RHSA-2023:1471: Important: kpatch-patch security update
First published: Mon Mar 27 2023(Updated: )
This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.<br>Security Fix(es):<br><li> kernel: tun: avoid double free in tun_free_netdev (CVE-2022-4744)</li> <li> ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF (CVE-2023-0266)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kpatch-patch | <5_14_0-162_12_1-1-2.el9_1 | 5_14_0-162_12_1-1-2.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_18_1-1-1.el9_1 | 5_14_0-162_18_1-1-1.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_6_1-1-3.el9_1 | 5_14_0-162_6_1-1-3.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_12_1-1-2.el9_1 | 5_14_0-162_12_1-1-2.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_12_1-debuginfo-1-2.el9_1 | 5_14_0-162_12_1-debuginfo-1-2.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_12_1-debugsource-1-2.el9_1 | 5_14_0-162_12_1-debugsource-1-2.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_18_1-1-1.el9_1 | 5_14_0-162_18_1-1-1.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_18_1-debuginfo-1-1.el9_1 | 5_14_0-162_18_1-debuginfo-1-1.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_18_1-debugsource-1-1.el9_1 | 5_14_0-162_18_1-debugsource-1-1.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_6_1-1-3.el9_1 | 5_14_0-162_6_1-1-3.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_6_1-debuginfo-1-3.el9_1 | 5_14_0-162_6_1-debuginfo-1-3.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_6_1-debugsource-1-3.el9_1 | 5_14_0-162_6_1-debugsource-1-3.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_12_1-1-2.el9_1 | 5_14_0-162_12_1-1-2.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_12_1-debuginfo-1-2.el9_1 | 5_14_0-162_12_1-debuginfo-1-2.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_12_1-debugsource-1-2.el9_1 | 5_14_0-162_12_1-debugsource-1-2.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_18_1-1-1.el9_1 | 5_14_0-162_18_1-1-1.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_18_1-debuginfo-1-1.el9_1 | 5_14_0-162_18_1-debuginfo-1-1.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_18_1-debugsource-1-1.el9_1 | 5_14_0-162_18_1-debugsource-1-1.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_6_1-1-3.el9_1 | 5_14_0-162_6_1-1-3.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_6_1-debuginfo-1-3.el9_1 | 5_14_0-162_6_1-debuginfo-1-3.el9_1 |
| redhat/kpatch-patch | <5_14_0-162_6_1-debugsource-1-3.el9_1 | 5_14_0-162_6_1-debugsource-1-3.el9_1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of RHSA-2023:1471?
The severity of RHSA-2023:1471 is classified as important.
What vulnerabilities are addressed by RHSA-2023:1471?
RHSA-2023:1471 addresses a double free vulnerability in tun_free_netdev (CVE-2022-4744) among other issues.
How do I fix RHSA-2023:1471?
To fix RHSA-2023:1471, you should upgrade to the recommended kpatch-patch versions provided in the advisory.
Which software packages are affected by RHSA-2023:1471?
The affected software packages under RHSA-2023:1471 include various versions of the kpatch-patch package.
Is there a specific version to update to for RHSA-2023:1471?
Yes, you should update to kpatch-patch versions at or above 5_14_0-162_12_1-1-2.el9_1 for a security fix.
- agent/severity
- agent/references
- agent/type
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/weakness
- agent/remedy
- agent/title
- agent/description
- agent/event
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2023:1471
- agent/software-canonical-lookup
- agent/trending
- agent/tags
- agent/source
- package-manager/redhat