Issued:: 2023-06-06
Updated:: 2023-06-06

RHSA-2023:3462 - Security Advisory

Overview
Updated Packages

Synopsis

Important: kernel-rt security and bug fix update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in net/bluetooth/l2cap_core.c (CVE-2022-42896)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

kernel-rt: update RT source tree to the RHEL-8.4.z17 source tree (BZ#2185910)
RHEL-8.7 kernel-rt: INFO: task deadline_test:2526 blocked for more than 600 seconds. (BZ#2188652)
Crash: kernel BUG at kernel/locking/rtmutex.c:1338! (BZ#2188725)
kernel-rt: workqueue: Fix divergence from stock 8.4 (BZ#2209152)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

Red Hat Enterprise Linux for Real Time - Telecommunications Update Service 8.4 x86_64
Red Hat Enterprise Linux for Real Time for NFV - Telecommunications Update Service 8.4 x86_64

Fixes

BZ - 2147364 - CVE-2022-42896 kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in net/bluetooth/l2cap_core.c

CVEs

CVE-2022-42896

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for Real Time - Telecommunications Update Service 8.4

SRPM
kernel-rt-4.18.0-305.91.1.rt7.166.el8_4.src.rpm	SHA-256: 0f86b430c8877dbf4f36fc6dc306aa8ec72a18783d58d0cae34fb43b600ed8ea
x86_64
kernel-rt-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: bc381425e4d6c0092981742b05f645eddf9cdf4bd0977ccb42986307c86c46dd
kernel-rt-core-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: f0d40246e72d3c3022aa094d49924980224300e0c6fe9472ccd8befb16783417
kernel-rt-debug-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: db73ea203b5fb47ecd28b9a8dff396101263d56b195dd3ffae244f1082a31087
kernel-rt-debug-core-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: a3126e4f4d3466466e4fad87f566a89ffb13b8c163f316640c932106804b5987
kernel-rt-debug-debuginfo-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: be1b61812cc39cd2ef12ee654831c76bdd18340d60e03f9f5334c9cc6acad6d2
kernel-rt-debug-devel-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 9c65f664468d102bed65c0d6ada5b5dff178cf84731765f4936c43a8d307a438
kernel-rt-debug-modules-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: e32a29305899d567f13d596b6619d808873bb7e2ff57c8dd59e40070b5d370ee
kernel-rt-debug-modules-extra-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 20dc7ed33276d15fdf03853ea1055d6f5e904fc85c4ef0adf4c5df3623c6ab52
kernel-rt-debuginfo-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 81f35859fbcf2d4b810a61767ba45e7a08e07dd9cae54bd5961cb56fc89b3d7b
kernel-rt-debuginfo-common-x86_64-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 838a890a449cfcaff98f121fda23109461227743095b947c18bf7085630e098b
kernel-rt-devel-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 26463aef95f6d9fe39f019034274d074505ad1def79f212dab99fde85fd68572
kernel-rt-modules-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 835d942c59a1b8f6206cc490a02c6552062557765b4a19312ddfa6cf2ff62155
kernel-rt-modules-extra-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 53e81dedb3847bb7c1c0d5001a97ec525edbc254f1e735885b536a04b60e6e6f

Red Hat Enterprise Linux for Real Time for NFV - Telecommunications Update Service 8.4

SRPM
kernel-rt-4.18.0-305.91.1.rt7.166.el8_4.src.rpm	SHA-256: 0f86b430c8877dbf4f36fc6dc306aa8ec72a18783d58d0cae34fb43b600ed8ea
x86_64
kernel-rt-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: bc381425e4d6c0092981742b05f645eddf9cdf4bd0977ccb42986307c86c46dd
kernel-rt-core-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: f0d40246e72d3c3022aa094d49924980224300e0c6fe9472ccd8befb16783417
kernel-rt-debug-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: db73ea203b5fb47ecd28b9a8dff396101263d56b195dd3ffae244f1082a31087
kernel-rt-debug-core-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: a3126e4f4d3466466e4fad87f566a89ffb13b8c163f316640c932106804b5987
kernel-rt-debug-debuginfo-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: be1b61812cc39cd2ef12ee654831c76bdd18340d60e03f9f5334c9cc6acad6d2
kernel-rt-debug-devel-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 9c65f664468d102bed65c0d6ada5b5dff178cf84731765f4936c43a8d307a438
kernel-rt-debug-kvm-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: d0c8c0e631c4ffc186022f50645dc4e95126ecf81b373adf97e654dad27b4fc1
kernel-rt-debug-modules-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: e32a29305899d567f13d596b6619d808873bb7e2ff57c8dd59e40070b5d370ee
kernel-rt-debug-modules-extra-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 20dc7ed33276d15fdf03853ea1055d6f5e904fc85c4ef0adf4c5df3623c6ab52
kernel-rt-debuginfo-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 81f35859fbcf2d4b810a61767ba45e7a08e07dd9cae54bd5961cb56fc89b3d7b
kernel-rt-debuginfo-common-x86_64-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 838a890a449cfcaff98f121fda23109461227743095b947c18bf7085630e098b
kernel-rt-devel-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 26463aef95f6d9fe39f019034274d074505ad1def79f212dab99fde85fd68572
kernel-rt-kvm-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: c97d70e7e6e69f72d46dca7f6c2d654b4881315a99538c36f8ec2307a6387714
kernel-rt-modules-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 835d942c59a1b8f6206cc490a02c6552062557765b4a19312ddfa6cf2ff62155
kernel-rt-modules-extra-4.18.0-305.91.1.rt7.166.el8_4.x86_64.rpm	SHA-256: 53e81dedb3847bb7c1c0d5001a97ec525edbc254f1e735885b536a04b60e6e6f

The Red Hat security contact is [email protected]. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation