What is the severity of RHSA-2022:2188?

The severity of RHSA-2022:2188 is categorized based on the CVE-2021-4028 vulnerability, which is a use-after-free issue in the RDMA listen() function.

What is the fix for RHSA-2022:2188?

To fix RHSA-2022:2188, you should upgrade to the kernel version 3.10.0-693.100.1.el7 or higher.

What packages are affected by RHSA-2022:2188?

Affected packages include kernel, kernel-debug, kernel-devel, and various other kernel-related packages in version 3.10.0-693.100.1.el7.

What does the CVE-2021-4028 vulnerability in RHSA-2022:2188 entail?

CVE-2021-4028 refers to a use-after-free vulnerability in the RDMA listen() function that can potentially allow an attacker to execute arbitrary code.

Is there a specific architecture affected by RHSA-2022:2188?

Yes, RHSA-2022:2188 primarily affects the x86_64 architecture within the specified kernel version.

Vulnerability/
RHSA-2022:2188

CWE

416

11/5/2022

27/1/2024

RHSA-2022:2188: Important: kernel security update

First published: Wed May 11 2022(Updated: )

The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>Security Fix(es):<br><li> kernel: use-after-free in RDMA listen() (CVE-2021-4028)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected Software	Affected Version	How to fix
redhat/kernel	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel-abi-whitelists	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel-debug	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel-debug-debuginfo	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel-debug-devel	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel-debuginfo	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel-devel	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel-doc	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel-headers	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel-tools	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel-tools-debuginfo	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel-tools-libs	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/kernel-tools-libs-devel	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/perf	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/perf-debuginfo	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/python-perf	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7
redhat/python-perf-debuginfo	<3.10.0-693.100.1.el7	3.10.0-693.100.1.el7

Never miss a vulnerability like this again

Reference Links

https://access.redhat.com/errata/RHSA-2022:2188 (Advisory)

Frequently Asked Questions

What is the severity of RHSA-2022:2188?
The severity of RHSA-2022:2188 is categorized based on the CVE-2021-4028 vulnerability, which is a use-after-free issue in the RDMA listen() function.
What is the fix for RHSA-2022:2188?
To fix RHSA-2022:2188, you should upgrade to the kernel version 3.10.0-693.100.1.el7 or higher.
What packages are affected by RHSA-2022:2188?
Affected packages include kernel, kernel-debug, kernel-devel, and various other kernel-related packages in version 3.10.0-693.100.1.el7.
What does the CVE-2021-4028 vulnerability in RHSA-2022:2188 entail?
CVE-2021-4028 refers to a use-after-free vulnerability in the RDMA listen() function that can potentially allow an attacker to execute arbitrary code.
Is there a specific architecture affected by RHSA-2022:2188?
Yes, RHSA-2022:2188 primarily affects the x86_64 architecture within the specified kernel version.

agent/severity
agent/type
agent/last-modified-date
agent/first-publish-date
agent/softwarecombine
agent/weakness
agent/remedy
agent/title
agent/description
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2022:2188
agent/software-canonical-lookup
agent/references
agent/tags
agent/event
agent/source
package-manager/redhat