Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -1 articles for you...
98
security advisorymemory corruptionRed Hat Enterprise LinuxRed Hat: RHSA-2023-1192-01 Important Kpatch Update for Major Memory Issues
An update for kpatch-patch is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kpatch-patch security update Advisory ID: RHSA-2023:1192-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:1192 Issue date: 2023-03-13 CVE Names: CVE-2022-2964 CVE-2022-41222 ==================================================================== 1. Summary: An update for kpatch-patch is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS EUS (v.8.6) - ppc64le, x86_64 3. Description: This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fix(es): * kernel: memory corruption in AX88179_178A based USB ethernet device. (CVE-2022-2964) * kernel: mm/mremap.c use-after-free vulnerability (CVE-2022-41222) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2067482 - CVE-2022-2964 kernel: memory corruption inAX88179_178A based USB ethernet device. 2138818 - CVE-2022-41222 kernel: mm/mremap.c use-after-free vulnerability 6. Package List: Red Hat Enterprise Linux BaseOS EUS(v.8.6): Source: kpatch-patch-4_18_0-372_26_1-1-5.el8_6.src.rpm kpatch-patch-4_18_0-372_32_1-1-4.el8_6.src.rpm kpatch-patch-4_18_0-372_36_1-1-3.el8_6.src.rpm kpatch-patch-4_18_0-372_40_1-1-3.el8_6.src.rpm kpatch-patch-4_18_0-372_41_1-1-2.el8_6.src.rpm ppc64le: kpatch-patch-4_18_0-372_26_1-1-5.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_26_1-debuginfo-1-5.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_26_1-debugsource-1-5.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_32_1-1-4.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_32_1-debuginfo-1-4.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_32_1-debugsource-1-4.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_36_1-1-3.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_36_1-debuginfo-1-3.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_36_1-debugsource-1-3.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_40_1-1-3.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_40_1-debuginfo-1-3.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_40_1-debugsource-1-3.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_41_1-1-2.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_41_1-debuginfo-1-2.el8_6.ppc64le.rpm kpatch-patch-4_18_0-372_41_1-debugsource-1-2.el8_6.ppc64le.rpm x86_64: kpatch-patch-4_18_0-372_26_1-1-5.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_26_1-debuginfo-1-5.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_26_1-debugsource-1-5.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_32_1-1-4.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_32_1-debuginfo-1-4.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_32_1-debugsource-1-4.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_36_1-1-3.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_36_1-debuginfo-1-3.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_36_1-debugsource-1-3.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_40_1-1-3.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_40_1-debuginfo-1-3.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_40_1-debugsource-1-3.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_41_1-1-2.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_41_1-debuginfo-1-2.el8_6.x86_64.rpm kpatch-patch-4_18_0-372_41_1-debugsource-1-2.el8_6.x86_64.rpm These packages are GPG signed by RedHat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2022-2964 https://access.redhat.com/security/cve/CVE-2022-41222 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBZA897tzjgjWX9erEAQikMQ/9FRnl6FKDWMwAnfiUBfNnr+W5aN1TqK8R TMVKASaKUaDCmi3+ExDK+3SkpDdyb5GGavG5X6whAGeOqxoQw+Lh22nicZnWu4b0 5Qz8hSE5ReYOXNisR9MmZW9QoE8TVG60m1xM3cLemnsex5tCU5YlAF1Lo6WMRHeR QMQ/mnEtZTeilM+UmO0GSorz2iEX2s7hFvIafwo2cQD6VS0Q3loqH8ePTpYaz9fg D1w8y13bEX/p+m9BI1ihK/VEX07WxNbvQcaK794RF7ZvKRWD35eqR2ajTTqSdTaY L1LMy5CuBu9JFYDT0iAmpAcDhB8PhEEKFqm90xGVxfEUSVHagqAthgp7vAceLd7G qEuE6VEAxP8eAA1j7yRZSTn5LzWuz/qi4kv6gnCzWKq0+M38bYtH6x6XKVldOvRy CMz1oxomUE2g717pcJBBNQn3cSRicRKkUceqW/R+eoE8/DzzI4X8T0Gme17aiZH7 kZrTZZ4OSt7YhE1m2HvX4rYp1EAUiMvxjdwON1xoagXr97KrBFaRtUs9GveYvC3h FkgDH8fCyeOx50M3IvVYyxUtFSHeHTdQ/IoFNlY4Mfu8pbPaLeMtY5IyqBwES6Ec 02mtaHyvnkwwVJ6C32g0ZhPWNmKrdFrNBm1piwb9OwGs5SIh3gPqdLF2qQAJ3VzX AkEXpsRrSU0=LPHk -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Mar 13, 2023
•Important
Red Hat
98
security advisorybuffer overflowprivilege escalationRed Hat Enterprise Linux 9.0 RHSA-2022:9082-01 Important: Kpatch Patch
An update for kpatch-patch is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kpatch-patch security update Advisory ID: RHSA-2022:9082-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:9082 Issue date: 2022-12-15 CVE Names: CVE-2022-1158 CVE-2022-2639 CVE-2022-2959 CVE-2022-43945 ==================================================================== 1. Summary: An update for kpatch-patch is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS EUS (v.9.0) - ppc64le, x86_64 3. Description: This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fix(es): * kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region (CVE-2022-1158) * kernel: openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size() (CVE-2022-2639) * kernel: watch queue race condition can lead to privilege escalation (CVE-2022-2959) * kernel: nfsd buffer overflow by RPC message over TCP with garbage data (CVE-2022-43945) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the Referencessection. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2069793 - CVE-2022-1158 kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region 2084479 - CVE-2022-2639 kernel: openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size() 2103681 - CVE-2022-2959 kernel: watch queue race condition can lead to privilege escalation 2141752 - CVE-2022-43945 kernel: nfsd buffer overflow by RPC message over TCP with garbage data 6. Package List: Red Hat Enterprise Linux BaseOS EUS(v.9.0): Source: kpatch-patch-5_14_0-70_13_1-1-5.el9_0.src.rpm kpatch-patch-5_14_0-70_17_1-1-4.el9_0.src.rpm kpatch-patch-5_14_0-70_22_1-1-4.el9_0.src.rpm kpatch-patch-5_14_0-70_26_1-1-3.el9_0.src.rpm kpatch-patch-5_14_0-70_30_1-1-1.el9_0.src.rpm ppc64le: kpatch-patch-5_14_0-70_13_1-1-5.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_13_1-debuginfo-1-5.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_13_1-debugsource-1-5.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_17_1-1-4.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_17_1-debuginfo-1-4.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_17_1-debugsource-1-4.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_22_1-1-4.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_22_1-debuginfo-1-4.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_22_1-debugsource-1-4.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_26_1-1-3.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_26_1-debuginfo-1-3.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_26_1-debugsource-1-3.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_30_1-1-1.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_30_1-debuginfo-1-1.el9_0.ppc64le.rpm kpatch-patch-5_14_0-70_30_1-debugsource-1-1.el9_0.ppc64le.rpm x86_64: kpatch-patch-5_14_0-70_13_1-1-5.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_13_1-debuginfo-1-5.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_13_1-debugsource-1-5.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_17_1-1-4.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_17_1-debuginfo-1-4.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_17_1-debugsource-1-4.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_22_1-1-4.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_22_1-debuginfo-1-4.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_22_1-debugsource-1-4.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_26_1-1-3.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_26_1-debuginfo-1-3.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_26_1-debugsource-1-3.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_30_1-1-1.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_30_1-debuginfo-1-1.el9_0.x86_64.rpm kpatch-patch-5_14_0-70_30_1-debugsource-1-1.el9_0.x86_64.rpm These packages are GPG signed by Red Hat for security. Our keyand details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2022-1158 https://access.redhat.com/security/cve/CVE-2022-2639 https://access.redhat.com/security/cve/CVE-2022-2959 https://access.redhat.com/security/cve/CVE-2022-43945 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBY5ug7NzjgjWX9erEAQjqwA//QXemNcN+JiDPGuKUjrrbsdAd0LHyMg3z 55HbU3XKWXuj4dxke5ZKfn38dvd84g7fepQpG52W2frPRjkQHhO4Uokta43EcCXc RZLKI9jNq3bMvsFPmTZlSFElamz6OTn2ECSgYh8NyrNl3VzHr5hy/eJET3QM1kig tsIjjdcP/VNlm41Zs9kdHBqPdV/Nr/aVrjeFgBx/ig3JrP0ePfloWUezVIJD/QQV PkWUgGdXNUK2jvlB3AH7iwhRWMGxKbRceEvJZS9yc2S9Hy1M7lj5DZQgt9CU02xU aWMxNTcGlVBNsCPgFz2GOXMr5VQebtMkVIMMjOlB8vH0PrlunSy4NWlkZdh/cBc/ FAHuS8L1Fsl2K8neacBbMpWLTaKteorC0ZbL9ZW5hMmVKLfiecm1Z2L2CYtAb0GG u3RwsycRCX0GVzWamlbKn6MLcKgxLtzl1XMd9kHEGRWSb05O9P0ECj0SV7zwDy4o 3/GoLeAglIzP+sxdAeeK6ocA5zAdHTZM26KI2MYe0yyLR5n/EiO4Lxcs6YCdPP7n XGB+vCpV/xS77tzMDafyS/9Gq7cguwn3v5DQQHCQ4Db3n5z3uhAc0QVfSKzaYnkY 5bTK99gofD8HbC8kHMExNEbVWu6x3yLhtXiOhrQKGLX1dU2UiQyGJmmfwvTzb0+G HVA5TRLZ0Ak=Heu4 -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Dec 15, 2022
•Important
Red Hat
98
security advisoryprivilege escalationkernel patchRed Hat Enterprise Linux 7.6 RHSA-2022-7173-01 Important Kernel Patch
An update for kpatch-patch is now available for Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kpatch-patch security update Advisory ID: RHSA-2022:7173-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:7173 Issue date: 2022-10-25 CVE Names: CVE-2021-3715 CVE-2022-2588 ==================================================================== 1. Summary: An update for kpatch-patch is now available for Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server E4S (v. 7.6) - ppc64le, x86_64 3. Description: This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fix(es): * kernel: use-after-free in route4_change() in net/sched/cls_route.c (CVE-2021-3715) * kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation (CVE-2022-2588) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed(https://bugzilla.redhat.com/): 1993988 - CVE-2021-3715 kernel: use-after-free in route4_change() in net/sched/cls_route.c 2114849 - CVE-2022-2588 kernel: a use-after-free in cls_route filter implementation may lead to privilege escalation 6. Package List: Red Hat Enterprise Linux Server E4S (v. 7.6): Source: kpatch-patch-3_10_0-957_84_1-1-6.el7.src.rpm kpatch-patch-3_10_0-957_92_1-1-3.el7.src.rpm kpatch-patch-3_10_0-957_94_1-1-2.el7.src.rpm kpatch-patch-3_10_0-957_95_1-1-1.el7.src.rpm kpatch-patch-3_10_0-957_97_1-1-1.el7.src.rpm ppc64le: kpatch-patch-3_10_0-957_84_1-1-6.el7.ppc64le.rpm kpatch-patch-3_10_0-957_84_1-debuginfo-1-6.el7.ppc64le.rpm kpatch-patch-3_10_0-957_92_1-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-957_92_1-debuginfo-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-957_94_1-1-2.el7.ppc64le.rpm kpatch-patch-3_10_0-957_94_1-debuginfo-1-2.el7.ppc64le.rpm kpatch-patch-3_10_0-957_95_1-1-1.el7.ppc64le.rpm kpatch-patch-3_10_0-957_95_1-debuginfo-1-1.el7.ppc64le.rpm kpatch-patch-3_10_0-957_97_1-1-1.el7.ppc64le.rpm kpatch-patch-3_10_0-957_97_1-debuginfo-1-1.el7.ppc64le.rpm x86_64: kpatch-patch-3_10_0-957_84_1-1-6.el7.x86_64.rpm kpatch-patch-3_10_0-957_84_1-debuginfo-1-6.el7.x86_64.rpm kpatch-patch-3_10_0-957_92_1-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-957_92_1-debuginfo-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-957_94_1-1-2.el7.x86_64.rpm kpatch-patch-3_10_0-957_94_1-debuginfo-1-2.el7.x86_64.rpm kpatch-patch-3_10_0-957_95_1-1-1.el7.x86_64.rpm kpatch-patch-3_10_0-957_95_1-debuginfo-1-1.el7.x86_64.rpm kpatch-patch-3_10_0-957_97_1-1-1.el7.x86_64.rpm kpatch-patch-3_10_0-957_97_1-debuginfo-1-1.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2021-3715 https://access.redhat.com/security/cve/CVE-2022-2588 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . Morecontact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBY1gpc9zjgjWX9erEAQiy6A/8C67uLSq65p6yUadRtDHkjmZo5ep5xmmZ ob2WmG6yx99aLg5YGX96mpoogEU+kUOSgHKahmB+XWZGbS92a3VjPIFIprmCN/+N pKgyUXbiKiWmO+qYs12fqSKKoxYbloXixGukXbHbKLDjqrwV6kG0ALI5aen93PjL Zz204Q8X/Fs+KeOQmQZklcAmRnzFQLChVXB+UOHIK4S772llcT+GbOfVCs3mewaS siYv0dOU/pcclk0CZ3iF1EqKXLsQWmeh/iwZIA5M+g3IF6lhmJu1rz2oq92DmeKl 4L2MQvBCU2XtmVchvuZVyZ3Xi8QZQfDwVu6blNdTAJsHnMgwK6JA0zB/GVvKADSx 3pXHTAIVpKkGLjQF4PYnKez+5SUlvmbTwI6ZsAusLAtQDyOlLo5lh55NxMtINfuK GgNHuTKyD3aje1j8mXSMRxNkDwvl5Y2h8RPY3NDZ9XjNnTT5ks75lb1wHsWA2C4Q epPgCgsZ1uKaU/3SqVFaS3zHnh5wWtaZ7bJVXe87sP+t0TH8goreIhvyC0RhKNnx /m0acKsLvBpK6cq1eX7Gl8n7bnl6uphNhxPyodLvlcWrdICePPmsgW3KBCQ8fWYc aizY4umnH8cPpRI3Tb6UYsp15HPtSqvoLlBbcxLy+pF2GFJMkcpPsPEbYQ84sFfQ 87DG6wthkiM=A7oV -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Oct 25, 2022
•Important
Red Hat
98
security advisoryprivilege escalationimportantRed Hat Enterprise Linux 7 RHSA-2022:5216-01 Important Privilege Escalation
An update for kpatch-patch is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kpatch-patch security update Advisory ID: RHSA-2022:5216-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:5216 Issue date: 2022-06-28 CVE Names: CVE-2022-1966 ==================================================================== 1. Summary: An update for kpatch-patch is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server (v. 7) - ppc64le, x86_64 3. Description: This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fix(es): * kernel: a use-after-free write in the netfilter subsystem can lead to privilege escalation to root (CVE-2022-1966) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2092427 - CVE-2022-1966 kernel: a use-after-free write in the netfilter subsystem can lead toprivilege escalation to root 6. Package List: Red Hat Enterprise Linux Server (v.7): Source: kpatch-patch-3_10_0-1160_36_2-1-8.el7.src.rpm kpatch-patch-3_10_0-1160_41_1-1-7.el7.src.rpm kpatch-patch-3_10_0-1160_42_2-1-6.el7.src.rpm kpatch-patch-3_10_0-1160_45_1-1-5.el7.src.rpm kpatch-patch-3_10_0-1160_49_1-1-4.el7.src.rpm kpatch-patch-3_10_0-1160_53_1-1-4.el7.src.rpm kpatch-patch-3_10_0-1160_59_1-1-3.el7.src.rpm kpatch-patch-3_10_0-1160_62_1-1-2.el7.src.rpm kpatch-patch-3_10_0-1160_66_1-1-1.el7.src.rpm ppc64le: kpatch-patch-3_10_0-1160_36_2-1-8.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_36_2-debuginfo-1-8.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_41_1-1-7.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_41_1-debuginfo-1-7.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_42_2-1-6.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_42_2-debuginfo-1-6.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_45_1-1-5.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_45_1-debuginfo-1-5.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_49_1-1-4.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_49_1-debuginfo-1-4.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_53_1-1-4.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_53_1-debuginfo-1-4.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_59_1-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_59_1-debuginfo-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_62_1-1-2.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_62_1-debuginfo-1-2.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_66_1-1-1.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_66_1-debuginfo-1-1.el7.ppc64le.rpm x86_64: kpatch-patch-3_10_0-1160_36_2-1-8.el7.x86_64.rpm kpatch-patch-3_10_0-1160_36_2-debuginfo-1-8.el7.x86_64.rpm kpatch-patch-3_10_0-1160_41_1-1-7.el7.x86_64.rpm kpatch-patch-3_10_0-1160_41_1-debuginfo-1-7.el7.x86_64.rpm kpatch-patch-3_10_0-1160_42_2-1-6.el7.x86_64.rpm kpatch-patch-3_10_0-1160_42_2-debuginfo-1-6.el7.x86_64.rpm kpatch-patch-3_10_0-1160_45_1-1-5.el7.x86_64.rpm kpatch-patch-3_10_0-1160_45_1-debuginfo-1-5.el7.x86_64.rpm kpatch-patch-3_10_0-1160_49_1-1-4.el7.x86_64.rpm kpatch-patch-3_10_0-1160_49_1-debuginfo-1-4.el7.x86_64.rpm kpatch-patch-3_10_0-1160_53_1-1-4.el7.x86_64.rpm kpatch-patch-3_10_0-1160_53_1-debuginfo-1-4.el7.x86_64.rpm kpatch-patch-3_10_0-1160_59_1-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1160_59_1-debuginfo-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1160_62_1-1-2.el7.x86_64.rpm kpatch-patch-3_10_0-1160_62_1-debuginfo-1-2.el7.x86_64.rpm kpatch-patch-3_10_0-1160_66_1-1-1.el7.x86_64.rpm kpatch-patch-3_10_0-1160_66_1-debuginfo-1-1.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-1966 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYrtJ+9zjgjWX9erEAQhH1BAAgC0RsYyTFSnjQlucm7BfGtWgqWacRSgg cf72edvgHRlO2a+e2AHqemR/EFBRW+jcUdv9cmDwnHyjmNG0rvE9z5VBM0iwaMrn AE77uPAAN3G10qGA6SRxSaW48nn0YOqc6SwmgHZVBuIFE4UMxrmvYgK3zhA4hAyd 1CXYqbTZYo4nXi98KDVtfS+dgEmWVUJlKdAtl/hxprVt/s6a9XGuu5mlZZUoASG1 95MXY5+K8sJW2fGZ7olZUJTJ1x80nd2bi9/y+qMSdGMWjjuzZTMAMv+k4cvJ24wj rFvpTStyhi/BkWiKtKhCfO9uefrOULR9Yhlwkmbog9I7zh+07dzLD/EjD9yON1QK S+TGTAAJQ3ROSOSf3XRCMA3svgzakQXFV/14Kbg2kjnWSuAGfUpBRC9+i7cwmXgI nAEEMcHRaNF/rcj/anF8P6Hg0yxPwmoArCrbTKhH5vHKxE5pNbZu0EBQ4939nrz2 3TpU1o+zR4nOrYJUHDT09mITNrb4k5lbDI0WihXYcZhGOGowrdaqt0guklZ1PRF2 p0hSjxtB4inzZSzSblpgu9mX9jXZ5Zyt4KqwlH9L4c2qTWyPOMZHttHhiKZ2Fp6S rG7Tsa6RiBJyF7LpzKx2bSKuq6WWdXtWyZCM6tCenaomS7NYXkVOziTryW5B+qaS IMY/z0Gq2Jc=Q6YQ -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Jun 28, 2022
•Important
Red Hat
98
security advisoryRed HatcriticalRed Hat 7.7: RHSA-2021-4000 Critical Kpatch Update for Kernel Issues
An update is now available for Red Hat Enterprise Linux 7.7 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kpatch-patch security update Advisory ID: RHSA-2021:4000-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:4000 Issue date: 2021-10-26 CVE Names: CVE-2021-22543 CVE-2021-37576 ==================================================================== 1. Summary: An update is now available for Red Hat Enterprise Linux 7.7 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server E4S (v. 7.7) - ppc64le, x86_64 3. Description: This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fix(es): * kernel: Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks (CVE-2021-22543) * kernel: powerpc: KVM guest OS users can cause host OS memory corruption (CVE-2021-37576) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1965461 - CVE-2021-22543 kernel:Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks 1986506 - CVE-2021-37576 kernel: powerpc: KVM guest OS users can cause host OS memory corruption 6. Package List: Red Hat Enterprise Linux Server E4S (v.7.7): Source: kpatch-patch-3_10_0-1062_40_1-1-6.el7.src.rpm kpatch-patch-3_10_0-1062_43_1-1-6.el7.src.rpm kpatch-patch-3_10_0-1062_45_1-1-6.el7.src.rpm kpatch-patch-3_10_0-1062_46_1-1-5.el7.src.rpm kpatch-patch-3_10_0-1062_49_1-1-3.el7.src.rpm kpatch-patch-3_10_0-1062_51_1-1-3.el7.src.rpm kpatch-patch-3_10_0-1062_52_2-1-2.el7.src.rpm kpatch-patch-3_10_0-1062_56_1-1-1.el7.src.rpm ppc64le: kpatch-patch-3_10_0-1062_40_1-1-6.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_40_1-debuginfo-1-6.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_43_1-1-6.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_43_1-debuginfo-1-6.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_45_1-1-6.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_45_1-debuginfo-1-6.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_46_1-1-5.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_46_1-debuginfo-1-5.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_49_1-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_49_1-debuginfo-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_51_1-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_51_1-debuginfo-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_52_2-1-2.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_52_2-debuginfo-1-2.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_56_1-1-1.el7.ppc64le.rpm kpatch-patch-3_10_0-1062_56_1-debuginfo-1-1.el7.ppc64le.rpm x86_64: kpatch-patch-3_10_0-1062_40_1-1-6.el7.x86_64.rpm kpatch-patch-3_10_0-1062_40_1-debuginfo-1-6.el7.x86_64.rpm kpatch-patch-3_10_0-1062_43_1-1-6.el7.x86_64.rpm kpatch-patch-3_10_0-1062_43_1-debuginfo-1-6.el7.x86_64.rpm kpatch-patch-3_10_0-1062_45_1-1-6.el7.x86_64.rpm kpatch-patch-3_10_0-1062_45_1-debuginfo-1-6.el7.x86_64.rpm kpatch-patch-3_10_0-1062_46_1-1-5.el7.x86_64.rpm kpatch-patch-3_10_0-1062_46_1-debuginfo-1-5.el7.x86_64.rpm kpatch-patch-3_10_0-1062_49_1-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1062_49_1-debuginfo-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1062_51_1-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1062_51_1-debuginfo-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1062_52_2-1-2.el7.x86_64.rpm kpatch-patch-3_10_0-1062_52_2-debuginfo-1-2.el7.x86_64.rpm kpatch-patch-3_10_0-1062_56_1-1-1.el7.x86_64.rpm kpatch-patch-3_10_0-1062_56_1-debuginfo-1-1.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2021-22543 https://access.redhat.com/security/cve/CVE-2021-37576 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYXgrK9zjgjWX9erEAQiGtw//QonqRz7zOIHZ3XQnDWFehg8EvqaZU0Hv O68iuV8cV2isPbTpLywy7EWH1zwtxT1UNKSVoNmxFsBVUT7JEJWka9TEQtZGeXiq 2UrwOBbzzPSdffbDqGktUbsHN/pVjg70wyJYsENiDL8Qe/cSyLlDlww5U6IEvWP4 OzoN+950ja7Hr33DRsZ3TTiviLCqrxsS4yoJNBXQiw8k4LZ3wMsSwpAWBKth+l0+ KWcNWVjyE7rz7Krc6agkxmO9lJK0nV3h8qlYWAsnsDc2CDkcIWPvMjXKMf7Eit7o zaWps9C+1Co5GE5wJV2UU2cMlmquZuVSn9uL5bT24R35NJzhiQdH2XTsi4wtxknp 419Icmxc8UVHeUWowlvDL9yK0L2uDp/BftjpWbs9Nr9W+oa4jgN5pTnSFC7A5FDk ncVqfMxPkJRQ3RVBstA6xqlPd1ZH5M4B+0O7XsN0nAUz0LFAPQIvZ6yQzmJjiRzE K4KWQOTpJ5qsL/7EkSF5Y81TkLe/V1DxG5MaTeOryIv4gRPyDIhq86/Mx+Z5yu7k zuy5MQwIko/vOZMe6LOJ/hBtTIP4dQGlcrpIk+6mO83436fEwU4soaNVcildjYIw hI5N9taO5AbgmWBdMvAc6Ne0kmmFL8AreThvG5UWdFnpDUskdoWys4pgxvMc/rIu zuLrOOTUBY0=VcAB -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Oct 26, 2021
•Important
Red Hat
98
security advisorymemory corruptionimportantRed Hat Enterprise Linux 8 RHSA-2021-3436-01 Important: Kpatch Memory Fix
An update is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kpatch-patch security update Advisory ID: RHSA-2021:3436-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:3436 Issue date: 2021-09-07 CVE Names: CVE-2021-37576 ==================================================================== 1. Summary: An update is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS (v. 8) - ppc64le 3. Description: This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fix(es): * kernel: powerpc: KVM guest OS users can cause host OS memory corruption (CVE-2021-37576) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1986506 - CVE-2021-37576 kernel: powerpc: KVM guest OS users can cause host OS memory corruption 6. Package List: Red Hat Enterprise Linux BaseOS (v.8): Source: kpatch-patch-4_18_0-305-1-5.el8.src.rpm kpatch-patch-4_18_0-305_10_2-1-2.el8_4.src.rpm kpatch-patch-4_18_0-305_12_1-1-1.el8_4.src.rpm kpatch-patch-4_18_0-305_3_1-1-4.el8_4.src.rpm kpatch-patch-4_18_0-305_7_1-1-3.el8_4.src.rpm ppc64le: kpatch-patch-4_18_0-305-1-5.el8.ppc64le.rpm kpatch-patch-4_18_0-305-debuginfo-1-5.el8.ppc64le.rpm kpatch-patch-4_18_0-305-debugsource-1-5.el8.ppc64le.rpm kpatch-patch-4_18_0-305_10_2-1-2.el8_4.ppc64le.rpm kpatch-patch-4_18_0-305_10_2-debuginfo-1-2.el8_4.ppc64le.rpm kpatch-patch-4_18_0-305_10_2-debugsource-1-2.el8_4.ppc64le.rpm kpatch-patch-4_18_0-305_12_1-1-1.el8_4.ppc64le.rpm kpatch-patch-4_18_0-305_12_1-debuginfo-1-1.el8_4.ppc64le.rpm kpatch-patch-4_18_0-305_12_1-debugsource-1-1.el8_4.ppc64le.rpm kpatch-patch-4_18_0-305_3_1-1-4.el8_4.ppc64le.rpm kpatch-patch-4_18_0-305_3_1-debuginfo-1-4.el8_4.ppc64le.rpm kpatch-patch-4_18_0-305_3_1-debugsource-1-4.el8_4.ppc64le.rpm kpatch-patch-4_18_0-305_7_1-1-3.el8_4.ppc64le.rpm kpatch-patch-4_18_0-305_7_1-debuginfo-1-3.el8_4.ppc64le.rpm kpatch-patch-4_18_0-305_7_1-debugsource-1-3.el8_4.ppc64le.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-37576 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYTc3b9zjgjWX9erEAQhcng/9GHNj+rjwnPT2pguBHgZlGBPLp2nVNKbf 9iymtIAT+51kPu8H6rHZY6Iw7r3YAWSFbGCAVFAUuWvQuAHerISDZBIcw5crcH2b TGtri9C7iSXeMMFBS0LnT7F0U5Un4rRux58v2U+3PPlIcqBYszKi9cMWyBGqkz3B CDBe8TF+l6M0NP1AYe/f2Z6qPZwVpvMSTSxZMfWUE/Lp7MiXrQj2hWCR1QHNd+Y6 yeS2cEWdjdZAlVg2dLNIlR14Go7ZGouLb7mvowApcHDC6wFJ3CKi4b1/46FmLeZ9 VHEdQCZTyftYwAqjRjv2qQmrj9TEcsrQ66dtJ2ThAPzWtF0jnlEs1932/fNFqqCc C3sPBy4H5rcKmyhv2OxsZQGGFVctJlgXo0ydfOyjLCmFg16fBwqhf2TW0EpROSfl ayepZcNOL60JVE9GihKTNqw/LtxrKKrm9fX1E4bJzoGMkQNKl6cVDkl+RkzYTkIN cELNR3/zqz01oZgTNZ3aAgHfaved+9N2iHWgSwniHIlBH018lwVV9hxCVOKuRq7e 2AKaDSlMNk9jKGIDUdqiOVAxXst0LXEHxFRvpRQL6hW3F4T1D251z7CkBUEMQGC3 /N9vgfNCxND9p/VsCm9aCw6JXW5ziR++Fi83kVpA28bOUw49fO2ft3khZCwn+GPO HaI9YOM5jIg=a4A+ -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Sep 07, 2021
•Important
Red Hat
98
security advisorykernel updateRed Hat Enterprise LinuxRed Hat Enterprise Linux 8.1: RHSA-2021-3181-01 Important Kpatch Patch
An update for kpatch-patch is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kpatch-patch security update Advisory ID: RHSA-2021:3181-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:3181 Issue date: 2021-08-17 CVE Names: CVE-2021-22543 CVE-2021-22555 CVE-2021-32399 ==================================================================== 1. Summary: An update for kpatch-patch is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS EUS (v. 8.1) - ppc64le, x86_64 3. Description: This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fix(es): * kernel: Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks (CVE-2021-22543) * kernel: out-of-bounds write in xt_compat_target_from_user() in net/netfilter/x_tables.c (CVE-2021-22555) * kernel: race condition for removal of the HCI controller (CVE-2021-32399) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, referto: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1965461 - CVE-2021-22543 kernel: Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks 1970807 - CVE-2021-32399 kernel: race condition for removal of the HCI controller 1980101 - CVE-2021-22555 kernel: out-of-bounds write in xt_compat_target_from_user() in net/netfilter/x_tables.c 6. Package List: Red Hat Enterprise Linux BaseOS EUS (v.8.1): Source: kpatch-patch-4_18_0-147_27_1-1-12.el8_1.src.rpm kpatch-patch-4_18_0-147_32_1-1-10.el8_1.src.rpm kpatch-patch-4_18_0-147_34_1-1-10.el8_1.src.rpm kpatch-patch-4_18_0-147_38_1-1-9.el8_1.src.rpm kpatch-patch-4_18_0-147_43_1-1-7.el8_1.src.rpm kpatch-patch-4_18_0-147_44_1-1-6.el8_1.src.rpm kpatch-patch-4_18_0-147_48_1-1-3.el8_1.src.rpm kpatch-patch-4_18_0-147_51_1-1-2.el8_1.src.rpm kpatch-patch-4_18_0-147_51_2-1-1.el8_1.src.rpm ppc64le: kpatch-patch-4_18_0-147_27_1-1-12.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_27_1-debuginfo-1-12.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_27_1-debugsource-1-12.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_32_1-1-10.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_32_1-debuginfo-1-10.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_32_1-debugsource-1-10.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_34_1-1-10.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_34_1-debuginfo-1-10.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_34_1-debugsource-1-10.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_38_1-1-9.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_38_1-debuginfo-1-9.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_38_1-debugsource-1-9.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_43_1-1-7.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_43_1-debuginfo-1-7.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_43_1-debugsource-1-7.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_44_1-1-6.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_44_1-debuginfo-1-6.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_44_1-debugsource-1-6.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_48_1-1-3.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_48_1-debuginfo-1-3.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_48_1-debugsource-1-3.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_51_1-1-2.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_51_1-debuginfo-1-2.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_51_1-debugsource-1-2.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_51_2-1-1.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_51_2-debuginfo-1-1.el8_1.ppc64le.rpm kpatch-patch-4_18_0-147_51_2-debugsource-1-1.el8_1.ppc64le.rpm x86_64: kpatch-patch-4_18_0-147_27_1-1-12.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_27_1-debuginfo-1-12.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_27_1-debugsource-1-12.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_32_1-1-10.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_32_1-debuginfo-1-10.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_32_1-debugsource-1-10.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_34_1-1-10.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_34_1-debuginfo-1-10.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_34_1-debugsource-1-10.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_38_1-1-9.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_38_1-debuginfo-1-9.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_38_1-debugsource-1-9.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_43_1-1-7.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_43_1-debuginfo-1-7.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_43_1-debugsource-1-7.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_44_1-1-6.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_44_1-debuginfo-1-6.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_44_1-debugsource-1-6.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_48_1-1-3.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_48_1-debuginfo-1-3.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_48_1-debugsource-1-3.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_51_1-1-2.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_51_1-debuginfo-1-2.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_51_1-debugsource-1-2.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_51_2-1-1.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_51_2-debuginfo-1-1.el8_1.x86_64.rpm kpatch-patch-4_18_0-147_51_2-debugsource-1-1.el8_1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-22543 https://access.redhat.com/security/cve/CVE-2021-22555 https://access.redhat.com/security/cve/CVE-2021-32399 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details athttps://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYRt0UtzjgjWX9erEAQhnOg/+OBVsTuvRWm58G/OBuiC2zdl2ACQI6GMM snDW3HiKutR2vDGxUARM9ZosUkwi3L7+hUzItYeXZMIdbX4MmUrBH6Sr2A/mjn0L mzp9qyDmf4w7lyFo8DFMMgj/P+ISKAlj0YQQIXQsKMZpZaH3scfLOmMKIAv85NDd H0xmPGH+sEnCVEOC8S35SjKmya2TgxwI4Agr8ycJZ8nrgmEpoB0vjflbzGxr2G6g wZpQj/rVgC0VQCul2oeVSB2/k2UpSyhLKaCo9qu071brCrlD3Mb6/XnzaXNhBkHR E1FfVbkkA74gp3H9NonvVRmxOYen6+QZjrLelC5sjL1FZR0FnOKZjTWZ5/0KDesM XTtTk9wuvh1z9JyQaVuSKG+htOAt0nf+TvGXDjSXr8jckxCSP+1pF3nb9GNyQCQy fS47tLitmkwtXkjAN8USaw1QYk4uNnPQdXoWu388CiXiYXqeyLCKDK67qziGYEe/ pgkSa9P9u9zgHbqeSjfENQRv19XS+0qBATbHcDHt+gNpf98zYT0yXhX8CdCxzqu0 2p4o9935oUrcMIIUr6gekMAZrYOAZOcFHDXcj2W/TO1PHC3N6d7SoWKcLYtWBGSC EiMSQ2YYWTpjVHp3IwutoHqE/JHnCDb8mKjDecckj8P40au1rr7sq7IVQli8Xu4Y XliywM2Rmo4=Oygy -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 17, 2021
•Important
Red Hat
98
security advisorysecurity issueRed HatRed Hat Enterprise Linux 7: RHSA-2021-0862-01 Important Kernel Issues
An update for kpatch-patch is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kpatch-patch security update Advisory ID: RHSA-2021:0862-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:0862 Issue date: 2021-03-16 CVE Names: CVE-2020-28374 CVE-2020-29661 ==================================================================== 1. Summary: An update for kpatch-patch is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server (v. 7) - ppc64le, x86_64 3. Description: This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fix(es): * kernel: SCSI target (LIO) write to any block on ILO backstore (CVE-2020-28374) * kernel: locking issue in drivers/tty/tty_jobctrl.c can lead to an use-after-free (CVE-2020-29661) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1899804 -CVE-2020-28374 kernel: SCSI target (LIO) write to any block on ILO backstore 1906525 - CVE-2020-29661 kernel: locking issue in drivers/tty/tty_jobctrl.c can lead to an use-after-free 6. Package List: Red Hat Enterprise Linux Server (v. 7): Source: kpatch-patch-3_10_0-1160-1-3.el7.src.rpm kpatch-patch-3_10_0-1160_11_1-1-2.el7.src.rpm kpatch-patch-3_10_0-1160_15_2-1-2.el7.src.rpm kpatch-patch-3_10_0-1160_2_1-1-3.el7.src.rpm kpatch-patch-3_10_0-1160_2_2-1-3.el7.src.rpm kpatch-patch-3_10_0-1160_6_1-1-3.el7.src.rpm ppc64le: kpatch-patch-3_10_0-1160-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1160-debuginfo-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_11_1-1-2.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_11_1-debuginfo-1-2.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_15_2-1-2.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_15_2-debuginfo-1-2.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_2_1-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_2_1-debuginfo-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_2_2-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_2_2-debuginfo-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_6_1-1-3.el7.ppc64le.rpm kpatch-patch-3_10_0-1160_6_1-debuginfo-1-3.el7.ppc64le.rpm x86_64: kpatch-patch-3_10_0-1160-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1160-debuginfo-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1160_11_1-1-2.el7.x86_64.rpm kpatch-patch-3_10_0-1160_11_1-debuginfo-1-2.el7.x86_64.rpm kpatch-patch-3_10_0-1160_15_2-1-2.el7.x86_64.rpm kpatch-patch-3_10_0-1160_15_2-debuginfo-1-2.el7.x86_64.rpm kpatch-patch-3_10_0-1160_2_1-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1160_2_1-debuginfo-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1160_2_2-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1160_2_2-debuginfo-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1160_6_1-1-3.el7.x86_64.rpm kpatch-patch-3_10_0-1160_6_1-debuginfo-1-3.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7.References: https://access.redhat.com/security/cve/CVE-2020-28374 https://access.redhat.com/security/cve/CVE-2020-29661 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYFC5ttzjgjWX9erEAQhBWxAApVNkFOBgbGg25kYEehu1PNJdeYuHlfbJ 2KIVNjK5fZV46EDtBKOjtjWgFa9khDF7gIu2YuxfIHCjJfQXSXD3vR7QD6IFvmsA JmPIU6+3b+u8Irsy/1eHdV8zM26kyt9OR09a4tanSumVtIIEkU9DrgYgmx9WF9Cq LnQhFLI8gxImzi8RoBhT4jROY1SdrATqwbEXB8btHCYaaiRNw6e+2TfdGmhu689Y +Xt/Ly1kjXt15fqt0Yii4yjJ+YYyB4kuCq7AfqXZUQqe63oEQpbHt2lp5LwuYs4a SkhYs2Q9Z2CfNZegFm/YMkQEy5ZhqjoWLoZ60lV15nIJhEnIWtlOm2JCFjvROsF6 8nqQmUPXbDxxYMoa3DvVZKlxyzgeACE98Pc5CpI53DCunPrr6m5QtEi+IWoo+q55 rBWSwb6WtERBMmiEs0MM4T2zd1+xzc+wwYkDQ+9JoBhL0Ns5WdiTHGyyVoZ+6nWY 2fS1dBSk/tOqTwtIlr8vNJ3sZWapTj3uUYX1HQiZqjUjLf18TsKx279bFwHkj4dN eirteXFwPTddOrIRTWhYRjRRPEWmjlun90eOWpuUDkezJbMSMzhUSlBJOqDWx7Tb WZcNmT/3h4ggCkgiodpUXfsJXlnBNbJcU5FtKQeYFDo74tnJZmb9MWTu6GDgvNrE 8PwCmqlkCmY=5C3x -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Mar 16, 2021
•Important
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!