What is the severity of RHSA-2021:2563?

The severity of RHSA-2021:2563 is classified as important.

How do I fix RHSA-2021:2563?

To fix RHSA-2021:2563, you need to update the kpatch-patch package to the specified remedy versions.

What vulnerability does RHSA-2021:2563 address?

RHSA-2021:2563 addresses a use-after-free vulnerability in the Bluetooth kernel subsystem, identified as CVE-2021-33034.

Which systems are affected by RHSA-2021:2563?

RHSA-2021:2563 affects systems running specific versions of the kpatch-patch package on Red Hat Enterprise Linux.

What components are involved in the fix for RHSA-2021:2563?

The fix for RHSA-2021:2563 involves updating the kernel live patch module, specifically the kpatch-patch package.

Vulnerability/
RHSA-2021:2563

CWE

416

29/6/2021

RHSA-2021:2563: Important: kpatch-patch security update

First published: Tue Jun 29 2021(Updated: )

This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.<br>Security Fix(es):<br><li> kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan (CVE-2021-33034)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected Software	Affected Version	How to fix
redhat/kpatch-patch	<4_18_0-305-1-2.el8	4_18_0-305-1-2.el8
redhat/kpatch-patch	<4_18_0-305_3_1-1-1.el8_4	4_18_0-305_3_1-1-1.el8_4
redhat/kpatch-patch	<4_18_0-305-1-2.el8	4_18_0-305-1-2.el8
redhat/kpatch-patch	<4_18_0-305-debuginfo-1-2.el8	4_18_0-305-debuginfo-1-2.el8
redhat/kpatch-patch	<4_18_0-305-debugsource-1-2.el8	4_18_0-305-debugsource-1-2.el8
redhat/kpatch-patch	<4_18_0-305_3_1-1-1.el8_4	4_18_0-305_3_1-1-1.el8_4
redhat/kpatch-patch	<4_18_0-305_3_1-debuginfo-1-1.el8_4	4_18_0-305_3_1-debuginfo-1-1.el8_4
redhat/kpatch-patch	<4_18_0-305_3_1-debugsource-1-1.el8_4	4_18_0-305_3_1-debugsource-1-1.el8_4
redhat/kpatch-patch	<4_18_0-305-1-2.el8	4_18_0-305-1-2.el8
redhat/kpatch-patch	<4_18_0-305-debuginfo-1-2.el8	4_18_0-305-debuginfo-1-2.el8
redhat/kpatch-patch	<4_18_0-305-debugsource-1-2.el8	4_18_0-305-debugsource-1-2.el8
redhat/kpatch-patch	<4_18_0-305_3_1-1-1.el8_4	4_18_0-305_3_1-1-1.el8_4
redhat/kpatch-patch	<4_18_0-305_3_1-debuginfo-1-1.el8_4	4_18_0-305_3_1-debuginfo-1-1.el8_4
redhat/kpatch-patch	<4_18_0-305_3_1-debugsource-1-1.el8_4	4_18_0-305_3_1-debugsource-1-1.el8_4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2021:2563?
The severity of RHSA-2021:2563 is classified as important.
How do I fix RHSA-2021:2563?
To fix RHSA-2021:2563, you need to update the kpatch-patch package to the specified remedy versions.
What vulnerability does RHSA-2021:2563 address?
RHSA-2021:2563 addresses a use-after-free vulnerability in the Bluetooth kernel subsystem, identified as CVE-2021-33034.
Which systems are affected by RHSA-2021:2563?
RHSA-2021:2563 affects systems running specific versions of the kpatch-patch package on Red Hat Enterprise Linux.
What components are involved in the fix for RHSA-2021:2563?
The fix for RHSA-2021:2563 involves updating the kernel live patch module, specifically the kpatch-patch package.

agent/severity
agent/type
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2021:2563
agent/software-canonical-lookup
agent/remedy
agent/weakness
agent/references
agent/title
agent/description
agent/event
agent/trending
agent/tags
agent/source
package-manager/redhat