Home[1] Files[2] News[3] Contact[4] Add New[5]
- Red Hat Security Advisory 2022-0176-06[6]
- Authored by Red Hat[7] | Site access.redhat.com[8]
-
Red Hat Security Advisory 2022-0176-06 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include a heap overflow vulnerability.
- systems | linux[9], redhat[10]
- advisories | CVE-2021-4155[11], CVE-2022-0185[12]
- MD5 |
7e95d48c61f1042f312eef724405c18b - Download[13] | Favorite[14] | View[15]
Change Mirror[16] Download[17]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
====================================================================
Red Hat Security Advisory
Synopsis: Important: kernel-rt security and bug fix update
Advisory ID: RHSA-2022:0176-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2022:0176
Issue date: 2022-01-19
CVE Names: CVE-2021-4155 CVE-2022-0185
====================================================================
1. Summary:
An update for kernel-rt is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
2. Relevant releases/architectures:
Red Hat Enterprise Linux Real Time for NFV (v. 8) - x86_64
Red Hat Enterprise Linux for Real Time (v. 8) - x86_64
3. Description:
The kernel-rt packages provide the Real Time Linux Kernel, which enables
fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
* kernel: xfs: raw block device data leak in XFS_IOC_ALLOCSP IOCTL
(CVE-2021-4155)
* kernel: fs_context: heap overflow in legacy parameter handling
(CVE-2022-0185)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
Bug Fix(es):
* kernnel-rt-debug: do not call blocking ops when !TASK_RUNNING; state=1
set at [<0000000050e86018>] handle_userfault+0x530/0x1820 (BZ#2029422)
* kernel-rt: update RT source tree to the RHEL-8.5.z source tree
(BZ#2032059)
4. Solution:
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
The system must be rebooted for this update to take effect.
5. Bugs fixed (https://bugzilla.redhat.com/):
2034813 - CVE-2021-4155 kernel: xfs: raw block device data leak in XFS_IOC_ALLOCSP IOCTL
2040358 - CVE-2022-0185 kernel: fs_context: heap overflow in legacy parameter handling
6. Package List:
Red Hat Enterprise Linux Real Time for NFV (v. 8):
Source:
kernel-rt-4.18.0-348.12.2.rt7.143.el8_5.src.rpm
x86_64:
kernel-rt-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-core-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-core-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-debuginfo-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-devel-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-kvm-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-modules-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-modules-extra-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debuginfo-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debuginfo-common-x86_64-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-devel-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-kvm-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-modules-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-modules-extra-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
Red Hat Enterprise Linux for Real Time (v. 8):
Source:
kernel-rt-4.18.0-348.12.2.rt7.143.el8_5.src.rpm
x86_64:
kernel-rt-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-core-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-core-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-debuginfo-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-devel-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-modules-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debug-modules-extra-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debuginfo-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-debuginfo-common-x86_64-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-devel-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-modules-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
kernel-rt-modules-extra-4.18.0-348.12.2.rt7.143.el8_5.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2021-4155
https://access.redhat.com/security/cve/CVE-2022-0185
https://access.redhat.com/security/updates/classification/#important
8. Contact:
The Red Hat security contact is <Cette adresse e-mail est protégée contre les robots spammeurs. Vous devez activer le JavaScript pour la visualiser. >. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2022 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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L1Iu
-----END PGP SIGNATURE-----
--
RHSA-announce mailing list
Cette adresse e-mail est protégée contre les robots spammeurs. Vous devez activer le JavaScript pour la visualiser.
https://listman.redhat.com/mailman/listinfo/rhsa-announce
Follow us on Twitter
Follow us on
Facebook
Subscribe to an RSS
FeedFile Tags
- ActiveX[23] (932)
- Advisory[24] (76,549)
- Arbitrary[25] (14,931)
- BBS[26] (2,859)
- Bypass[27] (1,516)
- CGI[28] (1,009)
- Code Execution[29] (6,446)
- Conference[30] (665)
- Cracker[31] (797)
- CSRF[32] (3,246)
- DoS[33] (21,523)
- Encryption[34] (2,319)
- Exploit[35] (49,108)
- File Inclusion[36] (4,119)
- File Upload[37] (933)
- Firewall[38] (821)
- Info Disclosure[39] (2,531)
- Intrusion Detection[40] (841)
- Java[41] (2,720)
- JavaScript[42] (787)
- Kernel[43] (5,894)
- Local[44] (13,888)
- Magazine[45] (586)
- Overflow[46] (12,013)
- Perl[47] (1,409)
- PHP[48] (5,024)
- Proof of Concept[49] (2,273)
- Protocol[50] (3,229)
- Python[51] (1,365)
- Remote[52] (29,319)
- Root[53] (3,419)
- Ruby[54] (564)
- Scanner[55] (1,627)
- Security Tool[56] (7,627)
- Shell[57] (3,013)
- Shellcode[58] (1,192)
- Sniffer[59] (877)
- Spoof[60] (2,062)
- SQL Injection[61] (15,858)
- TCP[62] (2,345)
- Trojan[63] (666)
- UDP[64] (865)
- Virus[65] (657)
- Vulnerability[66] (30,114)
- Web[67] (8,862)
- Whitepaper[68] (3,698)
- x86[69] (939)
- XSS[70] (17,201)
- Other[71]
File Archives
- January 2022[72]
- December 2021[73]
- November 2021[74]
- October 2021[75]
- September 2021[76]
- August 2021[77]
- July 2021[78]
- June 2021[79]
- May 2021[80]
- April 2021[81]
- March 2021[82]
- February 2021[83]
- Older[84]
Systems
- AIX[85] (423)
- Apple[86] (1,853)
- BSD[87] (368)
- CentOS[88] (54)
- Cisco[89] (1,909)
- Debian[90] (5,946)
- Fedora[91] (1,690)
- FreeBSD[92] (1,241)
- Gentoo[93] (4,148)
- HPUX[94] (875)
- iOS[95] (309)
- iPhone[96] (108)
- IRIX[97] (220)
- Juniper[98] (67)
- Linux[99] (41,279)
- Mac OS X[100] (682)
- Mandriva[101] (3,105)
- NetBSD[102] (255)
- OpenBSD[103] (476)
- RedHat[104] (10,915)
- Slackware[105] (941)
- Solaris[106] (1,601)
- SUSE[107] (1,444)
- Ubuntu[108] (7,571)
- UNIX[109] (9,007)
- UnixWare[110] (182)
- Windows[111] (6,249)
- Other[112]
© 2020 Packet Storm. All rights reserved.
- Services
- Security Services[123]
- Hosting By
- Rokasec[124]
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Read more https://packetstormsecurity.com/files/165613/RHSA-2022-0176-06.txt
