RLSA-2023:7549

Source
https://errata.rockylinux.org/RLSA-2023:7549
Import Source
https://storage.googleapis.com/resf-osv-data/RLSA-2023:7549.json
JSON Data
https://api.osv.dev/v1/vulns/RLSA-2023:7549
Related
Published
2023-12-06T23:16:24.776693Z
Modified
2023-12-06T23:18:00.631569Z
Summary
Important: kernel security and bug fix update
Details

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: bpf: Incorrect verifier pruning leads to unsafe code paths being incorrectly marked as safe (CVE-2023-2163)

  • kernel: tun: bugs for oversize packet when napi frags enabled in tunnapialloc_frags (CVE-2023-3812)

  • kernel: use after free in nvmettcpfree_crypto in NVMe (CVE-2023-5178)

  • kernel: use-after-free due to race condition occurring in dvbregisterdevice() (CVE-2022-45884)

  • kernel: use-after-free due to race condition occurring in dvb_net.c (CVE-2022-45886)

  • kernel: use-after-free due to race condition occurring in dvbcaen50221.c (CVE-2022-45919)

  • kernel: use-after-free in smb2isstatusiotimeout() (CVE-2023-1192)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • Random delay receiving packets after bringing up VLAN on top of VF with vf-vlan-pruning enabled (BZ#2240750)

  • bpfjitlimit hit again (BZ#2243011)

  • HPE Edgeline 920t resets during kdump context when ice driver is loaded and when system is booted with intel_iommu=on iommu=pt (BZ#2244625)

References
Credits
    • Rocky Enterprise Software Foundation
    • Red Hat

Affected packages

Rocky Linux:8 / kernel

Package

Name
kernel
Purl
pkg:rpm/rocky-linux/kernel?distro=rocky-linux-8&epoch=0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0:4.18.0-513.9.1.el8_9