Issued:: 2024-11-05
Updated:: 2024-11-05

RHSA-2024:8870 - Moderate: kernel-rt security update

Synopsis

Moderate: kernel-rt security update

Type/Severity

Security Advisory Moderate

Topic

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

kernel: net/bluetooth: race condition in conn_info_{min,max}_age_set() (CVE-2024-24857)
kernel: dmaengine: fix NULL pointer in channel unregistration function (CVE-2023-52492)
kernel: netfilter: nf_conntrack_h323: Add protection for bmp length out of range (CVE-2024-26851)
kernel: netfilter: nft_set_pipapo: do not free live element (CVE-2024-26924)
kernel: netfilter: nft_set_pipapo: walk over current view on netlink dump (CVE-2024-27017)
kernel: KVM: Always flush async #PF workqueue when vCPU is being destroyed (CVE-2024-26976)
kernel: nouveau: lock the client object tree. (CVE-2024-27062)
kernel: netfilter: bridge: replace physindev with physinif in nf_bridge_info (CVE-2024-35839)
kernel: netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() (CVE-2024-35898)
kernel: dma-direct: Leak pages on dma_set_decrypted() failure (CVE-2024-35939)
kernel: net/mlx5e: Fix netif state handling (CVE-2024-38608)
kernel: r8169: Fix possible ring buffer corruption on fragmented Tx packets. (CVE-2024-38586)
kernel: of: module: add buffer overflow check in of_modalias() (CVE-2024-38541)
kernel: bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq (CVE-2024-38540)
kernel: netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type (CVE-2024-39503)
kernel: drm/i915/dpt: Make DPT object unshrinkable (CVE-2024-40924)
kernel: ipv6: prevent possible NULL deref in fib6_nh_init() (CVE-2024-40961)
kernel: tipc: force a dst refcount before doing decryption (CVE-2024-40983)
kernel: ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." (CVE-2024-40984)
kernel: xprtrdma: fix pointer derefs in error cases of rpcrdma_ep_create (CVE-2022-48773)
kernel: bpf: Fix overrunning reservations in ringbuf (CVE-2024-41009)
kernel: netfilter: nf_tables: prefer nft_chain_validate (CVE-2024-41042)
kernel: ibmvnic: Add tx check to prevent skb leak (CVE-2024-41066)
kernel: drm/i915/gt: Fix potential UAF by revoke of fence registers (CVE-2024-41092)
kernel: drm/amdgpu: avoid using null object of framebuffer (CVE-2024-41093)
kernel: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers (CVE-2024-42070)
kernel: gfs2: Fix NULL pointer dereference in gfs2_log_flush (CVE-2024-42079)
kernel: USB: serial: mos7840: fix crash on resume (CVE-2024-42244)
kernel: tipc: Return non-zero value from tipc_udp_addr2str() on error (CVE-2024-42284)
kernel: kobject_uevent: Fix OOB access within zap_modalias_env() (CVE-2024-42292)
kernel: dev/parport: fix the array out-of-bounds risk (CVE-2024-42301)
kernel: block: initialize integrity buffer to zero before writing it to media (CVE-2024-43854)
kernel: mlxsw: spectrum_acl_erp: Fix object nesting warning (CVE-2024-43880)
kernel: gso: do not skip outer ip header in case of ipip and net_failover (CVE-2022-48936)
kernel: padata: Fix possible divide-by-0 panic in padata_mt_helper() (CVE-2024-43889)
kernel: memcg: protect concurrent access to mem_cgroup_idr (CVE-2024-43892)
kernel: sctp: Fix null-ptr-deref in reuseport_add_sock(). (CVE-2024-44935)
kernel: bonding: fix xfrm real_dev null pointer dereference (CVE-2024-44989)
kernel: bonding: fix null pointer deref in bond_ipsec_offload_ok (CVE-2024-44990)
kernel: netfilter: flowtable: initialise extack before use (CVE-2024-45018)
kernel: ELF: fix kernel.randomize_va_space double read (CVE-2024-46826)
kernel: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (CVE-2024-47668)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

Product	Version	Arch
Red Hat Enterprise Linux for x86_64 - Extended Life Cycle	8.10	x86_64
Red Hat Enterprise Linux for Real Time	8	x86_64
Red Hat Enterprise Linux for Real Time for NFV	8	x86_64

Updated Packages

kernel-rt-debug-modules-extra-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-debuginfo-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-modules-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-4.18.0-553.27.1.rt7.368.el8_10.src.rpm
kernel-rt-debug-debuginfo-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-core-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-debuginfo-common-x86_64-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-debug-devel-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-debug-core-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-devel-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-debug-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-kvm-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-debug-modules-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-modules-extra-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm
kernel-rt-debug-kvm-4.18.0-553.27.1.rt7.368.el8_10.x86_64.rpm

Fixes

CVEs

CVE-2022-48773
CVE-2022-48936
CVE-2023-52492
CVE-2024-24857
CVE-2024-26851
CVE-2024-26924
CVE-2024-26976
CVE-2024-27017
CVE-2024-27062
CVE-2024-35839
CVE-2024-35898
CVE-2024-35939
CVE-2024-38540
CVE-2024-38541
CVE-2024-38586
CVE-2024-38608
CVE-2024-39503
CVE-2024-40924
CVE-2024-40961
CVE-2024-40983
CVE-2024-40984
CVE-2024-41009
CVE-2024-41042
CVE-2024-41066
CVE-2024-41092
CVE-2024-41093
CVE-2024-42070
CVE-2024-42079
CVE-2024-42244
CVE-2024-42284
CVE-2024-42292
CVE-2024-42301
CVE-2024-43854
CVE-2024-43880
CVE-2024-43889
CVE-2024-43892
CVE-2024-44935
CVE-2024-44989
CVE-2024-44990
CVE-2024-45018
CVE-2024-46826
CVE-2024-47668

References

https://access.redhat.com/security/updates/classification/#moderate

Additional information

The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.