Red Hat Security Advisory 2023-1559-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a use-after-free vulnerability.

Red Hat Security Advisory 2023-1559-01

Red Hat Security Advisory 2023-1588-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel security update  
Advisory ID:       RHSA-2023:1588-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1588  
Issue date:        2023-04-04  
CVE Names:         CVE-2023-0266  
====================================================================  
1. Summary:

An update for kernel is now available for Red Hat Enterprise Linux 8.1  
Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS E4S (v. 8.1) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux  
operating system.

Security Fix(es):

* ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF  
(CVE-2023-0266)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2163379 - CVE-2023-0266 ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF

6. Package List:

Red Hat Enterprise Linux BaseOS E4S (v. 8.1):

Source:  
kernel-4.18.0-147.81.1.el8_1.src.rpm

aarch64:  
bpftool-4.18.0-147.81.1.el8_1.aarch64.rpm  
bpftool-debuginfo-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-core-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-cross-headers-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-debug-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-debug-core-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-debug-debuginfo-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-debug-devel-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-debug-modules-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-debug-modules-extra-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-debuginfo-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-debuginfo-common-aarch64-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-devel-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-headers-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-modules-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-modules-extra-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-tools-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-tools-debuginfo-4.18.0-147.81.1.el8_1.aarch64.rpm  
kernel-tools-libs-4.18.0-147.81.1.el8_1.aarch64.rpm  
perf-4.18.0-147.81.1.el8_1.aarch64.rpm  
perf-debuginfo-4.18.0-147.81.1.el8_1.aarch64.rpm  
python3-perf-4.18.0-147.81.1.el8_1.aarch64.rpm  
python3-perf-debuginfo-4.18.0-147.81.1.el8_1.aarch64.rpm

noarch:  
kernel-abi-whitelists-4.18.0-147.81.1.el8_1.noarch.rpm  
kernel-doc-4.18.0-147.81.1.el8_1.noarch.rpm

ppc64le:  
bpftool-4.18.0-147.81.1.el8_1.ppc64le.rpm  
bpftool-debuginfo-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-core-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-cross-headers-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-debug-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-debug-core-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-debug-debuginfo-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-debug-devel-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-debug-modules-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-debug-modules-extra-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-debuginfo-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-devel-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-headers-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-modules-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-modules-extra-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-tools-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-tools-debuginfo-4.18.0-147.81.1.el8_1.ppc64le.rpm  
kernel-tools-libs-4.18.0-147.81.1.el8_1.ppc64le.rpm  
perf-4.18.0-147.81.1.el8_1.ppc64le.rpm  
perf-debuginfo-4.18.0-147.81.1.el8_1.ppc64le.rpm  
python3-perf-4.18.0-147.81.1.el8_1.ppc64le.rpm  
python3-perf-debuginfo-4.18.0-147.81.1.el8_1.ppc64le.rpm

s390x:  
bpftool-4.18.0-147.81.1.el8_1.s390x.rpm  
bpftool-debuginfo-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-core-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-cross-headers-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-debug-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-debug-core-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-debug-debuginfo-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-debug-devel-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-debug-modules-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-debug-modules-extra-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-debuginfo-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-debuginfo-common-s390x-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-devel-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-headers-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-modules-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-modules-extra-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-tools-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-tools-debuginfo-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-zfcpdump-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-zfcpdump-core-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-zfcpdump-debuginfo-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-zfcpdump-devel-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-zfcpdump-modules-4.18.0-147.81.1.el8_1.s390x.rpm  
kernel-zfcpdump-modules-extra-4.18.0-147.81.1.el8_1.s390x.rpm  
perf-4.18.0-147.81.1.el8_1.s390x.rpm  
perf-debuginfo-4.18.0-147.81.1.el8_1.s390x.rpm  
python3-perf-4.18.0-147.81.1.el8_1.s390x.rpm  
python3-perf-debuginfo-4.18.0-147.81.1.el8_1.s390x.rpm

x86_64:  
bpftool-4.18.0-147.81.1.el8_1.x86_64.rpm  
bpftool-debuginfo-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-core-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-cross-headers-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-debug-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-debug-core-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-debug-debuginfo-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-debug-devel-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-debug-modules-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-debug-modules-extra-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-debuginfo-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-debuginfo-common-x86_64-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-devel-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-headers-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-modules-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-modules-extra-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-tools-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-tools-debuginfo-4.18.0-147.81.1.el8_1.x86_64.rpm  
kernel-tools-libs-4.18.0-147.81.1.el8_1.x86_64.rpm  
perf-4.18.0-147.81.1.el8_1.x86_64.rpm  
perf-debuginfo-4.18.0-147.81.1.el8_1.x86_64.rpm  
python3-perf-4.18.0-147.81.1.el8_1.x86_64.rpm  
python3-perf-debuginfo-4.18.0-147.81.1.el8_1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-0266  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZCvqp9zjgjWX9erEAQiaXhAAg1lFw+m+yEwVdLTbaGOkzg0Wla/fIFT9  
KiLKyv/l8wHRKUHFkcyNXD35Ux2Ob+BFkEwR2CddOf+6ZJQz9cM9IroCQ4fgiNrp  
wlRWQYtKfq37HTUXP5Heiwqe7yw1eiZdZ/UuqoERReyreMdUjahKuP4w/UxG1+Pw  
/xyNL10Oz52Ws/qGyLAv4UB55b4h94FwNDhskvVkw9/hCk0qMJrcECDZn+YLoCg3  
VaN/MGl8uSRMf3DKnyw/Z/2v9AZd0X4AqKmzbNWUFyQ86bwaVSC37B/G5uQQZTSS  
XlnjwUgOLjg+SoxN7UrYcC3It+7UAx7Gbg5gezXXzCWjRXhn/Tqc9Y/+opMJC21X  
2HkK2RvVftM06R56RF2/RMTmIf6nbXO0d0unegB0RFk+wd1Q68/8osnYfsG/DFaK  
k3TMxoUX1IlWVdrxHvp8BswFc9wStM6bdGSXm47STQne1orr9iDXJMuq9KsD9ZBT  
9nvp/1gj/aLKNaCyH8LxgAKASR+KmtBQUAvV9RF0slNRkiDOGl2WwoZGYGA1uVp6  
azPCBxaE5NUiiWgAnVcYCQimQh7Joqcz0szw7BDHuaF2RziR+vo0DqDR7xNameTH  
dCfVA4WEMEE/jeb6XumN2uH+SktTrjaM1owIRj6kxp7U0WinajB3VVVahd31R8mi  
vcBom9i111Y=wiwd  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1588-01

Red Hat Security Advisory 2023-1556-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel-rt security and bug fix update  
Advisory ID:       RHSA-2023:1556-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1556  
Issue date:        2023-04-04  
CVE Names:         CVE-2023-0266 CVE-2023-0461  
====================================================================  
1. Summary:

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.4  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Real Time EUS (v.8.4) - x86_64  
Red Hat Enterprise Linux Real Time for NFV EUS (v.8.4) - x86_64

3. Description:

The kernel-rt packages provide the Real Time Linux Kernel, which enables  
fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

* ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF  
(CVE-2023-0266)

* kernel: net/ulp: use-after-free in listening ULP sockets (CVE-2023-0461)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* kernel-rt RHEL-8.4: disable KASAN, KCSAN and UBSAN for kernel-rt  
(BZ#2165124)

* kernel-rt: update RT source tree to the RHEL-8.4.z16 source tree (async)  
(BZ#2183403)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2163379 - CVE-2023-0266 ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF  
2176192 - CVE-2023-0461 kernel: net/ulp: use-after-free in listening ULP sockets

6. Package List:

Red Hat Enterprise Linux Real Time for NFV EUS (v.8.4):

Source:  
kernel-rt-4.18.0-305.86.2.rt7.160.el8_4.src.rpm

x86_64:  
kernel-rt-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-core-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-core-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-debuginfo-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-devel-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-kvm-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-modules-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-modules-extra-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debuginfo-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-devel-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-kvm-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-modules-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-modules-extra-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm

Red Hat Enterprise Linux Real Time EUS (v.8.4):

Source:  
kernel-rt-4.18.0-305.86.2.rt7.160.el8_4.src.rpm

x86_64:  
kernel-rt-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-core-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-core-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-debuginfo-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-devel-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-modules-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debug-modules-extra-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debuginfo-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-devel-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-modules-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm  
kernel-rt-modules-extra-4.18.0-305.86.2.rt7.160.el8_4.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-0266  
https://access.redhat.com/security/cve/CVE-2023-0461  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZCvqnNzjgjWX9erEAQji3hAAiJOllK9VciQkxLUO2WiKQB4mig+cDp8n  
1Zm4g3/zeZMyYPoLFK5UjqlGNx2Ir+JowUkNqZz0jLibhu1WgArykSeUPnilRbA+  
Sq/EDfTF8inG+j39aynJPRIaalHGvW6wYpSuQU/moA9bPUdNvY8G5A0d/gJZAsuc  
SYbc5ylut7aZXaHeI7oDkdQw/udJJcmuD/+HORP8JLQeNvnb8UJmrMU0hgsoqhr6  
nl3FfYUdiR5vriZNIbxeNS9PD7K+MPsEkW51xPYkw7CzpXMfgG8otZLTwQBOuS9P  
bIJicxp3Zhg2W5ho5pO0DjKPlaHlBX88QYx5VNlxM/KN9unESDI1KhChEUva9+Ck  
97iU7CfAZgDWJ2PMPyW3cS9Og3Efep9kW05OLWo/K7rrQlEiZ/4n/DhLxHnUSGhK  
tTUkFb/4fXXeTQ+HTBEuWGq7SGDgMsHRmpQOEXVwrqkatTgwaQ5t2r6ka6+QQzra  
h2D8/VRuo0jgswN2ftM/4kHvLvh97/Rgy/W4yy3FENu6Bem8MvVaSG2QiGoKLZZH  
bNXFzHNoEX7FeYwagGm8s2R7vhzm6LO0XV0uh+2lY0iXU0/6moYRzK0PmN+fIGJS  
eU7Oh0VUxkKKb9AQO4EEraQcuEuw7HQpZSG13M17h977KJU6kBmDWZ0pzLX+VMYd  
V88Bo6k9bAs=ZtTu  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1556-01

Red Hat Security Advisory 2023-1557-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel security and bug fix update  
Advisory ID:       RHSA-2023:1557-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1557  
Issue date:        2023-04-04  
CVE Names:         CVE-2023-0266 CVE-2023-0461  
====================================================================  
1. Summary:

An update for kernel is now available for Red Hat Enterprise Linux 8.4  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat CodeReady Linux Builder EUS (v. 8.4) - aarch64, ppc64le, x86_64  
Red Hat Enterprise Linux BaseOS EUS (v.8.4) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux  
operating system.

Security Fix(es):

* ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF  
(CVE-2023-0266)

* kernel: net/ulp: use-after-free in listening ULP sockets (CVE-2023-0461)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* RHEL8.4 - s390/kexec: fix ipl report address for kdump (BZ#2166298)

* Windows Server 2019 guest randomly pauses with "KVM: entry failed,  
hardware error 0x80000021" (BZ#2166370)

* net/mlx5e: Fix use-after-free when reverting termination table  
(BZ#2167642)

* net/ice: OP_SET_RSS_HENA command not supported with in-tree driver  
(BZ#2167712)

* Backport Request for locking/rwsem commits (BZ#2170941)

* ipv6 traffic stop when an sriov vf have ipv6 address (BZ#2172552)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2163379 - CVE-2023-0266 ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF  
2176192 - CVE-2023-0461 kernel: net/ulp: use-after-free in listening ULP sockets

6. Package List:

Red Hat Enterprise Linux BaseOS EUS (v.8.4):

Source:  
kernel-4.18.0-305.86.2.el8_4.src.rpm

aarch64:  
bpftool-4.18.0-305.86.2.el8_4.aarch64.rpm  
bpftool-debuginfo-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-core-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-cross-headers-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-debug-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-debug-core-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-debug-debuginfo-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-debug-devel-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-debug-modules-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-debug-modules-extra-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-debuginfo-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-debuginfo-common-aarch64-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-devel-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-headers-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-modules-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-modules-extra-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-tools-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-tools-debuginfo-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-tools-libs-4.18.0-305.86.2.el8_4.aarch64.rpm  
perf-4.18.0-305.86.2.el8_4.aarch64.rpm  
perf-debuginfo-4.18.0-305.86.2.el8_4.aarch64.rpm  
python3-perf-4.18.0-305.86.2.el8_4.aarch64.rpm  
python3-perf-debuginfo-4.18.0-305.86.2.el8_4.aarch64.rpm

noarch:  
kernel-abi-stablelists-4.18.0-305.86.2.el8_4.noarch.rpm  
kernel-doc-4.18.0-305.86.2.el8_4.noarch.rpm

ppc64le:  
bpftool-4.18.0-305.86.2.el8_4.ppc64le.rpm  
bpftool-debuginfo-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-core-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-cross-headers-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-debug-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-debug-core-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-debug-debuginfo-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-debug-devel-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-debug-modules-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-debug-modules-extra-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-debuginfo-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-devel-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-headers-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-modules-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-modules-extra-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-tools-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-tools-debuginfo-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-tools-libs-4.18.0-305.86.2.el8_4.ppc64le.rpm  
perf-4.18.0-305.86.2.el8_4.ppc64le.rpm  
perf-debuginfo-4.18.0-305.86.2.el8_4.ppc64le.rpm  
python3-perf-4.18.0-305.86.2.el8_4.ppc64le.rpm  
python3-perf-debuginfo-4.18.0-305.86.2.el8_4.ppc64le.rpm

s390x:  
bpftool-4.18.0-305.86.2.el8_4.s390x.rpm  
bpftool-debuginfo-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-core-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-cross-headers-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-debug-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-debug-core-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-debug-debuginfo-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-debug-devel-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-debug-modules-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-debug-modules-extra-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-debuginfo-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-debuginfo-common-s390x-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-devel-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-headers-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-modules-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-modules-extra-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-tools-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-tools-debuginfo-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-zfcpdump-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-zfcpdump-core-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-zfcpdump-debuginfo-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-zfcpdump-devel-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-zfcpdump-modules-4.18.0-305.86.2.el8_4.s390x.rpm  
kernel-zfcpdump-modules-extra-4.18.0-305.86.2.el8_4.s390x.rpm  
perf-4.18.0-305.86.2.el8_4.s390x.rpm  
perf-debuginfo-4.18.0-305.86.2.el8_4.s390x.rpm  
python3-perf-4.18.0-305.86.2.el8_4.s390x.rpm  
python3-perf-debuginfo-4.18.0-305.86.2.el8_4.s390x.rpm

x86_64:  
bpftool-4.18.0-305.86.2.el8_4.x86_64.rpm  
bpftool-debuginfo-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-core-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-cross-headers-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-debug-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-debug-core-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-debug-debuginfo-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-debug-devel-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-debug-modules-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-debug-modules-extra-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-debuginfo-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-debuginfo-common-x86_64-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-devel-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-headers-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-modules-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-modules-extra-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-tools-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-tools-debuginfo-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-tools-libs-4.18.0-305.86.2.el8_4.x86_64.rpm  
perf-4.18.0-305.86.2.el8_4.x86_64.rpm  
perf-debuginfo-4.18.0-305.86.2.el8_4.x86_64.rpm  
python3-perf-4.18.0-305.86.2.el8_4.x86_64.rpm  
python3-perf-debuginfo-4.18.0-305.86.2.el8_4.x86_64.rpm

Red Hat CodeReady Linux Builder EUS (v. 8.4):

aarch64:  
bpftool-debuginfo-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-debug-debuginfo-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-debuginfo-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-debuginfo-common-aarch64-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-tools-debuginfo-4.18.0-305.86.2.el8_4.aarch64.rpm  
kernel-tools-libs-devel-4.18.0-305.86.2.el8_4.aarch64.rpm  
perf-debuginfo-4.18.0-305.86.2.el8_4.aarch64.rpm  
python3-perf-debuginfo-4.18.0-305.86.2.el8_4.aarch64.rpm

ppc64le:  
bpftool-debuginfo-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-debug-debuginfo-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-debuginfo-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-tools-debuginfo-4.18.0-305.86.2.el8_4.ppc64le.rpm  
kernel-tools-libs-devel-4.18.0-305.86.2.el8_4.ppc64le.rpm  
perf-debuginfo-4.18.0-305.86.2.el8_4.ppc64le.rpm  
python3-perf-debuginfo-4.18.0-305.86.2.el8_4.ppc64le.rpm

x86_64:  
bpftool-debuginfo-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-debug-debuginfo-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-debuginfo-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-debuginfo-common-x86_64-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-tools-debuginfo-4.18.0-305.86.2.el8_4.x86_64.rpm  
kernel-tools-libs-devel-4.18.0-305.86.2.el8_4.x86_64.rpm  
perf-debuginfo-4.18.0-305.86.2.el8_4.x86_64.rpm  
python3-perf-debuginfo-4.18.0-305.86.2.el8_4.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-0266  
https://access.redhat.com/security/cve/CVE-2023-0461  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZCvqpNzjgjWX9erEAQhNnQ/6AnZAPNsQP57RzYKHpfsxGVnmstglO5F6  
sZKj5ws2E9G9aF23qbUK5nYW5tN2QUNtlQK7Ns1H6HcBKYp8iQrFaVAlaEKpby3F  
l9cHjajeHazw3KQd2OtgL34XnMjDDJulMZExgqJARG9sjjQDqUIOApq58Ly57xh/  
r2wUWqOlWh92B2P/W8Yd9fMNtapakCj9WdQKh2zl9ZMH7J715TIg821NDgHpbdHS  
T1oJAST44PoDW38v9W1HpeHz6/Dax0M9sdJa6JbqIxN9bK4+vi+9uaAIOR2GAG8n  
P4SsbXJewH4QRHzTawYg5QoCSc4CpkWbuhCsz1vH+PS43iZNDw5EAUJe/tjIshmb  
XvR49AywCGvLkMmHOuqn3bAHqwNdeQKx7fRuMU/wahE1nSDDkXPb9XocV6Hu1rur  
K1Z6tYpPXqTMpXKDEdRyiJXL1V96dYMehVqgPkTjdw1dYCEjI1Tjj+oewj4EJwMG  
qoW5mj6Hwi/AP0Oybi0LoL2usjB0y96X4fVb/B4qrmDMLHoz/nJacmTASmYnY19X  
WG4xzWwmCUfO3Jh7AVth7fBqZmTik0+Lj+0T417QsZ73vAJ75OzGjzSN4GYeASUr  
KD3PJNMq0BJ8XnpkLqJm65CvmRHJnrix6M+AzsSIKFnAyhKTvUeCeY9eVqmFhcEd  
KO+uCDHR3AIÏpp  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1557-01

Red Hat Security Advisory 2023-1586-01 - The pesign packages provide the pesign utility for signing UEFI binaries as well as other associated tools. Issues addressed include a privilege escalation vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: pesign security update  
Advisory ID:       RHSA-2023:1586-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1586  
Issue date:        2023-04-04  
CVE Names:         CVE-2022-3560  
====================================================================  
1. Summary:

An update for pesign is now available for Red Hat Enterprise Linux 8.1  
Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream E4S (v. 8.1) - aarch64, x86_64

3. Description:

The pesign packages provide the pesign utility for signing UEFI binaries as  
well as other associated tools.

Security Fix(es):

* pesign: Local privilege escalation on pesign systemd service  
(CVE-2022-3560)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2135420 - CVE-2022-3560 pesign: Local privilege escalation on pesign systemd service

6. Package List:

Red Hat Enterprise Linux AppStream E4S (v. 8.1):

Source:  
pesign-0.112-25.el8_1.1.src.rpm

aarch64:  
pesign-0.112-25.el8_1.1.aarch64.rpm  
pesign-debuginfo-0.112-25.el8_1.1.aarch64.rpm  
pesign-debugsource-0.112-25.el8_1.1.aarch64.rpm

x86_64:  
pesign-0.112-25.el8_1.1.x86_64.rpm  
pesign-debuginfo-0.112-25.el8_1.1.x86_64.rpm  
pesign-debugsource-0.112-25.el8_1.1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-3560  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZCvqnNzjgjWX9erEAQiWzA/+OfCZ8FqHTlCqshqwNyOQsZXODIZaJ27z  
Z9l2yvVBtOQ1YuH8g5DiQnqSpQzzn8mLMLi5tNnLMnvAq9AvtVUIVQVM55CoXXkJ  
I234s7rk3zPy0XZseb0BJGw2Zw/bbSSNFY65dVeAsPZwYYNxfCB5v0/3pOxdOezN  
GpsusEpyYSEAuLTN2WSAUywndsUPHHUQ7cV4YaM51IJmUu6VWCvEmawi3jqXpptT  
lNVys6F/pmypMwwshb9d3Q3V8qph6v1PnGwRzuiYqvB3MHdAYff7XWvNmwU1Mskn  
1sPN9Ot642t4hhPLWWVqj4oMz3RElFT594oKU3HG2GeWo4yQq5vmgXmrKRGxT6cy  
3Aqa1VOgjRRtL7xsA96PmC7mniqX1+7wKHYRz1gDPMiOQ9n+iwi37NBwUZjRCAZd  
N6Fn8+RkE7aFYx07PlET9apLhAMO6RvEKopE/Kx4iv9+sMWwjIvbgpCA3b8dKugO  
xn7tN20wYO3hUjgnFhdiNHiYuLT8Y3QW4wjhRvgdYX98L5pmeFvOiqzU7qIX32Dt  
Ow0R3MiN0qC4kd0ecgiNfRd3BAwGlu6lo16d34awUCBh9EX0Y4oXGWXzu4A1V/27  
w98c3GMAw5VC8rklDk+qiVgctbBknr7Y+Lm8rhfwN4lBziO2oZGhZaR/7T4f1olx  
t0peXK3PCkg=+vZz  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1586-01

Red Hat Security Advisory 2023-1584-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel-rt security and bug fix update  
Advisory ID:       RHSA-2023:1584-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1584  
Issue date:        2023-04-04  
CVE Names:         CVE-2022-4269 CVE-2022-4378 CVE-2023-0266  
                   CVE-2023-0386  
====================================================================  
1. Summary:

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Real Time for NFV (v. 8) - x86_64  
Red Hat Enterprise Linux for Real Time (v. 8) - x86_64

3. Description:

The kernel-rt packages provide the Real Time Linux Kernel, which enables  
fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

* kernel: stack overflow in do_proc_dointvec and proc_skip_spaces  
(CVE-2022-4378)

* ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF  
(CVE-2023-0266)

* kernel: FUSE filesystem low-privileged user privileges escalation  
(CVE-2023-0386)

* kernel: net: CPU soft lockup in TC mirred egress-to-ingress action  
(CVE-2022-4269)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* Lazy irq_work does not raise softirq on PREEMPT_RT [rhel-8] (BZ#2172163)

* The latest RHEL 8.7.z3 kernel changes need to be merged into the RT  
source tree to keep source parity between the two kernels. (BZ#2172278)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2150272 - CVE-2022-4269 kernel: net: CPU soft lockup in TC mirred egress-to-ingress action  
2152548 - CVE-2022-4378 kernel: stack overflow in do_proc_dointvec and proc_skip_spaces  
2159505 - CVE-2023-0386 kernel: FUSE filesystem low-privileged user privileges escalation  
2163379 - CVE-2023-0266 ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF

6. Package List:

Red Hat Enterprise Linux Real Time for NFV (v. 8):

Source:  
kernel-rt-4.18.0-425.19.2.rt7.230.el8_7.src.rpm

x86_64:  
kernel-rt-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-core-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-core-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-debuginfo-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-devel-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-kvm-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-modules-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-modules-extra-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debuginfo-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-devel-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-kvm-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-modules-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-modules-extra-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm

Red Hat Enterprise Linux for Real Time (v. 8):

Source:  
kernel-rt-4.18.0-425.19.2.rt7.230.el8_7.src.rpm

x86_64:  
kernel-rt-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-core-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-core-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-debuginfo-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-devel-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-modules-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debug-modules-extra-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debuginfo-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-devel-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-modules-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm  
kernel-rt-modules-extra-4.18.0-425.19.2.rt7.230.el8_7.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-4269  
https://access.redhat.com/security/cve/CVE-2022-4378  
https://access.redhat.com/security/cve/CVE-2023-0266  
https://access.redhat.com/security/cve/CVE-2023-0386  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZCvqnNzjgjWX9erEAQgO7xAAglvNvHFI3epmKU111EvmTKXC0pG+hx0X  
LQvI15YI6cOjzF8iJi0jeJjC5N+fayb5iytJixf0FCJSexfKNARRP+NGW/NDy68L  
iRFD1/3C3w96QbpPO3FWnC0fYKF+LroRMmE0e/Ynag3Zvi3wzAka8cXgtY1+ZIrV  
Y8pF48oUl9JTBFDtUw3O521RKN8fsr8+nM3eqyFSGSuirdqOTSElM+Tc8UOYqWUk  
JoBbmGY7Zgb0rmUfbHQxxjZFTlH90cLeRcDgnLByccnVTD751vFxPw87FkNnz6GT  
HwaPFTHyj4hB/9UTO425I7+InPIbQeP+qq9bpttZ+p11zo7j9sNDV0ia/k2WxCG6  
P7ZRl+dzawq8ef6RMnL59zt1aslaB85qEY/x0g6IZ0zoCZuspuy1K/ENzS3M/BNL  
Dk/hsTu/roSW3J8DbAihcwnZ7KTbEZ7IoJB98H1N2B9qk3FlQUFMy6OFRsB2qm3V  
ZVmSYCTx0pZrvm+o1mLvVdEGOTyZZOgVPoAwSAfVCmXwQVX5xMsiG5BrIHKCi7+r  
5bzhpeQ7TtYomXIAzZ1Kcqy0I10kjFcJGZlYJgKDSjk4RAGIYWnXcxTaWIgdlMRz  
Ow5LJf5PW+fybI5tiNyH2jrDbyhb8DptscAchjvKdHKUJNwt3BYWWBX/8gZhsDVH  
GDJkuc1r28A=WzR7  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1584-01

Red Hat Security Advisory 2023-1554-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel security, bug fix, and enhancement update  
Advisory ID:       RHSA-2023:1554-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1554  
Issue date:        2023-04-04  
CVE Names:         CVE-2023-0266 CVE-2023-0386  
====================================================================  
1. Summary:

An update for kernel is now available for Red Hat Enterprise Linux 8.6  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat CodeReady Linux Builder EUS (v.8.6) - aarch64, ppc64le, x86_64  
Red Hat Enterprise Linux BaseOS EUS (v.8.6) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux  
operating system.

Security Fix(es):

* ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF  
(CVE-2023-0266)

* kernel: FUSE filesystem low-privileged user privileges escalation  
(CVE-2023-0386)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* RHEL 8.7: please integrate "powerpc/64/kdump: Limit kdump base to 512MB"  
patch. (BZ#2154272)

* Redhat OpenShift: Error downloading big ZIP files inside pod on power OCP  
and pod getting restarted (BZ#2160222)

* RHEL8.4: s390/kexec: fix ipl report address for kdump (BZ#2166297)

* Unable to get QinQ working with ConnectX-4 Lx in SR-IOV scenario  
(BZ#2166666)

* mlx5: lag and sriov fixes (BZ#2167648)

* New algorithm limits needed in FIPS mode (BZ#2167771)

* RHEL8.4: dasd: fix no record found for raw_track_access (BZ#2167777)

* kernel panics if iwlwifi firmware can not be loaded (BZ#2169664)

* CSB.V bit never becomes valid for NX Gzip job during LPAR migration  
(BZ#2170855)

* Backport Request for locking/rwsem commits (BZ#2170940)

* ipv6 traffic stop when an sriov vf have ipv6 address (BZ#2172551)

* Hyper-V RHEL8.8: Update MANA driver (BZ#2173104)

* Disable 3DES in FIPS mode (BZ#2176523)

* Soft lockup occurred during __page_mapcount (BZ#2177139)

* Task hangs in blk_mq_get_tag while no tags are in use (BZ#2178225)

* Node locked up and not responsive due to potential rcu stall (BZ#2178273)

Enhancement(s):

* Intel 8.8 FEAT SPR CPU: AMX: Improve the init_fpstate setup code  
(BZ#2168385)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2159505 - CVE-2023-0386 kernel: FUSE filesystem low-privileged user privileges escalation  
2163379 - CVE-2023-0266 ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF

6. Package List:

Red Hat Enterprise Linux BaseOS EUS (v.8.6):

Source:  
kernel-4.18.0-372.51.1.el8_6.src.rpm

aarch64:  
bpftool-4.18.0-372.51.1.el8_6.aarch64.rpm  
bpftool-debuginfo-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-core-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-cross-headers-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-debug-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-debug-core-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-debug-debuginfo-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-debug-devel-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-debug-modules-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-debug-modules-extra-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-debuginfo-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-debuginfo-common-aarch64-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-devel-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-headers-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-modules-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-modules-extra-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-tools-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-tools-debuginfo-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-tools-libs-4.18.0-372.51.1.el8_6.aarch64.rpm  
perf-4.18.0-372.51.1.el8_6.aarch64.rpm  
perf-debuginfo-4.18.0-372.51.1.el8_6.aarch64.rpm  
python3-perf-4.18.0-372.51.1.el8_6.aarch64.rpm  
python3-perf-debuginfo-4.18.0-372.51.1.el8_6.aarch64.rpm

noarch:  
kernel-abi-stablelists-4.18.0-372.51.1.el8_6.noarch.rpm  
kernel-doc-4.18.0-372.51.1.el8_6.noarch.rpm

ppc64le:  
bpftool-4.18.0-372.51.1.el8_6.ppc64le.rpm  
bpftool-debuginfo-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-core-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-cross-headers-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-debug-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-debug-core-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-debug-debuginfo-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-debug-devel-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-debug-modules-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-debug-modules-extra-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-debuginfo-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-devel-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-headers-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-modules-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-modules-extra-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-tools-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-tools-debuginfo-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-tools-libs-4.18.0-372.51.1.el8_6.ppc64le.rpm  
perf-4.18.0-372.51.1.el8_6.ppc64le.rpm  
perf-debuginfo-4.18.0-372.51.1.el8_6.ppc64le.rpm  
python3-perf-4.18.0-372.51.1.el8_6.ppc64le.rpm  
python3-perf-debuginfo-4.18.0-372.51.1.el8_6.ppc64le.rpm

s390x:  
bpftool-4.18.0-372.51.1.el8_6.s390x.rpm  
bpftool-debuginfo-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-core-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-cross-headers-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-debug-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-debug-core-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-debug-debuginfo-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-debug-devel-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-debug-modules-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-debug-modules-extra-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-debuginfo-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-debuginfo-common-s390x-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-devel-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-headers-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-modules-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-modules-extra-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-tools-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-tools-debuginfo-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-zfcpdump-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-zfcpdump-core-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-zfcpdump-debuginfo-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-zfcpdump-devel-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-zfcpdump-modules-4.18.0-372.51.1.el8_6.s390x.rpm  
kernel-zfcpdump-modules-extra-4.18.0-372.51.1.el8_6.s390x.rpm  
perf-4.18.0-372.51.1.el8_6.s390x.rpm  
perf-debuginfo-4.18.0-372.51.1.el8_6.s390x.rpm  
python3-perf-4.18.0-372.51.1.el8_6.s390x.rpm  
python3-perf-debuginfo-4.18.0-372.51.1.el8_6.s390x.rpm

x86_64:  
bpftool-4.18.0-372.51.1.el8_6.x86_64.rpm  
bpftool-debuginfo-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-core-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-cross-headers-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-debug-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-debug-core-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-debug-debuginfo-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-debug-devel-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-debug-modules-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-debug-modules-extra-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-debuginfo-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-debuginfo-common-x86_64-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-devel-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-headers-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-modules-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-modules-extra-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-tools-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-tools-debuginfo-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-tools-libs-4.18.0-372.51.1.el8_6.x86_64.rpm  
perf-4.18.0-372.51.1.el8_6.x86_64.rpm  
perf-debuginfo-4.18.0-372.51.1.el8_6.x86_64.rpm  
python3-perf-4.18.0-372.51.1.el8_6.x86_64.rpm  
python3-perf-debuginfo-4.18.0-372.51.1.el8_6.x86_64.rpm

Red Hat CodeReady Linux Builder EUS (v.8.6):

aarch64:  
bpftool-debuginfo-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-debug-debuginfo-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-debuginfo-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-debuginfo-common-aarch64-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-tools-debuginfo-4.18.0-372.51.1.el8_6.aarch64.rpm  
kernel-tools-libs-devel-4.18.0-372.51.1.el8_6.aarch64.rpm  
perf-debuginfo-4.18.0-372.51.1.el8_6.aarch64.rpm  
python3-perf-debuginfo-4.18.0-372.51.1.el8_6.aarch64.rpm

ppc64le:  
bpftool-debuginfo-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-debug-debuginfo-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-debuginfo-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-tools-debuginfo-4.18.0-372.51.1.el8_6.ppc64le.rpm  
kernel-tools-libs-devel-4.18.0-372.51.1.el8_6.ppc64le.rpm  
perf-debuginfo-4.18.0-372.51.1.el8_6.ppc64le.rpm  
python3-perf-debuginfo-4.18.0-372.51.1.el8_6.ppc64le.rpm

x86_64:  
bpftool-debuginfo-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-debug-debuginfo-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-debuginfo-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-debuginfo-common-x86_64-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-tools-debuginfo-4.18.0-372.51.1.el8_6.x86_64.rpm  
kernel-tools-libs-devel-4.18.0-372.51.1.el8_6.x86_64.rpm  
perf-debuginfo-4.18.0-372.51.1.el8_6.x86_64.rpm  
python3-perf-debuginfo-4.18.0-372.51.1.el8_6.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-0266  
https://access.redhat.com/security/cve/CVE-2023-0386  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZCvqtdzjgjWX9erEAQih1Q//bDhxvHa7hZCDTgPyxpwCQQH+Jb2bFqrt  
v6PdwbdHLdrYVyxl0Oj7Uwsw0Dg4u+8rUs6KMm2bnI7/elzKLIYj8N6uo8oWRSgI  
iJgGZmK0/JBlALezRDoQc0vVEgaGY5TP0JmVhDhieKmbxDK0Dmh5AEYKkCZpTu4E  
OSIRZ7Bk54zHJQdtNhrZLetZP8YuPSy6/EVLy/nzyc5gJ3DZhKnArgzNYn/DzjG1  
aXD2BS41Efs9BChREgAEGr+2AZ5/Xica36zmNTAwBKq6EZuCEJ0tbsLFOar1B7Ab  
DqqGvvMW5HKkzPqXWdU5h2IIRXkZgircV7v2Vb8dfizXRCXCBo8LDhz5WcgOmP05  
EpZNTnw8cOJF5RaLYcvgjChXWJLNvqpqIqlcccYO2fVD5zkd2VOdT8oPNiUSQxFn  
Wsz7Oq9ba5sWGU+Ni1v0Z1qYp/tQ0aswyERqfKmTdzqqktm/93bgkQJoGGX+umpN  
3J0WrPu2zwsRLiaJKvk2VkhQrbHouwYfbeyXlv9c2T3kKv22++QzkxoLKow68zKx  
f2ePnu3kRo3rZZnFaEpTOMXxygAaS4nuAZh8ZCSvDYvIUNkXa8gwXSoEEx0vak47  
ZXycx6sQtO/U7/onuRVvzcIRiJBK2dvAUK5D4J+O8tKx6PslG6QxWY27sVH7w2L2  
30DFBCVlNk0¯5V  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1554-01

Red Hat Security Advisory 2023-1560-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel-rt security and bug fix update  
Advisory ID:       RHSA-2023:1560-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1560  
Issue date:        2023-04-04  
CVE Names:         CVE-2022-3564 CVE-2023-0266  
====================================================================  
1. Summary:

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.2  
Telecommunications Update Service.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Real Time TUS (v. 8.2) - x86_64  
Red Hat Enterprise Linux Real Time for NFV TUS (v. 8.2) - x86_64

3. Description:

The kernel-rt packages provide the Real Time Linux Kernel, which enables  
fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

* kernel: use-after-free caused by l2cap_reassemble_sdu() in  
net/bluetooth/l2cap_core.c (CVE-2022-3564)

* ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF  
(CVE-2023-0266)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* kernel-rt: update RT source tree to the latest RHEL-8.2.z (BZ#2174904)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2150999 - CVE-2022-3564 kernel: use-after-free caused by l2cap_reassemble_sdu() in net/bluetooth/l2cap_core.c  
2163379 - CVE-2023-0266 ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF

6. Package List:

Red Hat Enterprise Linux Real Time for NFV TUS (v. 8.2):

Source:  
kernel-rt-4.18.0-193.105.1.rt13.156.el8_2.src.rpm

x86_64:  
kernel-rt-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-core-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-core-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-debuginfo-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-devel-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-kvm-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-modules-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-modules-extra-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debuginfo-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-devel-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-kvm-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-modules-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-modules-extra-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm

Red Hat Enterprise Linux Real Time TUS (v. 8.2):

Source:  
kernel-rt-4.18.0-193.105.1.rt13.156.el8_2.src.rpm

x86_64:  
kernel-rt-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-core-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-core-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-debuginfo-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-devel-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-modules-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debug-modules-extra-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debuginfo-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-devel-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-modules-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm  
kernel-rt-modules-extra-4.18.0-193.105.1.rt13.156.el8_2.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-3564  
https://access.redhat.com/security/cve/CVE-2023-0266  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZCvqntzjgjWX9erEAQj/1A//fo2oh4J2I4PmVQXQ0U7UTbGuIsJDPA3K  
SlHDwEde8dH1TPVHl/8KJweod3yQs20QEmYodUi7H4cDpaxrs1YJCFxAStYERcfO  
+f037clL0ueX3JhFI7TK+X0tkFZhWgdlvNzCyf/WKEkUll3QjxoIbo4kQcypvXXm  
cvhQpWzvzU9CjBM/G8Kr2qFx1bU5EK+pTrFSL8OcRiuftz7WIWJfSYt+sx5hzXms  
o6M3VuLAG9l34anMOrudS3fu174qBIYxmbdIbCzUdLW+A5157nB3asvkewJ1pOEB  
GTILaMBYy824xcVrfTABt9PRYBTRVACXFu5RcgIkFlypOeaa95Uaw3qTFC8CiGZ2  
2/4NAKaaHmRTyGy4dcaFZfX8zjtBH3k530O91x1JNIjzlzyGe9Q9k0BAj4qO0Gzu  
NebFHLYLW3BMXEBvZbUUa7s5OCHHvQQXv6PutqgZa4emC3obMVvcI54+s/rMCq7C  
QcV1VUrUUBMgvOFcNChsr9Myxp7B8oQ68KXt+m4eCZyINyxHPSbQCGVl+XT0XFva  
y1On/ACZ8pI6PY7igOM99cp6OQ7B9obmwhA3BkaX/zP49W1DpnsCAI093Mw5RfoX  
l2Z/KIfPBhG6NuoHNOjtr4Kj1Ut0YQPdU0UWruKGXbedCnswyHSP5mg3yKnYh6Co  
z/qSskkQers=L3cV  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1560-01

Red Hat Security Advisory 2023-1547-01 - The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: httpd:2.4 security update  
Advisory ID:       RHSA-2023:1547-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1547  
Issue date:        2023-04-03  
CVE Names:         CVE-2023-25690  
====================================================================  
1. Summary:

An update for the httpd:2.4 module is now available for Red Hat Enterprise  
Linux 8.1 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream E4S (v. 8.1) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The httpd packages provide the Apache HTTP Server, a powerful, efficient,  
and extensible web server.

Security Fix(es):

* httpd: HTTP request splitting with mod_rewrite and mod_proxy  
(CVE-2023-25690)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the updated packages, the httpd daemon will be restarted  
automatically.

5. Bugs fixed (https://bugzilla.redhat.com/):

2176209 - CVE-2023-25690 httpd: HTTP request splitting with mod_rewrite and mod_proxy

6. Package List:

Red Hat Enterprise Linux AppStream E4S (v. 8.1):

Source:  
httpd-2.4.37-16.module+el8.1.0+18511+ffefe478.6.src.rpm  
mod_http2-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.src.rpm

aarch64:  
httpd-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
httpd-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
httpd-debugsource-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
httpd-devel-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
httpd-tools-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
httpd-tools-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
mod_http2-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.aarch64.rpm  
mod_http2-debuginfo-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.aarch64.rpm  
mod_http2-debugsource-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.aarch64.rpm  
mod_ldap-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
mod_ldap-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
mod_md-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
mod_md-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
mod_proxy_html-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
mod_proxy_html-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
mod_session-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
mod_session-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
mod_ssl-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm  
mod_ssl-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.aarch64.rpm

noarch:  
httpd-filesystem-2.4.37-16.module+el8.1.0+18511+ffefe478.6.noarch.rpm  
httpd-manual-2.4.37-16.module+el8.1.0+18511+ffefe478.6.noarch.rpm

ppc64le:  
httpd-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
httpd-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
httpd-debugsource-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
httpd-devel-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
httpd-tools-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
httpd-tools-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
mod_http2-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.ppc64le.rpm  
mod_http2-debuginfo-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.ppc64le.rpm  
mod_http2-debugsource-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.ppc64le.rpm  
mod_ldap-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
mod_ldap-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
mod_md-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
mod_md-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
mod_proxy_html-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
mod_proxy_html-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
mod_session-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
mod_session-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
mod_ssl-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm  
mod_ssl-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.ppc64le.rpm

s390x:  
httpd-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
httpd-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
httpd-debugsource-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
httpd-devel-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
httpd-tools-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
httpd-tools-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
mod_http2-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.s390x.rpm  
mod_http2-debuginfo-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.s390x.rpm  
mod_http2-debugsource-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.s390x.rpm  
mod_ldap-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
mod_ldap-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
mod_md-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
mod_md-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
mod_proxy_html-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
mod_proxy_html-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
mod_session-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
mod_session-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
mod_ssl-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm  
mod_ssl-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.s390x.rpm

x86_64:  
httpd-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
httpd-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
httpd-debugsource-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
httpd-devel-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
httpd-tools-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
httpd-tools-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
mod_http2-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.x86_64.rpm  
mod_http2-debuginfo-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.x86_64.rpm  
mod_http2-debugsource-1.11.3-3.module+el8.1.0+18514+ae5f89d3.3.x86_64.rpm  
mod_ldap-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
mod_ldap-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
mod_md-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
mod_md-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
mod_proxy_html-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
mod_proxy_html-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
mod_session-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
mod_session-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
mod_ssl-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm  
mod_ssl-debuginfo-2.4.37-16.module+el8.1.0+18511+ffefe478.6.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-25690  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZCtB1NzjgjWX9erEAQgaeA//flKzR9g5B8lhlvK+onhYUdiY9If2qpe8  
9RWbjE4IXcZkmuHb2N2WLmeM/ImH/hwJGLnBZV5r9ZafS53nNVK3liQTzPtL0uvV  
EwWhRT79rNtWpDdx3XeVcYyBs525HYBPTPdvpSZ1Y8B32vQOQ9FUnz+ArHsUQo3j  
IEHabT6mw4YqJ6k9yy7qylTwkEahADOfQYW2X9oTiAv7577JYMWnys7r/w0I/Me5  
cbejAwqsjXHcuei5d5TS1FJ0aMdcmomzbqp/jfe3FNENyvqQLet216YnF5kJCkdw  
o6SU5aDRuyxDmaDwQUnE+80g07tN2olZSIkedzXzjNjMdcWycgAwjyFjGqzKCpcN  
9s24p+rPOtv/uT2rOvgQLhb+QYz7Os6OL/Yrg3PPi8OEgvmGV5u3S3uBjxaLBfEG  
WaTuAoRvgDx3GnPWXYu5eih5q+/QoTpaCd+PsqyHA/5R/Y80WC5lXfpbZ7fY7xoE  
g7QypCS7fe581+BKboSrqQ/qodMDiOtAz5jbYrcfc2hpifIHuhBDiqyo+CinIFDD  
bdBaZOO84J9+x+GEIKGNghKMKT7Ibd6mMSwsT4yNiZ1Ix8gTwixaphyP58gClL3K  
49BKv5O6Behq+YJp/kk52uIaYUHbpsMzVqB4QaoslcEn70Tqy+Gjgm2I2QFepKsV  
25+LyDieCVY=jzEb  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1547-01

Red Hat OpenShift Container Platform release 4.11.34 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.11.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

Related CVEs:
* CVE-2022-4318: A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.


Skip to navigation Skip to main content

**Utilities**

*   Subscriptions
*   Downloads
*   Containers
*   Support Cases

**Infrastructure and Management**

*   Red Hat Enterprise Linux
*   Red Hat Virtualization
*   Red Hat Identity Management
*   Red Hat Directory Server
*   Red Hat Certificate System
*   Red Hat Satellite
*   Red Hat Subscription Management
*   Red Hat Update Infrastructure
*   Red Hat Insights
*   Red Hat Ansible Automation Platform

**Cloud Computing**

*   Red Hat OpenShift
*   Red Hat CloudForms
*   Red Hat OpenStack Platform
*   Red Hat OpenShift Container Platform
*   Red Hat OpenShift Data Science
*   Red Hat OpenShift Online
*   Red Hat OpenShift Dedicated
*   Red Hat Advanced Cluster Security for Kubernetes
*   Red Hat Advanced Cluster Management for Kubernetes
*   Red Hat Quay
*   OpenShift Dev Spaces
*   Red Hat OpenShift Service on AWS

**Storage**

*   Red Hat Gluster Storage
*   Red Hat Hyperconverged Infrastructure
*   Red Hat Ceph Storage
*   Red Hat OpenShift Data Foundation

**Runtimes**

*   Red Hat Runtimes
*   Red Hat JBoss Enterprise Application Platform
*   Red Hat Data Grid
*   Red Hat JBoss Web Server
*   Red Hat Single Sign On
*   Red Hat support for Spring Boot
*   Red Hat build of Node.js
*   Red Hat build of Thorntail
*   Red Hat build of Eclipse Vert.x
*   Red Hat build of OpenJDK
*   Red Hat build of Quarkus

**Integration and Automation**

*   Red Hat Process Automation
*   Red Hat Process Automation Manager
*   Red Hat Decision Manager

All Products

Issued:

2023-04-04

Updated:

2023-04-04

**RHSA-2023:1503 - Security Advisory**

*   Overview
*   Updated Packages

**Synopsis**

Moderate: OpenShift Container Platform 4.11.34 packages and security update

**Type/Severity**

Security Advisory: Moderate

**Red Hat Insights patch analysis**

Identify and remediate systems affected by this advisory.

View affected systems

**Topic**

Red Hat OpenShift Container Platform release 4.11.34 is now available with updates to packages and images that fix several bugs and add enhancements.  

This release includes a security update for Red Hat OpenShift Container Platform 4.11.  

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

**Description**

Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.  

This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.11.34. See the following advisory for the container images for this release:  

https://access.redhat.com/errata/RHSA-2023:1504

Security Fix(es):  

*   cri-o: /etc/passwd tampering privesc (CVE-2022-4318)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.  

All OpenShift Container Platform 4.11 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html

**Affected Products**

*   Red Hat OpenShift Container Platform 4.11 for RHEL 8 x86\_64
*   Red Hat OpenShift Container Platform for Power 4.11 for RHEL 8 ppc64le
*   Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.11 for RHEL 8 s390x
*   Red Hat OpenShift Container Platform for ARM 64 4.11 aarch64

**Fixes**

*   BZ - 2152703 - CVE-2022-4318 cri-o: /etc/passwd tampering privesc

**References**

*   https://access.redhat.com/security/updates/classification/#moderate
*   https://docs.openshift.com/container-platform/4.11/release\_notes/ocp-4-11-release-notes.html

**Red Hat OpenShift Container Platform 4.11 for RHEL 8**

SRPM

atomic-openshift-service-idler-4.11.0-202303240327.p0.ga0f9090.assembly.stream.el8.src.rpm

SHA-256: d8bb906d27d8816fb5eded0c65f2e6fe350bf06af01f85699cdcbaa10556da55

cri-o-1.24.4-10.rhaos4.11.git1ed5ac5.el8.src.rpm

SHA-256: 44c1deea2911ce0b10c8f51a5c7c5170774f385e4843a75c97d5ea7dac8e3314

openshift-4.11.0-202303240327.p0.gaf0420d.assembly.stream.el8.src.rpm

SHA-256: 9180855f92439cb2d34e40f685027cd12336d88e44bd88807488f475dc63132c

openshift-ansible-4.11.0-202303240327.p0.gdf73941.assembly.stream.el8.src.rpm

SHA-256: 2669c68757fb97c802f16ba69b148c8af2eb0c31d21c85a0a1b89a2826fe585e

openshift-clients-4.11.0-202303240327.p0.gdea6f47.assembly.stream.el8.src.rpm

SHA-256: 05eb57604b1958afe67ebb13b76d2c87e47714c97a61a3b96ff56798ba44a338

openshift-kuryr-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.src.rpm

SHA-256: 68e95224aa6585947aee4baa232d543b515018a5827f3ed969f3860283ba1a68

x86\_64

atomic-openshift-service-idler-4.11.0-202303240327.p0.ga0f9090.assembly.stream.el8.x86\_64.rpm

SHA-256: 201c7a85746a9ff951e018233c7db2cd20681f9c2e8a0ad36561e85f108f2452

cri-o-1.24.4-10.rhaos4.11.git1ed5ac5.el8.x86\_64.rpm

SHA-256: bc5221254b3140ce673abc940120b08f4ea903297cf59cce9271c21819e1d592

cri-o-debuginfo-1.24.4-10.rhaos4.11.git1ed5ac5.el8.x86\_64.rpm

SHA-256: 4719547ca9a29a65947aa27abfbbc55616c8753f78af7915f16ee2123b93905c

cri-o-debugsource-1.24.4-10.rhaos4.11.git1ed5ac5.el8.x86\_64.rpm

SHA-256: 196bda0539d538b7852e55a7d8eddd17c453a46b77f6a68e709ff5208076d35a

openshift-ansible-4.11.0-202303240327.p0.gdf73941.assembly.stream.el8.noarch.rpm

SHA-256: b73ac9e46bbb2b6b3334fd709c87ef85205e52ac877b3f63e82e3151849de2a5

openshift-ansible-test-4.11.0-202303240327.p0.gdf73941.assembly.stream.el8.noarch.rpm

SHA-256: ed2f8301027e1252aea43a7c2f591abe10839523c3159251c4305efa1390857a

openshift-clients-4.11.0-202303240327.p0.gdea6f47.assembly.stream.el8.x86\_64.rpm

SHA-256: f6a289171c087a1894bf62be1b5492cae9aff889d6475d51fd78b9b80c601de1

openshift-clients-redistributable-4.11.0-202303240327.p0.gdea6f47.assembly.stream.el8.x86\_64.rpm

SHA-256: 8ca86752db33ca3ad4931360913d3bb4623c8dadd9db93106b42b304e026cbde

openshift-hyperkube-4.11.0-202303240327.p0.gaf0420d.assembly.stream.el8.x86\_64.rpm

SHA-256: 6869fb2bfe567fcff5e6af104f93e75618654d0bfb13d5ee3ff0419b4e9bb522

openshift-kuryr-cni-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: 6d8c39d8b4396aaa2671bbc7067bc894524a90acd093b5dac6c88f951ba52be9

openshift-kuryr-common-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: 65f8fd754c310aeb54f88b3664ee82f0cd062bf80e7c089a45d9fa2ba77fa47e

openshift-kuryr-controller-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: 0e6795e4ce9dda9e5bcf9b08cfe939569d7645d2a6fc0a5fef0d314e9fef089e

python3-kuryr-kubernetes-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: a9ff0d5a5ef17ada7443e4485afdcba05c5c445d50656d4ae59ab8bd0f5bc5ef

**Red Hat OpenShift Container Platform for Power 4.11 for RHEL 8**

SRPM

atomic-openshift-service-idler-4.11.0-202303240327.p0.ga0f9090.assembly.stream.el8.src.rpm

SHA-256: d8bb906d27d8816fb5eded0c65f2e6fe350bf06af01f85699cdcbaa10556da55

cri-o-1.24.4-10.rhaos4.11.git1ed5ac5.el8.src.rpm

SHA-256: 44c1deea2911ce0b10c8f51a5c7c5170774f385e4843a75c97d5ea7dac8e3314

openshift-4.11.0-202303240327.p0.gaf0420d.assembly.stream.el8.src.rpm

SHA-256: 9180855f92439cb2d34e40f685027cd12336d88e44bd88807488f475dc63132c

openshift-ansible-4.11.0-202303240327.p0.gdf73941.assembly.stream.el8.src.rpm

SHA-256: 2669c68757fb97c802f16ba69b148c8af2eb0c31d21c85a0a1b89a2826fe585e

openshift-clients-4.11.0-202303240327.p0.gdea6f47.assembly.stream.el8.src.rpm

SHA-256: 05eb57604b1958afe67ebb13b76d2c87e47714c97a61a3b96ff56798ba44a338

openshift-kuryr-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.src.rpm

SHA-256: 68e95224aa6585947aee4baa232d543b515018a5827f3ed969f3860283ba1a68

ppc64le

atomic-openshift-service-idler-4.11.0-202303240327.p0.ga0f9090.assembly.stream.el8.ppc64le.rpm

SHA-256: ddc7a19d2ee2a75df7b17bc18feeb03f1bf21c4a2644c18bb4b5189e5b439353

cri-o-1.24.4-10.rhaos4.11.git1ed5ac5.el8.ppc64le.rpm

SHA-256: cfa5d9e4cc2e37af230c86433d13c336052b663924dd3eedbe05c9332d01978b

cri-o-debuginfo-1.24.4-10.rhaos4.11.git1ed5ac5.el8.ppc64le.rpm

SHA-256: fc6306cdc5eade8fcabd4768266aa4753d11c4ffa5dbfcf4ab94ae96199536af

cri-o-debugsource-1.24.4-10.rhaos4.11.git1ed5ac5.el8.ppc64le.rpm

SHA-256: 0105054df7496cb45df40e952faf647850bff741a671f062760ca5ceeb16b0a4

openshift-ansible-4.11.0-202303240327.p0.gdf73941.assembly.stream.el8.noarch.rpm

SHA-256: b73ac9e46bbb2b6b3334fd709c87ef85205e52ac877b3f63e82e3151849de2a5

openshift-ansible-test-4.11.0-202303240327.p0.gdf73941.assembly.stream.el8.noarch.rpm

SHA-256: ed2f8301027e1252aea43a7c2f591abe10839523c3159251c4305efa1390857a

openshift-clients-4.11.0-202303240327.p0.gdea6f47.assembly.stream.el8.ppc64le.rpm

SHA-256: c5d16624640bac83586bead3a3aeefc57936eb7955847e21ecfaff1b7cd71d2e

openshift-hyperkube-4.11.0-202303240327.p0.gaf0420d.assembly.stream.el8.ppc64le.rpm

SHA-256: 9e80b8b9c7178f51a352bdc1e2f5bf2792ec932cc25148821773ad72ab31e37b

openshift-kuryr-cni-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: 6d8c39d8b4396aaa2671bbc7067bc894524a90acd093b5dac6c88f951ba52be9

openshift-kuryr-common-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: 65f8fd754c310aeb54f88b3664ee82f0cd062bf80e7c089a45d9fa2ba77fa47e

openshift-kuryr-controller-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: 0e6795e4ce9dda9e5bcf9b08cfe939569d7645d2a6fc0a5fef0d314e9fef089e

python3-kuryr-kubernetes-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: a9ff0d5a5ef17ada7443e4485afdcba05c5c445d50656d4ae59ab8bd0f5bc5ef

**Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.11 for RHEL 8**

SRPM

atomic-openshift-service-idler-4.11.0-202303240327.p0.ga0f9090.assembly.stream.el8.src.rpm

SHA-256: d8bb906d27d8816fb5eded0c65f2e6fe350bf06af01f85699cdcbaa10556da55

cri-o-1.24.4-10.rhaos4.11.git1ed5ac5.el8.src.rpm

SHA-256: 44c1deea2911ce0b10c8f51a5c7c5170774f385e4843a75c97d5ea7dac8e3314

openshift-4.11.0-202303240327.p0.gaf0420d.assembly.stream.el8.src.rpm

SHA-256: 9180855f92439cb2d34e40f685027cd12336d88e44bd88807488f475dc63132c

openshift-ansible-4.11.0-202303240327.p0.gdf73941.assembly.stream.el8.src.rpm

SHA-256: 2669c68757fb97c802f16ba69b148c8af2eb0c31d21c85a0a1b89a2826fe585e

openshift-clients-4.11.0-202303240327.p0.gdea6f47.assembly.stream.el8.src.rpm

SHA-256: 05eb57604b1958afe67ebb13b76d2c87e47714c97a61a3b96ff56798ba44a338

openshift-kuryr-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.src.rpm

SHA-256: 68e95224aa6585947aee4baa232d543b515018a5827f3ed969f3860283ba1a68

s390x

atomic-openshift-service-idler-4.11.0-202303240327.p0.ga0f9090.assembly.stream.el8.s390x.rpm

SHA-256: fc88a83be1f04c2404a2b3c1c745a4a8ac98cdaa8167cb24c47664229db70680

cri-o-1.24.4-10.rhaos4.11.git1ed5ac5.el8.s390x.rpm

SHA-256: 99e08b998de1c55d4314da3c4a280262f6d1083c9f3a2c233e6acabfe9e4c601

cri-o-debuginfo-1.24.4-10.rhaos4.11.git1ed5ac5.el8.s390x.rpm

SHA-256: 9961e4110a0aa5c2724303953e5331d25ea8224c3fc12d9099486074a0676086

cri-o-debugsource-1.24.4-10.rhaos4.11.git1ed5ac5.el8.s390x.rpm

SHA-256: b6748bd43e08a903533ceb8965796a0753a36cb08f210b35947b8da25c00d107

openshift-ansible-4.11.0-202303240327.p0.gdf73941.assembly.stream.el8.noarch.rpm

SHA-256: b73ac9e46bbb2b6b3334fd709c87ef85205e52ac877b3f63e82e3151849de2a5

openshift-ansible-test-4.11.0-202303240327.p0.gdf73941.assembly.stream.el8.noarch.rpm

SHA-256: ed2f8301027e1252aea43a7c2f591abe10839523c3159251c4305efa1390857a

openshift-clients-4.11.0-202303240327.p0.gdea6f47.assembly.stream.el8.s390x.rpm

SHA-256: 843f7ab7ed514781b171dc801a3528a41ec395dd9544b52779a4b86459f79216

openshift-hyperkube-4.11.0-202303240327.p0.gaf0420d.assembly.stream.el8.s390x.rpm

SHA-256: 1316f876fffeda0aca34de3b3cde847587caef82092dc07fe9a9b1d614d657d5

openshift-kuryr-cni-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: 6d8c39d8b4396aaa2671bbc7067bc894524a90acd093b5dac6c88f951ba52be9

openshift-kuryr-common-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: 65f8fd754c310aeb54f88b3664ee82f0cd062bf80e7c089a45d9fa2ba77fa47e

openshift-kuryr-controller-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: 0e6795e4ce9dda9e5bcf9b08cfe939569d7645d2a6fc0a5fef0d314e9fef089e

python3-kuryr-kubernetes-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: a9ff0d5a5ef17ada7443e4485afdcba05c5c445d50656d4ae59ab8bd0f5bc5ef

**Red Hat OpenShift Container Platform for ARM 64 4.11**

SRPM

atomic-openshift-service-idler-4.11.0-202303240327.p0.ga0f9090.assembly.stream.el8.src.rpm

SHA-256: d8bb906d27d8816fb5eded0c65f2e6fe350bf06af01f85699cdcbaa10556da55

cri-o-1.24.4-10.rhaos4.11.git1ed5ac5.el8.src.rpm

SHA-256: 44c1deea2911ce0b10c8f51a5c7c5170774f385e4843a75c97d5ea7dac8e3314

openshift-4.11.0-202303240327.p0.gaf0420d.assembly.stream.el8.src.rpm

SHA-256: 9180855f92439cb2d34e40f685027cd12336d88e44bd88807488f475dc63132c

openshift-ansible-4.11.0-202303240327.p0.gdf73941.assembly.stream.el8.src.rpm

SHA-256: 2669c68757fb97c802f16ba69b148c8af2eb0c31d21c85a0a1b89a2826fe585e

openshift-clients-4.11.0-202303240327.p0.gdea6f47.assembly.stream.el8.src.rpm

SHA-256: 05eb57604b1958afe67ebb13b76d2c87e47714c97a61a3b96ff56798ba44a338

openshift-kuryr-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.src.rpm

SHA-256: 68e95224aa6585947aee4baa232d543b515018a5827f3ed969f3860283ba1a68

aarch64

atomic-openshift-service-idler-4.11.0-202303240327.p0.ga0f9090.assembly.stream.el8.aarch64.rpm

SHA-256: 854cb22fd26523a737c70c9cbbb3efc75aff78c1a141b6100660c246b801e783

cri-o-1.24.4-10.rhaos4.11.git1ed5ac5.el8.aarch64.rpm

SHA-256: 4049b2e41ffd82622c19ff575f527e8dbea5090cf1a45bb9ee02c2ca5f49dc32

cri-o-debuginfo-1.24.4-10.rhaos4.11.git1ed5ac5.el8.aarch64.rpm

SHA-256: 2a3c0dd1a6a48ab0d64081e70d903b5c0ff13262cb57f44906786c3f4e243e0c

cri-o-debugsource-1.24.4-10.rhaos4.11.git1ed5ac5.el8.aarch64.rpm

SHA-256: 369014ab5e5c4c0bfdcd9c7b0cf1cc17f5bf95a6c72890df704449acb81381a4

openshift-ansible-4.11.0-202303240327.p0.gdf73941.assembly.stream.el8.noarch.rpm

SHA-256: b73ac9e46bbb2b6b3334fd709c87ef85205e52ac877b3f63e82e3151849de2a5

openshift-ansible-test-4.11.0-202303240327.p0.gdf73941.assembly.stream.el8.noarch.rpm

SHA-256: ed2f8301027e1252aea43a7c2f591abe10839523c3159251c4305efa1390857a

openshift-clients-4.11.0-202303240327.p0.gdea6f47.assembly.stream.el8.aarch64.rpm

SHA-256: 494a5ecd24cec9eef6e14b8b255e7a9ea6658416d1c2334ad98a4c85d7378386

openshift-hyperkube-4.11.0-202303240327.p0.gaf0420d.assembly.stream.el8.aarch64.rpm

SHA-256: 05fcd923211233a35556c5f8554b9f1c4e66d4d3e014d79a9d916156077f6343

openshift-kuryr-cni-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: 6d8c39d8b4396aaa2671bbc7067bc894524a90acd093b5dac6c88f951ba52be9

openshift-kuryr-common-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: 65f8fd754c310aeb54f88b3664ee82f0cd062bf80e7c089a45d9fa2ba77fa47e

openshift-kuryr-controller-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: 0e6795e4ce9dda9e5bcf9b08cfe939569d7645d2a6fc0a5fef0d314e9fef089e

python3-kuryr-kubernetes-4.11.0-202303240327.p0.g93daed6.assembly.stream.el8.noarch.rpm

SHA-256: a9ff0d5a5ef17ada7443e4485afdcba05c5c445d50656d4ae59ab8bd0f5bc5ef

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Tag

#red_hat