AlmaLinux 2310 Published by

A kernel-rt security and bug fix update has been released for AlmaLinux 9.2.



ALSA-2023:4378 Important: kernel-rt security and bug fix update


Type:
security

Severity:
important

Release date:
2023-08-08

Description
Security Fix(es):
* kernel: ipvlan: out-of-bounds write caused by unclear skb->cb (CVE-2023-3090)
* kernel: cls_flower: out-of-bounds write in fl_set_geneve_opt() (CVE-2023-35788)
* kernel: KVM: x86/mmu: race condition in direct_page_fault() (CVE-2022-45869)
* kernel: speculative pointer dereference in do_prlimit() in kernel/sys.c (CVE-2023-0458)
* kernel: Spectre v2 SMT mitigations problem (CVE-2023-1998)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:
CVE-2022-45869
CVE-2023-0458
CVE-2023-1998
CVE-2023-3090
CVE-2023-35788
RHSA-2023:4378
ALSA-2023:4378

Updates packages:
kernel-rt-debug-kvm-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-debug-modules-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-modules-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-kvm-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-devel-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-core-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-debug-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-modules-core-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-debug-modules-extra-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-debug-modules-core-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-modules-extra-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-debug-devel-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm
kernel-rt-debug-core-5.14.0-284.25.1.rt14.310.el9_2.x86_64.rpm

Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2023:4378 Important: kernel-rt security and bug fix update