First published: Tue May 16 2023(Updated: )
The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>The following packages have been upgraded to a later upstream version: kernel (4.18.0). (BZ#2122230, BZ#2122267)<br>Security Fix(es):<br><li> use-after-free caused by l2cap_reassemble_sdu() in net/bluetooth/l2cap_core.c (CVE-2022-3564)</li> <li> net/ulp: use-after-free in listening ULP sockets (CVE-2023-0461)</li> <li> hw: cpu: AMD CPUs may transiently execute beyond unconditional direct branch (CVE-2021-26341)</li> <li> malicious data for FBIOPUT_VSCREENINFO ioctl may cause OOB write memory (CVE-2021-33655)</li> <li> when setting font with malicious data by ioctl PIO_FONT, kernel will write memory out of bounds (CVE-2021-33656)</li> <li> possible race condition in drivers/tty/tty_buffers.c (CVE-2022-1462)</li> <li> use-after-free in ath9k_htc_probe_device() could cause an escalation of privileges (CVE-2022-1679)</li> <li> KVM: NULL pointer dereference in kvm_mmu_invpcid_gva (CVE-2022-1789)</li> <li> KVM: nVMX: missing IBPB when exiting from nested guest can lead to Spectre v2 attacks (CVE-2022-2196)</li> <li> netfilter: nf_conntrack_irc message handling issue (CVE-2022-2663)</li> <li> race condition in xfrm_probe_algs can lead to OOB read/write (CVE-2022-3028)</li> <li> media: em28xx: initialize refcount before kref_get (CVE-2022-3239)</li> <li> race condition in hugetlb_no_page() in mm/hugetlb.c (CVE-2022-3522)</li> <li> memory leak in ipv6_renew_options() (CVE-2022-3524)</li> <li> data races around icsk->icsk_af_ops in do_ipv6_setsockopt (CVE-2022-3566)</li> <li> data races around sk->sk_prot (CVE-2022-3567)</li> <li> memory leak in l2cap_recv_acldata of the file net/bluetooth/l2cap_core.c (CVE-2022-3619)</li> <li> denial of service in follow_page_pte in mm/gup.c due to poisoned pte entry (CVE-2022-3623)</li> <li> use-after-free after failed devlink reload in devlink_param_get (CVE-2022-3625)</li> <li> USB-accessible buffer overflow in brcmfmac (CVE-2022-3628)</li> <li> Double-free in split_2MB_gtt_entry when function intel_gvt_dma_map_guest_page failed (CVE-2022-3707)</li> <li> l2tp: missing lock when clearing sk_user_data can lead to NULL pointer dereference (CVE-2022-4129)</li> <li> igmp: use-after-free in ip_check_mc_rcu when opening and closing inet sockets (CVE-2022-20141)</li> <li> Executable Space Protection Bypass (CVE-2022-25265)</li> <li> Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP option (CVE-2022-30594)</li> <li> unmap_mapping_range() race with munmap() on VM_PFNMAP mappings leads to stale TLB entry (CVE-2022-39188)</li> <li> TLB flush operations are mishandled in certain KVM_VCPU_PREEMPTED leading to guest malfunctioning (CVE-2022-39189)</li> <li> Report vmalloc UAF in dvb-core/dmxdev (CVE-2022-41218)</li> <li> u8 overflow problem in cfg80211_update_notlisted_nontrans() (CVE-2022-41674)</li> <li> use-after-free related to leaf anon_vma double reuse (CVE-2022-42703)</li> <li> use-after-free in bss_ref_get in net/wireless/scan.c (CVE-2022-42720)</li> <li> BSS list corruption in cfg80211_add_nontrans_list in net/wireless/scan.c (CVE-2022-42721)</li> <li> Denial of service in beacon protection for P2P-device (CVE-2022-42722)</li> <li> memory corruption in usbmon driver (CVE-2022-43750)</li> <li> NULL pointer dereference in traffic control subsystem (CVE-2022-47929)</li> <li> NULL pointer dereference in rawv6_push_pending_frames (CVE-2023-0394)</li> <li> use-after-free caused by invalid pointer hostname in fs/cifs/connect.c (CVE-2023-1195)</li> <li> Soft lockup occurred during __page_mapcount (CVE-2023-1582)</li> <li> slab-out-of-bounds read vulnerabilities in cbq_classify (CVE-2023-23454)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Additional Changes:<br>For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.8 Release Notes linked from the References section.
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/kernel | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/bpftool | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/bpftool-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-abi-stablelists | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-core | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-cross-headers | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-core | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-devel | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-modules | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-modules-extra | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-devel | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-doc | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-headers | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-modules | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-modules-extra | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-tools | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-tools-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-tools-libs | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/perf | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/perf-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/python3-perf | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/python3-perf-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/bpftool | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/bpftool-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-core | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-cross-headers | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-core | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-devel | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-modules | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-modules-extra | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debuginfo-common-s390x | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-devel | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-headers | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-modules | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-modules-extra | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-tools | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-tools-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-zfcpdump | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-zfcpdump-core | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-zfcpdump-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-zfcpdump-devel | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-zfcpdump-modules | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-zfcpdump-modules-extra | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/perf | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/perf-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/python3-perf | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/python3-perf-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/bpftool | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/bpftool-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-core | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-cross-headers | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-core | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-devel | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-modules | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debug-modules-extra | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-debuginfo-common-ppc64le | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-devel | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-headers | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-modules | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-modules-extra | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-tools | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-tools-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-tools-libs | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/perf | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/perf-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/python3-perf | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/python3-perf-debuginfo | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/bpftool | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/bpftool-debuginfo | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-core | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-cross-headers | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-debug | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-debug-core | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-debug-debuginfo | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-debug-devel | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-debug-modules | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-debug-modules-extra | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-debuginfo | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-debuginfo-common-aarch64 | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-devel | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-headers | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-modules | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-modules-extra | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-tools | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-tools-debuginfo | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-tools-libs | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/perf | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/perf-debuginfo | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/python3-perf | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/python3-perf-debuginfo | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
redhat/kernel-tools-libs-devel | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-tools-libs-devel | <4.18.0-477.10.1.el8_8 | 4.18.0-477.10.1.el8_8 |
redhat/kernel-tools-libs-devel | <4.18.0-477.10.1.el8_8.aa | 4.18.0-477.10.1.el8_8.aa |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.