{"type":"TYPE_SECURITY","shortCode":"RL","name":"RLSA-2024:4349","synopsis":"Moderate: kernel security and bug fix update","severity":"SEVERITY_MODERATE","topic":"An update is available for kernel.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list","description":"The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: net\/mlx5e: Fix operation precedence bug in port timestamping napi_poll context (CVE-2023-52626)\n\n* kernel: Bluetooth: Avoid potential use-after-free in hci_error_reset (CVE-2024-26801)\n\n* kernel: crypto: qat - resolve race condition during AER recovery (CVE-2024-26974)\n\n* kernel: xen-netfront: Add missing skb_mark_for_recycle (CVE-2024-27393)\n\n* kernel: net\/mlx5e: fix a potential double-free in fs_any_create_groups (CVE-2023-52667)\n\n* kernel: smb: client: fix UAF in smb2_reconnect_server() (CVE-2024-35870)\n\n* kernel: net\/mlx5: Properly link new fs rules into the tree (CVE-2024-35960)\n\n* kernel: net: hns3: do not allow call hns3_nic_net_open repeatedly (CVE-2021-47400)\n\nBug Fix(es):\n\n* cifs - kernel panic with cifs_put_smb_ses (JIRA:Rocky Linux-28943)\n\n* BUG: unable to handle page fault for address: ff16bf752f593ff8 [rhel-9.4.z] (JIRA:Rocky Linux-35672)\n\n* [HPE 9.4 Bug] Request merge of AMD address translation library patch series [rhel-9.4.z] (JIRA:Rocky Linux-36220)\n\n* [Rocky Linux9] kernel BUG at lib\/list_debug.c:51! [rhel-9.4.z] (JIRA:Rocky Linux-36687)\n\n* ice: DPLL-related fixes [rhel-9.4.z] (JIRA:Rocky Linux-36716)\n\n* CNB95: net\/sched: update TC core to upstream v6.8 [rhel-9.4.z] (JIRA:Rocky Linux-37641)\n\n* IPv6: SR: backport fixes from upstream [rhel-9.4.z] (JIRA:Rocky Linux-37669)\n\n* [RFE] Backport tmpfs noswap mount option [rhel-9.4.z] (JIRA:Rocky Linux-38252)\n\n* Isolated cores causing issues on latest Rocky Linux9.4 kernel and not functioning as desired. [rhel-9.4.z] (JIRA:Rocky Linux-38595)\n\n* [ice] Add automatic VF reset on Tx MDD events [rhel-9.4.z] (JIRA:Rocky Linux-39083)\n\n* [HPEMC Rocky Linux 9.4 REGRESSION] turbostat: turbostat broken on 10+ sockets. [rhel-9.4.z] (JIRA:Rocky Linux-34953)\n\n* bnx2x: fix crashes in PCI error handling, resource leaks [rhel-9.4.z] (JIRA:Rocky Linux-43272)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.","solution":null,"affectedProducts":["Rocky Linux 9"],"fixes":[{"ticket":"2271680","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2271680","description":""},{"ticket":"2273429","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2273429","description":""},{"ticket":"2278354","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2278354","description":""},{"ticket":"2280745","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2280745","description":""},{"ticket":"2281350","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2281350","description":""},{"ticket":"2281740","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2281740","description":""},{"ticket":"2281920","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2281920","description":""},{"ticket":"2282336","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2282336","description":""}],"cves":[{"name":"CVE-2021-47400","sourceBy":"MITRE","sourceLink":"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2021-47400","cvss3ScoringVector":"UNKNOWN","cvss3BaseScore":"UNKNOWN","cwe":"UNKNOWN"},{"name":"CVE-2023-52626","sourceBy":"MITRE","sourceLink":"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-52626","cvss3ScoringVector":"UNKNOWN","cvss3BaseScore":"UNKNOWN","cwe":"UNKNOWN"},{"name":"CVE-2023-52667","sourceBy":"MITRE","sourceLink":"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-52667","cvss3ScoringVector":"UNKNOWN","cvss3BaseScore":"UNKNOWN","cwe":"UNKNOWN"},{"name":"CVE-2024-26801","sourceBy":"MITRE","sourceLink":"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2024-26801","cvss3ScoringVector":"UNKNOWN","cvss3BaseScore":"UNKNOWN","cwe":"UNKNOWN"},{"name":"CVE-2024-26974","sourceBy":"MITRE","sourceLink":"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2024-26974","cvss3ScoringVector":"UNKNOWN","cvss3BaseScore":"UNKNOWN","cwe":"UNKNOWN"},{"name":"CVE-2024-27393","sourceBy":"MITRE","sourceLink":"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2024-27393","cvss3ScoringVector":"UNKNOWN","cvss3BaseScore":"UNKNOWN","cwe":"UNKNOWN"},{"name":"CVE-2024-35870","sourceBy":"MITRE","sourceLink":"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2024-35870","cvss3ScoringVector":"UNKNOWN","cvss3BaseScore":"UNKNOWN","cwe":"UNKNOWN"},{"name":"CVE-2024-35960","sourceBy":"MITRE","sourceLink":"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2024-35960","cvss3ScoringVector":"UNKNOWN","cvss3BaseScore":"UNKNOWN","cwe":"UNKNOWN"}],"references":[],"publishedAt":"2024-07-15T12:18:37.352558Z","rpms":{"Rocky Linux 9":{"nvras":["kernel-0:5.14.0-427.24.1.el9_4.s390x.rpm","bpftool-0:7.3.0-427.24.1.el9_4.aarch64.rpm","bpftool-0:7.3.0-427.24.1.el9_4.ppc64le.rpm","bpftool-0:7.3.0-427.24.1.el9_4.s390x.rpm","bpftool-0:7.3.0-427.24.1.el9_4.x86_64.rpm","bpftool-debuginfo-0:7.3.0-427.24.1.el9_4.aarch64.rpm","bpftool-debuginfo-0:7.3.0-427.24.1.el9_4.ppc64le.rpm","bpftool-debuginfo-0:7.3.0-427.24.1.el9_4.s390x.rpm","bpftool-debuginfo-0:7.3.0-427.24.1.el9_4.x86_64.rpm","kernel-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-0:5.14.0-427.24.1.el9_4.src.rpm","kernel-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-64k-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-debug-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-debug-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-debug-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-debug-devel-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-debug-devel-matched-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-debug-modules-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-debug-modules-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-debug-modules-extra-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-devel-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-devel-matched-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-modules-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-modules-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-64k-modules-extra-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-abi-stablelists-0:5.14.0-427.24.1.el9_4.noarch.rpm","kernel-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-core-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-core-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-cross-headers-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-cross-headers-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-cross-headers-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-cross-headers-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-debug-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-debug-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-debug-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-debug-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-debug-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-debug-core-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-debug-core-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-debug-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-debug-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-debug-debuginfo-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-debug-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-debug-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-debug-devel-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-debug-devel-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-debug-devel-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-debug-devel-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-debug-devel-matched-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-debug-devel-matched-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-debug-devel-matched-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-debug-devel-matched-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-debuginfo-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-debug-modules-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-debug-modules-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-debug-modules-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-debug-modules-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-debug-modules-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-debug-modules-core-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-debug-modules-core-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-debug-modules-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-debug-modules-extra-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-debug-modules-extra-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-debug-modules-extra-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-debug-modules-extra-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-debug-uki-virt-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-devel-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-devel-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-devel-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-devel-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-devel-matched-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-devel-matched-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-devel-matched-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-devel-matched-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-doc-0:5.14.0-427.24.1.el9_4.noarch.rpm","kernel-headers-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-headers-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-headers-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-headers-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-modules-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-modules-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-modules-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-modules-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-modules-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-modules-core-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-modules-core-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-modules-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-modules-extra-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-modules-extra-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-modules-extra-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-modules-extra-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-debug-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-debug-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-debug-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-debug-devel-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-debug-kvm-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-debug-modules-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-debug-modules-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-debug-modules-extra-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-devel-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-kvm-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-modules-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-modules-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-rt-modules-extra-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-tools-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-tools-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-tools-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-tools-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-tools-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-tools-debuginfo-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-tools-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-tools-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-tools-libs-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-tools-libs-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-tools-libs-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-tools-libs-devel-0:5.14.0-427.24.1.el9_4.aarch64.rpm","kernel-tools-libs-devel-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","kernel-tools-libs-devel-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-uki-virt-0:5.14.0-427.24.1.el9_4.x86_64.rpm","kernel-zfcpdump-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-zfcpdump-core-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-zfcpdump-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-zfcpdump-devel-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-zfcpdump-devel-matched-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-zfcpdump-modules-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-zfcpdump-modules-core-0:5.14.0-427.24.1.el9_4.s390x.rpm","kernel-zfcpdump-modules-extra-0:5.14.0-427.24.1.el9_4.s390x.rpm","libperf-0:5.14.0-427.24.1.el9_4.aarch64.rpm","libperf-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","libperf-0:5.14.0-427.24.1.el9_4.s390x.rpm","libperf-0:5.14.0-427.24.1.el9_4.x86_64.rpm","libperf-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm","libperf-debuginfo-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","libperf-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm","libperf-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm","perf-0:5.14.0-427.24.1.el9_4.aarch64.rpm","perf-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","perf-0:5.14.0-427.24.1.el9_4.s390x.rpm","perf-0:5.14.0-427.24.1.el9_4.x86_64.rpm","perf-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm","perf-debuginfo-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","perf-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm","perf-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm","python3-perf-0:5.14.0-427.24.1.el9_4.aarch64.rpm","python3-perf-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","python3-perf-0:5.14.0-427.24.1.el9_4.s390x.rpm","python3-perf-0:5.14.0-427.24.1.el9_4.x86_64.rpm","python3-perf-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm","python3-perf-debuginfo-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","python3-perf-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm","python3-perf-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm","rtla-0:5.14.0-427.24.1.el9_4.aarch64.rpm","rtla-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","rtla-0:5.14.0-427.24.1.el9_4.s390x.rpm","rtla-0:5.14.0-427.24.1.el9_4.x86_64.rpm","rv-0:5.14.0-427.24.1.el9_4.aarch64.rpm","rv-0:5.14.0-427.24.1.el9_4.ppc64le.rpm","rv-0:5.14.0-427.24.1.el9_4.s390x.rpm","rv-0:5.14.0-427.24.1.el9_4.x86_64.rpm"]}},"rebootSuggested":false,"buildReferences":[]}

Rocky Linux: RLSA-2024:4349 kernel security and bug fix update Security Advisories Updates

July 15, 2024
An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Summary

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: net/mlx5e: Fix operation precedence bug in port timestamping napi_poll context (CVE-2023-52626) * kernel: Bluetooth: Avoid potential use-after-free in hci_error_reset (CVE-2024-26801) * kernel: crypto: qat - resolve race condition during AER recovery (CVE-2024-26974) * kernel: xen-netfront: Add missing skb_mark_for_recycle (CVE-2024-27393) * kernel: net/mlx5e: fix a potential double-free in fs_any_create_groups (CVE-2023-52667) * kernel: smb: client: fix UAF in smb2_reconnect_server() (CVE-2024-35870) * kernel: net/mlx5: Properly link new fs rules into the tree (CVE-2024-35960) * kernel: net: hns3: do not allow call hns3_nic_net_open repeatedly (CVE-2021-47400) Bug Fix(es): * cifs - kernel panic with cifs_put_smb_ses (JIRA:Rocky Linux-28943) * BUG: unable to handle page fault for address: ff16bf752f593ff8 [rhel-9.4.z] (JIRA:Rocky Linux-35672) * [HPE 9.4 Bug] Request merge of AMD address translation library patch series [rhel-9.4.z] (JIRA:Rocky Linux-36220) * [Rocky Linux9] kernel BUG at lib/list_debug.c:51! [rhel-9.4.z] (JIRA:Rocky Linux-36687) * ice: DPLL-related fixes [rhel-9.4.z] (JIRA:Rocky Linux-36716) * CNB95: net/sched: update TC core to upstream v6.8 [rhel-9.4.z] (JIRA:Rocky Linux-37641) * IPv6: SR: backport fixes from upstream [rhel-9.4.z] (JIRA:Rocky Linux-37669) * [RFE] Backport tmpfs noswap mount option [rhel-9.4.z] (JIRA:Rocky Linux-38252) * Isolated cores causing issues on latest Rocky Linux9.4 kernel and not functioning as desired. [rhel-9.4.z] (JIRA:Rocky Linux-38595) * [ice] Add automatic VF reset on Tx MDD events [rhel-9.4.z] (JIRA:Rocky Linux-39083) * [HPEMC Rocky Linux 9.4 REGRESSION] turbostat: turbostat broken on 10+ sockets. [rhel-9.4.z] (JIRA:Rocky Linux-34953) * bnx2x: fix crashes in PCI error handling, resource leaks [rhel-9.4.z] (JIRA:Rocky Linux-43272) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.

RPMs

kernel-0:5.14.0-427.24.1.el9_4.s390x.rpm

bpftool-0:7.3.0-427.24.1.el9_4.aarch64.rpm

bpftool-0:7.3.0-427.24.1.el9_4.ppc64le.rpm

bpftool-0:7.3.0-427.24.1.el9_4.s390x.rpm

bpftool-0:7.3.0-427.24.1.el9_4.x86_64.rpm

bpftool-debuginfo-0:7.3.0-427.24.1.el9_4.aarch64.rpm

bpftool-debuginfo-0:7.3.0-427.24.1.el9_4.ppc64le.rpm

bpftool-debuginfo-0:7.3.0-427.24.1.el9_4.s390x.rpm

bpftool-debuginfo-0:7.3.0-427.24.1.el9_4.x86_64.rpm

kernel-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-0:5.14.0-427.24.1.el9_4.src.rpm

kernel-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-64k-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-debug-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-debug-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-debug-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-debug-devel-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-debug-devel-matched-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-debug-modules-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-debug-modules-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-debug-modules-extra-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-devel-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-devel-matched-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-modules-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-modules-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-64k-modules-extra-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-abi-stablelists-0:5.14.0-427.24.1.el9_4.noarch.rpm

kernel-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-core-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-core-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-cross-headers-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-cross-headers-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-cross-headers-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-cross-headers-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-debug-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-debug-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-debug-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-debug-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-debug-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-debug-core-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-debug-core-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-debug-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-debug-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-debug-debuginfo-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-debug-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-debug-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-debug-devel-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-debug-devel-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-debug-devel-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-debug-devel-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-debug-devel-matched-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-debug-devel-matched-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-debug-devel-matched-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-debug-devel-matched-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-debuginfo-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-debug-modules-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-debug-modules-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-debug-modules-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-debug-modules-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-debug-modules-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-debug-modules-core-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-debug-modules-core-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-debug-modules-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-debug-modules-extra-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-debug-modules-extra-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-debug-modules-extra-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-debug-modules-extra-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-debug-uki-virt-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-devel-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-devel-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-devel-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-devel-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-devel-matched-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-devel-matched-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-devel-matched-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-devel-matched-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-doc-0:5.14.0-427.24.1.el9_4.noarch.rpm

kernel-headers-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-headers-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-headers-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-headers-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-modules-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-modules-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-modules-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-modules-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-modules-core-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-modules-core-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-modules-core-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-modules-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-modules-extra-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-modules-extra-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-modules-extra-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-modules-extra-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-debug-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-debug-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-debug-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-debug-devel-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-debug-kvm-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-debug-modules-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-debug-modules-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-debug-modules-extra-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-devel-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-kvm-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-modules-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-modules-core-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-rt-modules-extra-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-tools-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-tools-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-tools-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-tools-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-tools-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-tools-debuginfo-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-tools-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-tools-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-tools-libs-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-tools-libs-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-tools-libs-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-tools-libs-devel-0:5.14.0-427.24.1.el9_4.aarch64.rpm

kernel-tools-libs-devel-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

kernel-tools-libs-devel-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-uki-virt-0:5.14.0-427.24.1.el9_4.x86_64.rpm

kernel-zfcpdump-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-zfcpdump-core-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-zfcpdump-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-zfcpdump-devel-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-zfcpdump-devel-matched-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-zfcpdump-modules-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-zfcpdump-modules-core-0:5.14.0-427.24.1.el9_4.s390x.rpm

kernel-zfcpdump-modules-extra-0:5.14.0-427.24.1.el9_4.s390x.rpm

libperf-0:5.14.0-427.24.1.el9_4.aarch64.rpm

libperf-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

libperf-0:5.14.0-427.24.1.el9_4.s390x.rpm

libperf-0:5.14.0-427.24.1.el9_4.x86_64.rpm

libperf-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm

libperf-debuginfo-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

libperf-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm

libperf-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm

perf-0:5.14.0-427.24.1.el9_4.aarch64.rpm

perf-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

perf-0:5.14.0-427.24.1.el9_4.s390x.rpm

perf-0:5.14.0-427.24.1.el9_4.x86_64.rpm

perf-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm

perf-debuginfo-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

perf-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm

perf-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm

python3-perf-0:5.14.0-427.24.1.el9_4.aarch64.rpm

python3-perf-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

python3-perf-0:5.14.0-427.24.1.el9_4.s390x.rpm

python3-perf-0:5.14.0-427.24.1.el9_4.x86_64.rpm

python3-perf-debuginfo-0:5.14.0-427.24.1.el9_4.aarch64.rpm

python3-perf-debuginfo-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

python3-perf-debuginfo-0:5.14.0-427.24.1.el9_4.s390x.rpm

python3-perf-debuginfo-0:5.14.0-427.24.1.el9_4.x86_64.rpm

rtla-0:5.14.0-427.24.1.el9_4.aarch64.rpm

rtla-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

rtla-0:5.14.0-427.24.1.el9_4.s390x.rpm

rtla-0:5.14.0-427.24.1.el9_4.x86_64.rpm

rv-0:5.14.0-427.24.1.el9_4.aarch64.rpm

rv-0:5.14.0-427.24.1.el9_4.ppc64le.rpm

rv-0:5.14.0-427.24.1.el9_4.s390x.rpm

rv-0:5.14.0-427.24.1.el9_4.x86_64.rpm

References

No References

CVEs

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47400

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52626

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52667

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26801

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26974

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27393

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35870

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35960

Severity
Name: RLSA-2024:4349
Affected Products: Rocky Linux 9

Fixes

https://bugzilla.redhat.com/show_bug.cgi?id=2271680

https://bugzilla.redhat.com/show_bug.cgi?id=2273429

https://bugzilla.redhat.com/show_bug.cgi?id=2278354

https://bugzilla.redhat.com/show_bug.cgi?id=2280745

https://bugzilla.redhat.com/show_bug.cgi?id=2281350

https://bugzilla.redhat.com/show_bug.cgi?id=2281740

https://bugzilla.redhat.com/show_bug.cgi?id=2281920

https://bugzilla.redhat.com/show_bug.cgi?id=2282336


Related News

Defending Against Remote Code Execution in Google Chrome: A Critical Update
2 - 3 min read
Google Chrome, a widely used web browser, serves millions of internet users by connecting them to the online world. Unfortunately, severe
Navigating the Linux Kernel
2 - 4 min read
The Linux operating system, widely acclaimed for its robustness and security , recently received widespread media attention due to a significant
Staying a Step Ahead of Adversaries: Mitigating Chromium
2 - 4 min read
Google Chrome, one of the world's most widely used web browsers, has recently been scrutinized due to the discovery of multiple Chromium
Unmasking Cicada3301: Examining the Threat of the New Rust-Based Ransomware
2 - 4 min read
Ransomware has long been a severe threat to organizations and admins alike. Recently, cybersecurity researchers discovered a new variant called
Buffer Overflow Exploits in Linux: Origins, Impact, and Countermeasures
3 - 6 min read
Buffer overflow vulnerabilities have long been one of the biggest headaches in computer security, especially on Linux operating systems that power
8 Expert-Recommended Security Practices to Fortify Your Linux Systems
4 - 8 min read
As a Linux admin or an infosec professional, you understand how the security landscape changes due to evolving threats, newly discovered
Open Source Strategies for Enhancing Security in Digital Business Operations
5 - 9 min read
Digital transformation, powered by the principles of open-source security , is vital for businesses looking to excel in today's technology-driven
Microsoft Update Mayhem: Rescuing Linux Dual-Boot Systems from Secure Boot Woes
2 - 4 min read
Microsoft's recent patch, intended to strengthen Secure Boot defenses, has resulted in an unexpected setback for Linux-Windows dual-boot setups

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved