RHSA-2022:8973: Important: kernel security and bug fix update
First published: Tue Dec 13 2022(Updated: )
The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>Security Fix(es):<br><li> kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region (CVE-2022-1158)</li> <li> kernel: openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size() (CVE-2022-2639)</li> <li> kernel: watch queue race condition can lead to privilege escalation (CVE-2022-2959)</li> <li> kernel: nfsd buffer overflow by RPC message over TCP with garbage data (CVE-2022-43945)</li> <li> hw: cpu: incomplete clean-up of multi-core shared buffers (aka SBDR) (CVE-2022-21123)</li> <li> hw: cpu: incomplete clean-up of microarchitectural fill buffers (aka SBDS) (CVE-2022-21125)</li> <li> hw: cpu: incomplete clean-up in specific special register write operations (aka DRPW) (CVE-2022-21166)</li> <li> hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions (CVE-2022-23816, CVE-2022-29900)</li> <li> hw: cpu: AMD: Branch Type Confusion (non-retbleed) (CVE-2022-23825)</li> <li> hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions (CVE-2022-26373)</li> <li> hw: cpu: Intel: RetBleed Arbitrary Speculative Code Execution with Return Instructions (CVE-2022-29901)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> sched/pelt: Fix attach_entity_load_avg() corner case (BZ#2105360)</li> <li> RHEL9[fleetwood][P9]:kdump fails to capture vmcore when crash is triggered while running forkoff. (BZ#2109144)</li> <li> ISST-LTE:[P10 Everest] [5.14.0-70.9.1.el9_0.ppc64le] HPT:RHEL9.0:ecolp95: lpar crashed at __list_del_entry_valid+0x90/0x100 and LPM failed (BZ#2112823)</li> <li> [rhel9] livepatch panic: RIP: 0010:0xffffffffc0e070c4 seq_read_iter+0x124/0x4b0 (BZ#2122625)</li> <li> System crashes due to list_add double add at iwl_mvm_mac_wake_tx_queue+0x71 (BZ#2123315)</li> <li> [Dell EMC 9.0 BUG] Any process performing I/O doesn't fail on degraded LVM RAID and IO process hangs (BZ#2126215)</li> <li> [HPEMC RHEL 9.0 REGRESSION] net, e810, ice: not enough device MSI-X vectors (BZ#2126491)</li> <li> RHEL9.0 - zfcp: fix missing auto port scan and thus missing target ports (BZ#2127874)</li> <li> Enable check-kabi (BZ#2132372)</li> <li> Add symbols to stablelist (BZ#2132373)</li> <li> Update RHEL9.1 kabi tooling (BZ#2132380)</li> <li> kABI: Prepare the MM subsystem for kABI lockdown (BZ#2133464)</li> <li> [Dell Storage 9.1 BUG] NVME command hang during storage array node reboot (BZ#2133553)</li> <li> WARNING: CPU: 116 PID: 3440 at arch/x86/mm/extable.c:105 ex_handler_fprestore+0x3f/0x50 (BZ#2134589)</li> <li> crypto/testmgr.c should not list dh, ecdh-nist-p256, ecdh-nist-p384 as .fips_allowed = 1 (BZ#2136523)</li> <li> FIPS self-tests for RSA pkcs7 signature verification (BZ#2136552)</li> <li> [ovs-tc] Bad length in dpctl/dump-flows (BZ#2137354)</li> <li> [RHEL9] s_pf0vf2: hw csum failure for mlx5 (BZ#2137355)</li> <li> kernel memory leak while freeing nested actions (BZ#2137356)</li> <li> ovs: backports from upstream (BZ#2137358)</li> <li> kernel should conform to FIPS-140-3 requirements (both parts) (BZ#2139095)</li> <li> [DELL EMC 9.0-RT BUG] System is not booting into RT Kernel with perc12. (BZ#2139214)</li> <li> Fix panic in nbd/004 test (BZ#2139535)</li> <li> Nested KVM is not working on RHEL 8.6 with hardware error 0x7 (BZ#2140141)</li> <li> [RHEL9] Practically limit "Dummy wait" workaround to old Intel systems (BZ#2142169)</li>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/bpftool | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/bpftool-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-abi-stablelists | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-core | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-core | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-devel | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-devel-matched | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-modules | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-modules-extra | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-devel | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-devel-matched | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-doc | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-headers | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-modules | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-modules-extra | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-tools | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-tools-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-tools-libs | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/perf | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/perf-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/python3-perf | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/python3-perf-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/bpftool | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/bpftool-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-core | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-core | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-devel | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-devel-matched | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-modules | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-modules-extra | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debuginfo-common-s390x | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-devel | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-devel-matched | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-headers | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-modules | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-modules-extra | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-tools | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-tools-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-zfcpdump | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-zfcpdump-core | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-zfcpdump-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-zfcpdump-devel | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-zfcpdump-devel-matched | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-zfcpdump-modules | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-zfcpdump-modules-extra | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/perf | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/perf-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/python3-perf | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/python3-perf-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/bpftool | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/bpftool-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-core | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-core | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-devel | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-devel-matched | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-modules | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debug-modules-extra | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-debuginfo-common-ppc64le | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-devel | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-devel-matched | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-headers | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-modules | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-modules-extra | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-tools | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-tools-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-tools-libs | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/perf | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/perf-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/python3-perf | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/python3-perf-debuginfo | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/bpftool | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/bpftool-debuginfo | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-core | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-debug | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-debug-core | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-debug-debuginfo | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-debug-devel | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-debug-devel-matched | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-debug-modules | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-debug-modules-extra | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-debuginfo | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-debuginfo-common-aarch64 | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-devel | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-devel-matched | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-headers | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-modules | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-modules-extra | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-tools | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-tools-debuginfo | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-tools-libs | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/perf | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/perf-debuginfo | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/python3-perf | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/python3-perf-debuginfo | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-cross-headers | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-tools-libs-devel | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-cross-headers | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-tools-libs-devel | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-cross-headers | <5.14.0-70.36.1.el9_0 | 5.14.0-70.36.1.el9_0 |
| redhat/kernel-cross-headers | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
| redhat/kernel-tools-libs-devel | <5.14.0-70.36.1.el9_0.aa | 5.14.0-70.36.1.el9_0.aa |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=2069793
- https://bugzilla.redhat.com/show_bug.cgi?id=2084479
- https://bugzilla.redhat.com/show_bug.cgi?id=2090226
- https://bugzilla.redhat.com/show_bug.cgi?id=2090237
- https://bugzilla.redhat.com/show_bug.cgi?id=2090240
- https://bugzilla.redhat.com/show_bug.cgi?id=2090241
- https://bugzilla.redhat.com/show_bug.cgi?id=2103148
- https://bugzilla.redhat.com/show_bug.cgi?id=2103153
- https://bugzilla.redhat.com/show_bug.cgi?id=2103681
- https://bugzilla.redhat.com/show_bug.cgi?id=2115065
- https://bugzilla.redhat.com/show_bug.cgi?id=2141752
- https://access.redhat.com/security/updates/classification/#important
- https://access.redhat.com/solutions/6971358
- https://access.redhat.com/errata/RHSA-2022:8973 (Advisory)
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- agent/weakness
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2022:8973
- agent/software-canonical-lookup
- package-manager/redhat