What is the severity of RHSA-2024:0386?

The severity of RHSA-2024:0386 is classified as Important due to the potential impact on system security.

How do I fix RHSA-2024:0386?

To fix RHSA-2024:0386, install the updated version of the kpatch-patch package specified in the advisory.

Which systems are affected by RHSA-2024:0386?

RHSA-2024:0386 affects various editions of Red Hat Enterprise Linux, including Power and x86_64 architectures.

What vulnerability does RHSA-2024:0386 address?

RHSA-2024:0386 addresses a use-after-free vulnerability in the Linux kernel related to net/sched: sch_hfsc.

Is it safe to apply the patch for RHSA-2024:0386?

Yes, applying the patch for RHSA-2024:0386 is safe and recommended to mitigate the identified security vulnerability.

Vulnerability/
RHSA-2024:0386

high

CWE

416

24/1/2024

RHSA-2024:0386: Important: kpatch-patch security update

First published: Wed Jan 24 2024(Updated: )

Important: kpatch-patch security update

Affected Software	Affected Version	How to fix
redhat/kpatch-patch	<5_14_0-70_64_1-1-4.el9_0	5_14_0-70_64_1-1-4.el9_0
redhat/kpatch-patch	<5_14_0-70_70_1-1-3.el9_0	5_14_0-70_70_1-1-3.el9_0
redhat/kpatch-patch	<5_14_0-70_75_1-1-2.el9_0	5_14_0-70_75_1-1-2.el9_0
redhat/kpatch-patch	<5_14_0-70_80_1-1-1.el9_0	5_14_0-70_80_1-1-1.el9_0
redhat/kpatch-patch	<5_14_0-70_64_1-1-4.el9_0	5_14_0-70_64_1-1-4.el9_0
redhat/kpatch-patch	<5_14_0-70_64_1-debuginfo-1-4.el9_0	5_14_0-70_64_1-debuginfo-1-4.el9_0
redhat/kpatch-patch	<5_14_0-70_64_1-debugsource-1-4.el9_0	5_14_0-70_64_1-debugsource-1-4.el9_0
redhat/kpatch-patch	<5_14_0-70_70_1-1-3.el9_0	5_14_0-70_70_1-1-3.el9_0
redhat/kpatch-patch	<5_14_0-70_70_1-debuginfo-1-3.el9_0	5_14_0-70_70_1-debuginfo-1-3.el9_0
redhat/kpatch-patch	<5_14_0-70_70_1-debugsource-1-3.el9_0	5_14_0-70_70_1-debugsource-1-3.el9_0
redhat/kpatch-patch	<5_14_0-70_75_1-1-2.el9_0	5_14_0-70_75_1-1-2.el9_0
redhat/kpatch-patch	<5_14_0-70_75_1-debuginfo-1-2.el9_0	5_14_0-70_75_1-debuginfo-1-2.el9_0
redhat/kpatch-patch	<5_14_0-70_75_1-debugsource-1-2.el9_0	5_14_0-70_75_1-debugsource-1-2.el9_0
redhat/kpatch-patch	<5_14_0-70_80_1-1-1.el9_0	5_14_0-70_80_1-1-1.el9_0
redhat/kpatch-patch	<5_14_0-70_80_1-debuginfo-1-1.el9_0	5_14_0-70_80_1-debuginfo-1-1.el9_0
redhat/kpatch-patch	<5_14_0-70_80_1-debugsource-1-1.el9_0	5_14_0-70_80_1-debugsource-1-1.el9_0
redhat/kpatch-patch	<5_14_0-70_64_1-1-4.el9_0	5_14_0-70_64_1-1-4.el9_0
redhat/kpatch-patch	<5_14_0-70_64_1-debuginfo-1-4.el9_0	5_14_0-70_64_1-debuginfo-1-4.el9_0
redhat/kpatch-patch	<5_14_0-70_64_1-debugsource-1-4.el9_0	5_14_0-70_64_1-debugsource-1-4.el9_0
redhat/kpatch-patch	<5_14_0-70_70_1-1-3.el9_0	5_14_0-70_70_1-1-3.el9_0
redhat/kpatch-patch	<5_14_0-70_70_1-debuginfo-1-3.el9_0	5_14_0-70_70_1-debuginfo-1-3.el9_0
redhat/kpatch-patch	<5_14_0-70_70_1-debugsource-1-3.el9_0	5_14_0-70_70_1-debugsource-1-3.el9_0
redhat/kpatch-patch	<5_14_0-70_75_1-1-2.el9_0	5_14_0-70_75_1-1-2.el9_0
redhat/kpatch-patch	<5_14_0-70_75_1-debuginfo-1-2.el9_0	5_14_0-70_75_1-debuginfo-1-2.el9_0
redhat/kpatch-patch	<5_14_0-70_75_1-debugsource-1-2.el9_0	5_14_0-70_75_1-debugsource-1-2.el9_0
redhat/kpatch-patch	<5_14_0-70_80_1-1-1.el9_0	5_14_0-70_80_1-1-1.el9_0
redhat/kpatch-patch	<5_14_0-70_80_1-debuginfo-1-1.el9_0	5_14_0-70_80_1-debuginfo-1-1.el9_0
redhat/kpatch-patch	<5_14_0-70_80_1-debugsource-1-1.el9_0	5_14_0-70_80_1-debugsource-1-1.el9_0
Red Hat Enterprise Linux for Power, little endian - Extended Update Support
Red Hat Enterprise Linux for SAP Solutions
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions
Red Hat Enterprise Linux for x86_64 - Extended Update Support

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2024:0386?
The severity of RHSA-2024:0386 is classified as Important due to the potential impact on system security.
How do I fix RHSA-2024:0386?
To fix RHSA-2024:0386, install the updated version of the kpatch-patch package specified in the advisory.
Which systems are affected by RHSA-2024:0386?
RHSA-2024:0386 affects various editions of Red Hat Enterprise Linux, including Power and x86_64 architectures.
What vulnerability does RHSA-2024:0386 address?
RHSA-2024:0386 addresses a use-after-free vulnerability in the Linux kernel related to net/sched: sch_hfsc.
Is it safe to apply the patch for RHSA-2024:0386?
Yes, applying the patch for RHSA-2024:0386 is safe and recommended to mitigate the identified security vulnerability.

agent/severity
agent/type
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2024:0386
agent/software-canonical-lookup
agent/references
agent/weakness
agent/remedy
agent/title
agent/last-modified-date
agent/description
agent/first-publish-date
agent/source
agent/event
agent/softwarecombine
agent/tags
collector/redhat-errata-latest
agent/software-canonical-lookup-request
package-manager/redhat
vendor/red hat
canonical/red hat enterprise linux for power, little endian - extended update support
canonical/red hat enterprise linux for sap solutions
canonical/red hat enterprise linux server for power le - update services for sap solutions
canonical/red hat enterprise linux for x86_64 - extended update support