Описание
Important: kernel security and bug fix update
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
-
kernel: bpf: Incorrect verifier pruning leads to unsafe code paths being incorrectly marked as safe (CVE-2023-2163)
-
kernel: tun: bugs for oversize packet when napi frags enabled in tun_napi_alloc_frags (CVE-2023-3812)
-
kernel: use after free in nvmet_tcp_free_crypto in NVMe (CVE-2023-5178)
-
kernel: use-after-free due to race condition occurring in dvb_register_device() (CVE-2022-45884)
-
kernel: use-after-free due to race condition occurring in dvb_net.c (CVE-2022-45886)
-
kernel: use-after-free due to race condition occurring in dvb_ca_en50221.c (CVE-2022-45919)
-
kernel: use-after-free in smb2_is_status_io_timeout() (CVE-2023-1192)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
-
Random delay receiving packets after bringing up VLAN on top of VF with vf-vlan-pruning enabled (BZ#2240750)
-
bpf_jit_limit hit again (BZ#2243011)
-
HPE Edgeline 920t resets during kdump context when ice driver is loaded and when system is booted with intel_iommu=on iommu=pt (BZ#2244625)
Затронутые продукты
Rocky Linux 8
Ссылки на источники
Исправления
- Red Hat - 2148510
- Red Hat - 2148517
- Red Hat - 2151956
- Red Hat - 2154178
- Red Hat - 2224048
- Red Hat - 2240249
- Red Hat - 2241924
Связанные уязвимости
ELSA-2023-7549: kernel security and bug fix update (IMPORTANT)
ELSA-2023-12200: Unbreakable Enterprise kernel-container security update (IMPORTANT)
ELSA-2023-12199: Unbreakable Enterprise kernel security update (IMPORTANT)
ELSA-2023-12207: Unbreakable Enterprise kernel-container security update (IMPORTANT)
ELSA-2023-12206: Unbreakable Enterprise kernel security update (IMPORTANT)