RHSA-2022:0823: Important: kernel security update
First published: Thu Mar 10 2022(Updated: )
The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>Security Fix(es):<br><li> kernel: improper initialization of the "flags" member of the new pipe_buffer (CVE-2022-0847)</li> <li> kernel: Use After Free in unix_gc() which could result in a local privilege escalation (CVE-2021-0920)</li> <li> kernel: use-after-free in RDMA listen() (CVE-2021-4028)</li> <li> kernel: fget: check that the fd still exists after getting a ref to it (CVE-2021-4083)</li> <li> kernel: possible privileges escalation due to missing TLB flush (CVE-2022-0330)</li> <li> kernel: cgroups v1 release_agent feature may allow privilege escalation (CVE-2022-0492)</li> <li> kernel: failing usercopy allows for use-after-free exploitation (CVE-2022-22942)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/bpftool | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/bpftool-debuginfo | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-abi-whitelists | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-core | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-cross-headers | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debug | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debug-core | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debug-debuginfo | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debug-devel | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debug-modules | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debug-modules-extra | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debuginfo | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debuginfo-common-ppc64le | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-devel | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-doc | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-headers | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-modules | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-modules-extra | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-tools | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-tools-debuginfo | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-tools-libs | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/perf | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/perf-debuginfo | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/python3-perf | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/python3-perf-debuginfo | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/bpftool | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/bpftool-debuginfo | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-core | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-cross-headers | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debug | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debug-core | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debug-debuginfo | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debug-devel | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debug-modules | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debug-modules-extra | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-debuginfo | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-devel | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-headers | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-modules | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-modules-extra | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-tools | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-tools-debuginfo | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/kernel-tools-libs | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/perf | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/perf-debuginfo | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/python3-perf | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
| redhat/python3-perf-debuginfo | <4.18.0-147.64.1.el8_1 | 4.18.0-147.64.1.el8_1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=2027201
- https://bugzilla.redhat.com/show_bug.cgi?id=2029923
- https://bugzilla.redhat.com/show_bug.cgi?id=2031930
- https://bugzilla.redhat.com/show_bug.cgi?id=2042404
- https://bugzilla.redhat.com/show_bug.cgi?id=2044809
- https://bugzilla.redhat.com/show_bug.cgi?id=2051505
- https://bugzilla.redhat.com/show_bug.cgi?id=2060795
- https://access.redhat.com/security/updates/classification/#important
- https://access.redhat.com/security/vulnerabilities/RHSB-2022-002
- https://access.redhat.com/errata/RHSA-2022:0823 (Advisory)
Frequently Asked Questions
What is the severity of RHSA-2022:0823?
The severity of RHSA-2022:0823 is considered moderate due to improper initialization and potential use-after-free vulnerabilities.
How do I fix RHSA-2022:0823?
To fix RHSA-2022:0823, update your kernel packages to version 4.18.0-147.64.1.el8_1 or later.
What vulnerabilities are addressed in RHSA-2022:0823?
RHSA-2022:0823 addresses a vulnerability related to improper initialization and a use-after-free issue in the Linux kernel.
Which systems are affected by RHSA-2022:0823?
Systems running the affected kernel versions up to 4.18.0-147.64.1.el8_1 are impacted by RHSA-2022:0823.
Are there any workarounds for RHSA-2022:0823?
There are no specific workarounds recommended for RHSA-2022:0823; applying the update is the best course of action.
- agent/severity
- agent/references
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2022:0823
- agent/software-canonical-lookup
- agent/remedy
- agent/title
- agent/weakness
- agent/description
- agent/event
- agent/trending
- agent/tags
- agent/source
- package-manager/redhat