What is the severity of RHSA-2023:0531?

The severity of RHSA-2023:0531 is classified as important.

What vulnerabilities are addressed in RHSA-2023:0531?

RHSA-2023:0531 addresses vulnerabilities including memory corruption in AX88179_178A based USB ethernet device (CVE-2022-2964).

How do I fix RHSA-2023:0531?

To fix RHSA-2023:0531, update to the remedial version 4.18.0-305.76.1.rt7.148.el8_4 of the kernel-rt packages.

Which packages are affected by RHSA-2023:0531?

The affected packages include kernel-rt, kernel-rt-core, and kernel-rt-debug among others.

Is RHSA-2023:0531 applicable to all systems?

RHSA-2023:0531 specifically pertains to systems running the Red Hat kernel-rt version prior to 4.18.0-305.76.1.rt7.148.el8_4.

Vulnerability/
RHSA-2023:0531

30/1/2023

RHSA-2023:0531: Important: kernel-rt security and bug fix update

First published: Mon Jan 30 2023(Updated: )

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.<br>Security Fix(es):<br><li> kernel: memory corruption in AX88179_178A based USB ethernet device. (CVE-2022-2964)</li> <li> kernel: i915: Incorrect GPU TLB flush can lead to random memory access (CVE-2022-4139)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> kernel-rt: update RT source tree to the RHEL-8.4.z14 source tree. (BZ#2151921)</li>

Affected Software	Affected Version	How to fix
redhat/kernel-rt	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-core	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-debug	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-debug-core	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-debug-debuginfo	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-debug-devel	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-debug-modules	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-debug-modules-extra	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-debuginfo	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-devel	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-modules	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-modules-extra	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-debug-kvm	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4
redhat/kernel-rt-kvm	<4.18.0-305.76.1.rt7.148.el8_4	4.18.0-305.76.1.rt7.148.el8_4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2023:0531?
The severity of RHSA-2023:0531 is classified as important.
What vulnerabilities are addressed in RHSA-2023:0531?
RHSA-2023:0531 addresses vulnerabilities including memory corruption in AX88179_178A based USB ethernet device (CVE-2022-2964).
How do I fix RHSA-2023:0531?
To fix RHSA-2023:0531, update to the remedial version 4.18.0-305.76.1.rt7.148.el8_4 of the kernel-rt packages.
Which packages are affected by RHSA-2023:0531?
The affected packages include kernel-rt, kernel-rt-core, and kernel-rt-debug among others.
Is RHSA-2023:0531 applicable to all systems?
RHSA-2023:0531 specifically pertains to systems running the Red Hat kernel-rt version prior to 4.18.0-305.76.1.rt7.148.el8_4.

agent/severity
agent/type
agent/softwarecombine
agent/last-modified-date
agent/references
agent/first-publish-date
agent/remedy
agent/title
agent/description
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2023:0531
agent/software-canonical-lookup
agent/event
agent/trending
agent/tags
agent/source
package-manager/redhat