 2022-7314-01 - The zlib packages provide a general-purpose lossless data compression library that is used by many different programs. Issues addressed include buffer over-read and buffer overflow vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: zlib security update  
Advisory ID:       RHSA-2022:7314-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7314  
Issue date:        2022-11-02  
CVE Names:         CVE-2022-37434  
====================================================================  
1. Summary:

An update for zlib is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat CodeReady Linux Builder (v. 9) - aarch64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux BaseOS (v. 9) - aarch64, ppc64le, s390x, x86_64

3. Description:

The zlib packages provide a general-purpose lossless data compression  
library that is used by many different programs.

Security Fix(es):

* zlib: a heap-based buffer over-read or buffer overflow in inflate in  
inflate.c via a large gzip header extra field (CVE-2022-37434)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2116639 - CVE-2022-37434 zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

aarch64:  
minizip-compat-debuginfo-1.2.11-32.el9_0.aarch64.rpm  
zlib-debuginfo-1.2.11-32.el9_0.aarch64.rpm  
zlib-debugsource-1.2.11-32.el9_0.aarch64.rpm  
zlib-devel-1.2.11-32.el9_0.aarch64.rpm

ppc64le:  
minizip-compat-debuginfo-1.2.11-32.el9_0.ppc64le.rpm  
zlib-debuginfo-1.2.11-32.el9_0.ppc64le.rpm  
zlib-debugsource-1.2.11-32.el9_0.ppc64le.rpm  
zlib-devel-1.2.11-32.el9_0.ppc64le.rpm

s390x:  
minizip-compat-debuginfo-1.2.11-32.el9_0.s390x.rpm  
zlib-debuginfo-1.2.11-32.el9_0.s390x.rpm  
zlib-debugsource-1.2.11-32.el9_0.s390x.rpm  
zlib-devel-1.2.11-32.el9_0.s390x.rpm

x86_64:  
minizip-compat-debuginfo-1.2.11-32.el9_0.i686.rpm  
minizip-compat-debuginfo-1.2.11-32.el9_0.x86_64.rpm  
zlib-debuginfo-1.2.11-32.el9_0.i686.rpm  
zlib-debuginfo-1.2.11-32.el9_0.x86_64.rpm  
zlib-debugsource-1.2.11-32.el9_0.i686.rpm  
zlib-debugsource-1.2.11-32.el9_0.x86_64.rpm  
zlib-devel-1.2.11-32.el9_0.i686.rpm  
zlib-devel-1.2.11-32.el9_0.x86_64.rpm

Red Hat Enterprise Linux BaseOS (v. 9):

Source:  
zlib-1.2.11-32.el9_0.src.rpm

aarch64:  
minizip-compat-debuginfo-1.2.11-32.el9_0.aarch64.rpm  
zlib-1.2.11-32.el9_0.aarch64.rpm  
zlib-debuginfo-1.2.11-32.el9_0.aarch64.rpm  
zlib-debugsource-1.2.11-32.el9_0.aarch64.rpm

ppc64le:  
minizip-compat-debuginfo-1.2.11-32.el9_0.ppc64le.rpm  
zlib-1.2.11-32.el9_0.ppc64le.rpm  
zlib-debuginfo-1.2.11-32.el9_0.ppc64le.rpm  
zlib-debugsource-1.2.11-32.el9_0.ppc64le.rpm

s390x:  
minizip-compat-debuginfo-1.2.11-32.el9_0.s390x.rpm  
zlib-1.2.11-32.el9_0.s390x.rpm  
zlib-debuginfo-1.2.11-32.el9_0.s390x.rpm  
zlib-debugsource-1.2.11-32.el9_0.s390x.rpm

x86_64:  
minizip-compat-debuginfo-1.2.11-32.el9_0.i686.rpm  
minizip-compat-debuginfo-1.2.11-32.el9_0.x86_64.rpm  
zlib-1.2.11-32.el9_0.i686.rpm  
zlib-1.2.11-32.el9_0.x86_64.rpm  
zlib-debuginfo-1.2.11-32.el9_0.i686.rpm  
zlib-debuginfo-1.2.11-32.el9_0.x86_64.rpm  
zlib-debugsource-1.2.11-32.el9_0.i686.rpm  
zlib-debugsource-1.2.11-32.el9_0.x86_64.rpm

Red Hat CodeReady Linux Builder (v. 9):

aarch64:  
minizip-compat-debuginfo-1.2.11-32.el9_0.aarch64.rpm  
zlib-debuginfo-1.2.11-32.el9_0.aarch64.rpm  
zlib-debugsource-1.2.11-32.el9_0.aarch64.rpm  
zlib-static-1.2.11-32.el9_0.aarch64.rpm

ppc64le:  
minizip-compat-debuginfo-1.2.11-32.el9_0.ppc64le.rpm  
zlib-debuginfo-1.2.11-32.el9_0.ppc64le.rpm  
zlib-debugsource-1.2.11-32.el9_0.ppc64le.rpm  
zlib-static-1.2.11-32.el9_0.ppc64le.rpm

s390x:  
minizip-compat-debuginfo-1.2.11-32.el9_0.s390x.rpm  
zlib-debuginfo-1.2.11-32.el9_0.s390x.rpm  
zlib-debugsource-1.2.11-32.el9_0.s390x.rpm  
zlib-static-1.2.11-32.el9_0.s390x.rpm

x86_64:  
minizip-compat-debuginfo-1.2.11-32.el9_0.i686.rpm  
minizip-compat-debuginfo-1.2.11-32.el9_0.x86_64.rpm  
zlib-debuginfo-1.2.11-32.el9_0.i686.rpm  
zlib-debuginfo-1.2.11-32.el9_0.x86_64.rpm  
zlib-debugsource-1.2.11-32.el9_0.i686.rpm  
zlib-debugsource-1.2.11-32.el9_0.x86_64.rpm  
zlib-static-1.2.11-32.el9_0.i686.rpm  
zlib-static-1.2.11-32.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-37434  
https://access.redhat.com/security/updates/classification/#moderate  
https://access.redhat.com/security/updates/classification#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY2K9ItzjgjWX9erEAQiHfxAAlO5bDXesPL2aHyX6C15K0NCSqYYSugpc  
jh5XWHtBDSf0tFLDI7D0ru2cDe98WRoQ0MJNZA2HNwCx1tznW6jJX4cnYHlnCeC4  
/thKFW1MfXV/n40Fu7Boq8BmrLCHixTwe/pGuz19YYIJeKexdDmN5mf5tYp01BXW  
uDwCfC0VgwU0zFcG4TXvHZdI+CDTFr/azkC/aXpFCVyTMZAw5ZiTRgu1WL/UKyrU  
prhsHcxXoICqJbJYu5gql3QGaXwGXYP/N7RMlfaSI60FL6trDE5+1f7eJTugsxwv  
jyaarOy7AWlno/lEMrffQ7/9k9xUpowt8Qt0LDjuTP3tPlGULkyb1DYQOUkttniD  
b4X4k/DY5PBwZTOeGsPBbFcvliwcwgMVqmGfZHZcsRc7VSsGzrGsyowVxvxJqasP  
VPjOMOKeQVEf3Kpl0Nvfd5D2k24NlqgXpiLpSevwkJTi6c7VWUPrGGCTmL5XUy8T  
4ISiB+bDwlmI5LxhqOyVdHLeVnNaeR6wxEfQ855CDCXMAeElHodi+KxGvqrWceVQ  
pEinvfduBT1Y8HO8ztDWYJ6KM1r/9JOTiACpMoKGw5KqSQnSrPwCuoZIwlXK6fiE  
C26HKcnaq3GK0IDkT+LaVUtl4k8Ja8V4Rv0OMwU1JgbwTUTI/iQweKDAldn8/cbA  
NVQfk+Oscic=3u2M  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7314-01

Red Hat Security Advisory 2022-7326-01 - The Public Key Infrastructure Core contains fundamental packages required by Red Hat Certificate System.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: pki-core security update  
Advisory ID:       RHSA-2022:7326-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7326  
Issue date:        2022-11-02  
CVE Names:         CVE-2022-2414  
====================================================================  
1. Summary:

An update for pki-core is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The Public Key Infrastructure (PKI) Core contains fundamental packages  
required by Red Hat Certificate System.

Security Fix(es):

* pki-core: access to external entities when parsing XML can lead to XXE  
(CVE-2022-2414)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2104676 - CVE-2022-2414 pki-core: access to external entities when parsing XML can lead to XXE

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
pki-core-11.0.6-2.el9_0.src.rpm

aarch64:  
pki-symkey-11.0.6-2.el9_0.aarch64.rpm  
pki-tools-11.0.6-2.el9_0.aarch64.rpm

noarch:  
pki-acme-11.0.6-2.el9_0.noarch.rpm  
pki-base-11.0.6-2.el9_0.noarch.rpm  
pki-base-java-11.0.6-2.el9_0.noarch.rpm  
pki-ca-11.0.6-2.el9_0.noarch.rpm  
pki-kra-11.0.6-2.el9_0.noarch.rpm  
pki-server-11.0.6-2.el9_0.noarch.rpm  
python3-pki-11.0.6-2.el9_0.noarch.rpm

ppc64le:  
pki-symkey-11.0.6-2.el9_0.ppc64le.rpm  
pki-tools-11.0.6-2.el9_0.ppc64le.rpm

s390x:  
pki-symkey-11.0.6-2.el9_0.s390x.rpm  
pki-tools-11.0.6-2.el9_0.s390x.rpm

x86_64:  
pki-symkey-11.0.6-2.el9_0.x86_64.rpm  
pki-tools-11.0.6-2.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2414  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY2K9PNzjgjWX9erEAQjcRQ/+P+5dpX6ei0kSbhir0uUtECC+YYwY3WlU  
+S7xfH/+sSjOKqLypjxrQd4lxO5DOV5dHW/BnXneo8/bPwti3VmrBM7zSHwLZKHU  
oXj+kQnOzXhJrvnqvBY+anXAqKXJmbwD5dBwcsK3/Gc1C8xPjLEbYpj/2S0iYNDY  
2Ls5SUEkkFSOdTSA79VSIp6LAaZN+Hz2tnMqU4uj8xEZ9j4WjO/S6XkadAgb5blP  
5pYmPQu3m14VlFPyw0u6eGqmCZepr17yHKAy2EE19UYUUD9X6Au3AJg1RqH4NWHZ  
X1Xs1u0yEIMFD61gikk3af63pi7BR8x++RlzpjUYjFyi05wys4a3Ldqvsmcvw4JO  
XnDaQ6nDKDgno9lo/0jN62S5z/qXQmPqYuhdROZtyHrkzP6PvQpVgQT6M9z119E4  
8eUY7m3cfcFxBaGlC+snTQLWiw9Hhf+x1yH9tlwIMzd3P7xqPdxPLRhQNQK1D0RN  
bkUNiZfKDSHioW6YuHoLYCwnuj70jI/w9ET9zdThrLVKnqq4OU9TzG3BGii782lI  
ODk6+xm8ViiZFdXwg8dYpeNTOeCM5saDHVkeI5CYfr5Zo8zTqnldITNuC8L+5hwR  
BPB/fbfluxEtJR/ckhLA7AKzC826PGrk+oQwadJrX6CsN/qxTLJlkZizfPN9ZXb9  
nHJWA6oIWAE=sFpp  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7326-01

Red Hat Security Advisory 2022-7340-01 - The php-pear package contains the PHP Extension and Application Repository, a framework and distribution system for reusable PHP components. Issues addressed include file overwrite and traversal vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: php-pear security update  
Advisory ID:       RHSA-2022:7340-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7340  
Issue date:        2022-11-02  
CVE Names:         CVE-2020-28948 CVE-2020-28949 CVE-2020-36193  
====================================================================  
1. Summary:

An update for php-pear is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Server (v. 7) - noarch  
Red Hat Enterprise Linux Workstation (v. 7) - noarch

3. Description:

The php-pear package contains the PHP Extension and Application Repository  
(PEAR), a framework and distribution system for reusable PHP components.

Security Fix(es):

* Archive_Tar: allows an unserialization attack because phar: is blocked  
but PHAR: is not blocked (CVE-2020-28948)

* Archive_Tar: improper filename sanitization leads to file overwrites  
(CVE-2020-28949)

* Archive_Tar: directory traversal due to inadequate checking of symbolic  
links (CVE-2020-36193)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the updated packages, the httpd daemon must be restarted  
for the update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

1904001 - CVE-2020-28948 Archive_Tar: allows an unserialization attack because phar: is blocked but PHAR: is not blocked  
1910323 - CVE-2020-28949 Archive_Tar: improper filename sanitization leads to file overwrites  
1942961 - CVE-2020-36193 Archive_Tar: directory traversal due to inadequate checking of symbolic links

6. Package List:

Red Hat Enterprise Linux Server (v. 7):

Source:  
php-pear-1.9.4-23.el7_9.src.rpm

noarch:  
php-pear-1.9.4-23.el7_9.noarch.rpm

Red Hat Enterprise Linux Workstation (v. 7):

Source:  
php-pear-1.9.4-23.el7_9.src.rpm

noarch:  
php-pear-1.9.4-23.el7_9.noarch.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2020-28948  
https://access.redhat.com/security/cve/CVE-2020-28949  
https://access.redhat.com/security/cve/CVE-2020-36193  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY2K9M9zjgjWX9erEAQhf7g//SrEF1zLnoF6ccPz+hpKf5ujlqkfF8w1g  
L6o3Wslzsg3RM32mwzlp5HNFslSrYT/KL452F4tcethaOdLmXMuRhDo3iRVSjIg+  
R8bohcbIygb61o4kisztT6K8EdhVSwalRC5QBeYrhtaDZ+iMAvNEsQ63i94dCLUo  
87yC+z15zPb7lOZyg6iYVvu7rG9Kkj2s742Ul0ktGQbuBLQBxzhjeOwiPUwv2aWE  
/0pAzF0QqzZba1wxEpuc5DC4ZSXBqSgPRKagiS2bDeX7jcx+IIQcQLW/RZ3ArpmF  
/D0AAz/FatynCL/aB3VrepMhZN34N1HgpLUjqc6mHUP0+VxfqjiWA4t7n/39plg6  
JJiq+293JHkSG7a8P5PbsSuOIK8v2YalztxhQLGEvtzohWkOcAoF3PaYvzuE0cbb  
B4Ik5gGK+u2I4ruTqYrePlvY81Y09pkhg7lRmH+LLpx2jDOhsPodDlyRnNRnGDbI  
edWNrOGL95SFIfPG5TCf3VmDResHiDz4qKkonzsdRGehkPJly8/95JD/naSelgmJ  
e3ScLqEgSx3QE7zKz3RvK96oilulJbZVZqndKDVhEZ54f9cskhojR5Ej1w4o6Iv0  
SUMAIgObMDhvVwqlrZI5Fvo7dpDVTSKSvtEVzU59Dc7xpt4TbMpp2u/9aBOmy4Zg  
5tiMcbUOMb8=Yyw2  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7340-01

Red Hat Security Advisory 2022-7337-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include code execution, privilege escalation, and use-after-free vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel security and bug fix update  
Advisory ID:       RHSA-2022:7337-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7337  
Issue date:        2022-11-02  
CVE Names:         CVE-2022-2588 CVE-2022-23816 CVE-2022-23825  
                   CVE-2022-26373 CVE-2022-29900 CVE-2022-29901  
====================================================================  
1. Summary:

An update for kernel is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Client (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux Client Optional (v. 7) - x86_64  
Red Hat Enterprise Linux ComputeNode (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64  
Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, x86_64  
Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux  
operating system.

Security Fix(es):

* a use-after-free in cls_route filter implementation may lead to privilege  
escalation (CVE-2022-2588)

* RetBleed Arbitrary Speculative Code Execution with Return Instructions  
(CVE-2022-23816, CVE-2022-29900)

* Branch Type Confusion (non-retbleed) (CVE-2022-23825)

* Intel: Post-barrier Return Stack Buffer Predictions (CVE-2022-26373)

* Intel: RetBleed Arbitrary Speculative Code Execution with Return  
Instructions (CVE-2022-29901)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* lpfc panics in lpfc_els_free_iocb() during port recovery (BZ#1969988)

* mlx5 reports error messages during shutdown then panic with mce  
(BZ#2077711)

* Kernel panic due to hard lockup caused by deadlock between tasklist_lock  
and k_itimer->it_lock (BZ#2115147)

* fix excess double put in nfs_prime_dcache (BZ#2117856)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2090226 - CVE-2022-23816 CVE-2022-29900 hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions  
2103148 - CVE-2022-29901 hw: cpu: Intel: RetBleed Arbitrary Speculative Code Execution with Return Instructions  
2103153 - CVE-2022-23825 hw: cpu: AMD: Branch Type Confusion (non-retbleed)  
2114849 - CVE-2022-2588 kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation  
2115065 - CVE-2022-26373 hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions

6. Package List:

Red Hat Enterprise Linux Client (v. 7):

Source:  
kernel-3.10.0-1160.80.1.el7.src.rpm

noarch:  
kernel-abi-whitelists-3.10.0-1160.80.1.el7.noarch.rpm  
kernel-doc-3.10.0-1160.80.1.el7.noarch.rpm

x86_64:  
bpftool-3.10.0-1160.80.1.el7.x86_64.rpm  
bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-devel-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-devel-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-headers-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-libs-3.10.0-1160.80.1.el7.x86_64.rpm  
perf-3.10.0-1160.80.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
python-perf-3.10.0-1160.80.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

Red Hat Enterprise Linux Client Optional (v. 7):

x86_64:  
bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-libs-devel-3.10.0-1160.80.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

Red Hat Enterprise Linux ComputeNode (v. 7):

Source:  
kernel-3.10.0-1160.80.1.el7.src.rpm

noarch:  
kernel-abi-whitelists-3.10.0-1160.80.1.el7.noarch.rpm  
kernel-doc-3.10.0-1160.80.1.el7.noarch.rpm

x86_64:  
bpftool-3.10.0-1160.80.1.el7.x86_64.rpm  
bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-devel-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-devel-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-headers-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-libs-3.10.0-1160.80.1.el7.x86_64.rpm  
perf-3.10.0-1160.80.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
python-perf-3.10.0-1160.80.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

Red Hat Enterprise Linux ComputeNode Optional (v. 7):

x86_64:  
bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-libs-devel-3.10.0-1160.80.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

Red Hat Enterprise Linux Server (v. 7):

Source:  
kernel-3.10.0-1160.80.1.el7.src.rpm

noarch:  
kernel-abi-whitelists-3.10.0-1160.80.1.el7.noarch.rpm  
kernel-doc-3.10.0-1160.80.1.el7.noarch.rpm

ppc64:  
bpftool-3.10.0-1160.80.1.el7.ppc64.rpm  
bpftool-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-bootwrapper-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-debug-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-debug-devel-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-debuginfo-common-ppc64-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-devel-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-headers-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-tools-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-tools-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-tools-libs-3.10.0-1160.80.1.el7.ppc64.rpm  
perf-3.10.0-1160.80.1.el7.ppc64.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm  
python-perf-3.10.0-1160.80.1.el7.ppc64.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

ppc64le:  
bpftool-3.10.0-1160.80.1.el7.ppc64le.rpm  
bpftool-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-bootwrapper-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-debug-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-devel-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-headers-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-tools-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-tools-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-tools-libs-3.10.0-1160.80.1.el7.ppc64le.rpm  
perf-3.10.0-1160.80.1.el7.ppc64le.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm  
python-perf-3.10.0-1160.80.1.el7.ppc64le.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

s390x:  
bpftool-3.10.0-1160.80.1.el7.s390x.rpm  
bpftool-debuginfo-3.10.0-1160.80.1.el7.s390x.rpm  
kernel-3.10.0-1160.80.1.el7.s390x.rpm  
kernel-debug-3.10.0-1160.80.1.el7.s390x.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.s390x.rpm  
kernel-debug-devel-3.10.0-1160.80.1.el7.s390x.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.s390x.rpm  
kernel-debuginfo-common-s390x-3.10.0-1160.80.1.el7.s390x.rpm  
kernel-devel-3.10.0-1160.80.1.el7.s390x.rpm  
kernel-headers-3.10.0-1160.80.1.el7.s390x.rpm  
kernel-kdump-3.10.0-1160.80.1.el7.s390x.rpm  
kernel-kdump-debuginfo-3.10.0-1160.80.1.el7.s390x.rpm  
kernel-kdump-devel-3.10.0-1160.80.1.el7.s390x.rpm  
perf-3.10.0-1160.80.1.el7.s390x.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.s390x.rpm  
python-perf-3.10.0-1160.80.1.el7.s390x.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.s390x.rpm

x86_64:  
bpftool-3.10.0-1160.80.1.el7.x86_64.rpm  
bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-devel-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-devel-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-headers-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-libs-3.10.0-1160.80.1.el7.x86_64.rpm  
perf-3.10.0-1160.80.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
python-perf-3.10.0-1160.80.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 7):

ppc64:  
bpftool-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-debuginfo-common-ppc64-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-tools-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm  
kernel-tools-libs-devel-3.10.0-1160.80.1.el7.ppc64.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.ppc64.rpm

ppc64le:  
bpftool-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-debug-devel-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-tools-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm  
kernel-tools-libs-devel-3.10.0-1160.80.1.el7.ppc64le.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.ppc64le.rpm

x86_64:  
bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-libs-devel-3.10.0-1160.80.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 7):

Source:  
kernel-3.10.0-1160.80.1.el7.src.rpm

noarch:  
kernel-abi-whitelists-3.10.0-1160.80.1.el7.noarch.rpm  
kernel-doc-3.10.0-1160.80.1.el7.noarch.rpm

x86_64:  
bpftool-3.10.0-1160.80.1.el7.x86_64.rpm  
bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-devel-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-devel-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-headers-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-libs-3.10.0-1160.80.1.el7.x86_64.rpm  
perf-3.10.0-1160.80.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
python-perf-3.10.0-1160.80.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

Red Hat Enterprise Linux Workstation Optional (v. 7):

x86_64:  
bpftool-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
kernel-tools-libs-devel-3.10.0-1160.80.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.80.1.el7.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2588  
https://access.redhat.com/security/cve/CVE-2022-23816  
https://access.redhat.com/security/cve/CVE-2022-23825  
https://access.redhat.com/security/cve/CVE-2022-26373  
https://access.redhat.com/security/cve/CVE-2022-29900  
https://access.redhat.com/security/cve/CVE-2022-29901  
https://access.redhat.com/security/updates/classification/#important  
https://access.redhat.com/solutions/6971358

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY2K9KdzjgjWX9erEAQjbHQ//b/sY9t/NBkK+XiKoe/02KTfkUBUNJaIe  
v7xs7oJHskxABWcY9ze1iUVS7aHZ4/CygDsKHb5dNq6z7x4li8aCWCQNZStxc1jL  
knCCvHsJ3Ekw1USNBbujbKA13kT3rBQlyQk0mDgfwrDZNaE9mPlnL5rycXRXQFeY  
ezEz5VzjM59pxTkWBN45hpHjZF26VrYup383I3asnwinpZF54xzQebVMDpVmO4mh  
e1TaXl6pwzP0ZfPyC+HYx7h36WyiXNrvoDtRJBWn7oJBN7fWzHNt4phvktQdRDdL  
t/tQc91k3KigZ9GOAdmupfORlgzLsuu/jgdpezwqhjzXgElnWmIZFZF2L224AQup  
PyzdK9ud2ot8lIk5QjI1oyWL19ppoNxxIYV15AngPoOOgikuZjoUj8df1IfjBq0p  
XRN2rdmv4Lccj/7wSb8450LGmRWX32SbJuBUGOVXl80RU530Uu3S+QteotYEbUtn  
jwVrXamfqfn0S86Hm+x0bkJ4lfXzAxoneSdezaW5ipoeeIdhq/y21LLue6+n+fPk  
+SmwLgriQ0c51iTROPOZbwAkF58iQrLmLHV9Trf5CazAsKpGLe1/nYx6pwiOPT1v  
5X5Ga08pzuthhAn9bZvTn+/x2A1EVraUFKCqF7Of1+Z9QB48UaKQnLUlMKxL+ztC  
zYvUNS92+Ns=QW8W  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Source

Packet Storm