First published: Tue Oct 11 2022(Updated: )
This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.<br>Security Fix(es):<br><li> a use-after-free in cls_route filter implementation may lead to privilege escalation (CVE-2022-2588)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/kpatch-patch | <4_18_0-147_64_1-1-4.el8_1 | 4_18_0-147_64_1-1-4.el8_1 |
redhat/kpatch-patch | <4_18_0-147_65_1-1-3.el8_1 | 4_18_0-147_65_1-1-3.el8_1 |
redhat/kpatch-patch | <4_18_0-147_67_1-1-2.el8_1 | 4_18_0-147_67_1-1-2.el8_1 |
redhat/kpatch-patch | <4_18_0-147_70_1-1-1.el8_1 | 4_18_0-147_70_1-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_74_1-1-1.el8_1 | 4_18_0-147_74_1-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_64_1-1-4.el8_1 | 4_18_0-147_64_1-1-4.el8_1 |
redhat/kpatch-patch | <4_18_0-147_64_1-debuginfo-1-4.el8_1 | 4_18_0-147_64_1-debuginfo-1-4.el8_1 |
redhat/kpatch-patch | <4_18_0-147_64_1-debugsource-1-4.el8_1 | 4_18_0-147_64_1-debugsource-1-4.el8_1 |
redhat/kpatch-patch | <4_18_0-147_65_1-1-3.el8_1 | 4_18_0-147_65_1-1-3.el8_1 |
redhat/kpatch-patch | <4_18_0-147_65_1-debuginfo-1-3.el8_1 | 4_18_0-147_65_1-debuginfo-1-3.el8_1 |
redhat/kpatch-patch | <4_18_0-147_65_1-debugsource-1-3.el8_1 | 4_18_0-147_65_1-debugsource-1-3.el8_1 |
redhat/kpatch-patch | <4_18_0-147_67_1-1-2.el8_1 | 4_18_0-147_67_1-1-2.el8_1 |
redhat/kpatch-patch | <4_18_0-147_67_1-debuginfo-1-2.el8_1 | 4_18_0-147_67_1-debuginfo-1-2.el8_1 |
redhat/kpatch-patch | <4_18_0-147_67_1-debugsource-1-2.el8_1 | 4_18_0-147_67_1-debugsource-1-2.el8_1 |
redhat/kpatch-patch | <4_18_0-147_70_1-1-1.el8_1 | 4_18_0-147_70_1-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_70_1-debuginfo-1-1.el8_1 | 4_18_0-147_70_1-debuginfo-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_70_1-debugsource-1-1.el8_1 | 4_18_0-147_70_1-debugsource-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_74_1-1-1.el8_1 | 4_18_0-147_74_1-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_74_1-debuginfo-1-1.el8_1 | 4_18_0-147_74_1-debuginfo-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_74_1-debugsource-1-1.el8_1 | 4_18_0-147_74_1-debugsource-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_64_1-1-4.el8_1 | 4_18_0-147_64_1-1-4.el8_1 |
redhat/kpatch-patch | <4_18_0-147_64_1-debuginfo-1-4.el8_1 | 4_18_0-147_64_1-debuginfo-1-4.el8_1 |
redhat/kpatch-patch | <4_18_0-147_64_1-debugsource-1-4.el8_1 | 4_18_0-147_64_1-debugsource-1-4.el8_1 |
redhat/kpatch-patch | <4_18_0-147_65_1-1-3.el8_1 | 4_18_0-147_65_1-1-3.el8_1 |
redhat/kpatch-patch | <4_18_0-147_65_1-debuginfo-1-3.el8_1 | 4_18_0-147_65_1-debuginfo-1-3.el8_1 |
redhat/kpatch-patch | <4_18_0-147_65_1-debugsource-1-3.el8_1 | 4_18_0-147_65_1-debugsource-1-3.el8_1 |
redhat/kpatch-patch | <4_18_0-147_67_1-1-2.el8_1 | 4_18_0-147_67_1-1-2.el8_1 |
redhat/kpatch-patch | <4_18_0-147_67_1-debuginfo-1-2.el8_1 | 4_18_0-147_67_1-debuginfo-1-2.el8_1 |
redhat/kpatch-patch | <4_18_0-147_67_1-debugsource-1-2.el8_1 | 4_18_0-147_67_1-debugsource-1-2.el8_1 |
redhat/kpatch-patch | <4_18_0-147_70_1-1-1.el8_1 | 4_18_0-147_70_1-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_70_1-debuginfo-1-1.el8_1 | 4_18_0-147_70_1-debuginfo-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_70_1-debugsource-1-1.el8_1 | 4_18_0-147_70_1-debugsource-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_74_1-1-1.el8_1 | 4_18_0-147_74_1-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_74_1-debuginfo-1-1.el8_1 | 4_18_0-147_74_1-debuginfo-1-1.el8_1 |
redhat/kpatch-patch | <4_18_0-147_74_1-debugsource-1-1.el8_1 | 4_18_0-147_74_1-debugsource-1-1.el8_1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of RHSA-2022:6875 is classified as important.
RHSA-2022:6875 addresses a use-after-free vulnerability in the cls_route filter implementation that may lead to privilege escalation.
To fix RHSA-2022:6875, update the kpatch-patch package to the latest version specified in the advisory.
A range of kpatch-patch versions are affected, including versions prior to 4_18_0-147_65_1-1-3.el8_1.
CVE-2022-2588 is the identifier for the specific vulnerability that RHSA-2022:6875 addresses, focusing on a use-after-free condition.