What is the severity of RHSA-2022:1107?

The severity of RHSA-2022:1107 is classified as important due to a local privilege escalation vulnerability.

How do I fix RHSA-2022:1107?

To fix RHSA-2022:1107, you need to update the affected kernel packages to version 3.10.0-957.92.1.el7 or later.

What is the vulnerability described in RHSA-2022:1107?

RHSA-2022:1107 addresses a use-after-free vulnerability in unix_gc() that could lead to local privilege escalation.

Which systems are affected by RHSA-2022:1107?

RHSA-2022:1107 affects systems running the kernel packages version 3.10.0-957.92.1.el7 or earlier.

What should I do after applying the patch for RHSA-2022:1107?

After applying the patch for RHSA-2022:1107, it is recommended to reboot your system to ensure the changes take effect.

Vulnerability/
RHSA-2022:1107

CWE

416

29/3/2022

RHSA-2022:1107: Important: kernel security update

First published: Tue Mar 29 2022(Updated: )

The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>Security Fix(es):<br><li> kernel: Use After Free in unix_gc() which could result in a local privilege escalation (CVE-2021-0920)</li> <li> kernel: fget: check that the fd still exists after getting a ref to it (CVE-2021-4083)</li> <li> kernel: possible privileges escalation due to missing TLB flush (CVE-2022-0330)</li> <li> kernel: failing usercopy allows for use-after-free exploitation (CVE-2022-22942)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected Software	Affected Version	How to fix
redhat/kernel	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/bpftool	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-abi-whitelists	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-debug	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-debug-debuginfo	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-debug-devel	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-debuginfo	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-devel	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-doc	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-headers	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-tools	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-tools-debuginfo	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-tools-libs	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-tools-libs-devel	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/perf	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/perf-debuginfo	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/python-perf	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/python-perf-debuginfo	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-bootwrapper	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-debug	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-debug-debuginfo	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-debug-devel	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-debuginfo	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-debuginfo-common-ppc64le	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-devel	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-headers	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-tools	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-tools-debuginfo	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-tools-libs	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/kernel-tools-libs-devel	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/perf	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/perf-debuginfo	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/python-perf	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7
redhat/python-perf-debuginfo	<3.10.0-957.92.1.el7	3.10.0-957.92.1.el7

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2022:1107?
The severity of RHSA-2022:1107 is classified as important due to a local privilege escalation vulnerability.
How do I fix RHSA-2022:1107?
To fix RHSA-2022:1107, you need to update the affected kernel packages to version 3.10.0-957.92.1.el7 or later.
What is the vulnerability described in RHSA-2022:1107?
RHSA-2022:1107 addresses a use-after-free vulnerability in unix_gc() that could lead to local privilege escalation.
Which systems are affected by RHSA-2022:1107?
RHSA-2022:1107 affects systems running the kernel packages version 3.10.0-957.92.1.el7 or earlier.
What should I do after applying the patch for RHSA-2022:1107?
After applying the patch for RHSA-2022:1107, it is recommended to reboot your system to ensure the changes take effect.

agent/references
agent/severity
agent/type
agent/softwarecombine
agent/first-publish-date
agent/last-modified-date
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2022:1107
agent/software-canonical-lookup
agent/remedy
agent/title
agent/weakness
agent/description
agent/event
agent/trending
agent/tags
agent/source
package-manager/redhat