CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
17.8%
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6567 advisory.
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: efivarfs: force RO when remounting if SetVariable is not supported (CVE-2023-52463)
* kernel: nfsd: fix RELEASE_LOCKOWNER (CVE-2024-26629)
* kernel: mm: cachestat: fix folio read-after-free in cache walk (CVE-2024-26630)
* kernel: mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again (CVE-2024-26720)
* kernel: Bluetooth: af_bluetooth: Fix deadlock (CVE-2024-26886)
* kernel: kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe address (CVE-2024-26946)
* kernel: KVM: SVM: Flush pages under kvm->lock to fix UAF in svm_register_enc_region() (CVE-2024-35791)
* kernel: mm: cachestat: fix two shmem bugs (CVE-2024-35797)
* kernel: x86/coco: Require seeding RNG with RDRAND on CoCo systems (CVE-2024-35875)
* kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (CVE-2024-36000)
* kernel: iommufd: Fix missing update of domains_itree after splitting iopt_area (CVE-2023-52801)
* kernel: net: fix out-of-bounds access in ops_init (CVE-2024-36883)
* kernel: regmap: maple: Fix cache corruption in regcache_maple_drop() (CVE-2024-36019)
* kernel: usb-storage: alauda: Check whether the media is initialized (CVE-2024-38619)
* kernel: net: bridge: mst: fix vlan use-after-free (CVE-2024-36979)
* kernel: scsi: qedf: Ensure the copied buf is NUL terminated (CVE-2024-38559)
* kernel: xhci: Handle TD clearing for multiple streams case (CVE-2024-40927)
* kernel: cxl/region: Fix memregion leaks in devm_cxl_add_region() (CVE-2024-40936)
* kernel: net/sched: Fix UAF when resolving a clash (CVE-2024-41040)
* kernel: ppp: reject claimed-as-LCP but actually malformed packets (CVE-2024-41044)
* kernel: mm: prevent derefencing NULL ptr in pfn_section_valid() (CVE-2024-41055)
* kernel: PCI/MSI: Fix UAF in msi_capability_init (CVE-2024-41096)
* kernel: xdp: Remove WARN() from __xdp_reg_mem_model() (CVE-2024-42082)
* kernel: x86: stop playing stack games in profile_pc() (CVE-2024-42096)
* kernel: Revert mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again (CVE-2024-42102)
* kernel: mm: avoid overflows in dirty throttling logic (CVE-2024-42131)
* kernel: nvme: avoid double free special payload (CVE-2024-41073)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2024:6567. The text
# itself is copyright (C) Red Hat, Inc.
##
include('compat.inc');
if (description)
{
script_id(206943);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/09/11");
script_cve_id(
"CVE-2023-52463",
"CVE-2023-52801",
"CVE-2024-26629",
"CVE-2024-26630",
"CVE-2024-26720",
"CVE-2024-26886",
"CVE-2024-26946",
"CVE-2024-35791",
"CVE-2024-35797",
"CVE-2024-35875",
"CVE-2024-36000",
"CVE-2024-36019",
"CVE-2024-36883",
"CVE-2024-36979",
"CVE-2024-38559",
"CVE-2024-38619",
"CVE-2024-40927",
"CVE-2024-40936",
"CVE-2024-41040",
"CVE-2024-41044",
"CVE-2024-41055",
"CVE-2024-41073",
"CVE-2024-41096",
"CVE-2024-42082",
"CVE-2024-42096",
"CVE-2024-42102",
"CVE-2024-42131"
);
script_xref(name:"RHSA", value:"2024:6567");
script_name(english:"RHEL 9 : kernel (RHSA-2024:6567)");
script_set_attribute(attribute:"synopsis", value:
"The remote Red Hat host is missing one or more security updates for kernel.");
script_set_attribute(attribute:"description", value:
"The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as
referenced in the RHSA-2024:6567 advisory.
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: efivarfs: force RO when remounting if SetVariable is not supported (CVE-2023-52463)
* kernel: nfsd: fix RELEASE_LOCKOWNER (CVE-2024-26629)
* kernel: mm: cachestat: fix folio read-after-free in cache walk (CVE-2024-26630)
* kernel: mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again (CVE-2024-26720)
* kernel: Bluetooth: af_bluetooth: Fix deadlock (CVE-2024-26886)
* kernel: kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe address (CVE-2024-26946)
* kernel: KVM: SVM: Flush pages under kvm->lock to fix UAF in svm_register_enc_region()
(CVE-2024-35791)
* kernel: mm: cachestat: fix two shmem bugs (CVE-2024-35797)
* kernel: x86/coco: Require seeding RNG with RDRAND on CoCo systems (CVE-2024-35875)
* kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (CVE-2024-36000)
* kernel: iommufd: Fix missing update of domains_itree after splitting iopt_area (CVE-2023-52801)
* kernel: net: fix out-of-bounds access in ops_init (CVE-2024-36883)
* kernel: regmap: maple: Fix cache corruption in regcache_maple_drop() (CVE-2024-36019)
* kernel: usb-storage: alauda: Check whether the media is initialized (CVE-2024-38619)
* kernel: net: bridge: mst: fix vlan use-after-free (CVE-2024-36979)
* kernel: scsi: qedf: Ensure the copied buf is NUL terminated (CVE-2024-38559)
* kernel: xhci: Handle TD clearing for multiple streams case (CVE-2024-40927)
* kernel: cxl/region: Fix memregion leaks in devm_cxl_add_region() (CVE-2024-40936)
* kernel: net/sched: Fix UAF when resolving a clash (CVE-2024-41040)
* kernel: ppp: reject claimed-as-LCP but actually malformed packets (CVE-2024-41044)
* kernel: mm: prevent derefencing NULL ptr in pfn_section_valid() (CVE-2024-41055)
* kernel: PCI/MSI: Fix UAF in msi_capability_init (CVE-2024-41096)
* kernel: xdp: Remove WARN() from __xdp_reg_mem_model() (CVE-2024-42082)
* kernel: x86: stop playing stack games in profile_pc() (CVE-2024-42096)
* kernel: Revert mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again
(CVE-2024-42102)
* kernel: mm: avoid overflows in dirty throttling logic (CVE-2024-42131)
* kernel: nvme: avoid double free special payload (CVE-2024-41073)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and
other related information, refer to the CVE page(s) listed in the References section.
Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/updates/classification/#moderate");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2265797");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2269434");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2269436");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2273141");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2275678");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2278206");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2281052");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2281151");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2281727");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2281968");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2282709");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2284271");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2284402");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2293273");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2293276");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2293440");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2297511");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2297520");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2300409");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2300414");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2300429");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2300491");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2300520");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2300713");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2301465");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2301496");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2301637");
# https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_6567.json
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?a2f70819");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2024:6567");
script_set_attribute(attribute:"solution", value:
"Update the RHEL kernel package based on the guidance in RHSA-2024:6567.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-41096");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_cwe_id(20, 99, 125, 190, 369, 393, 402, 416, 457, 476, 770, 787, 820, 833);
script_set_attribute(attribute:"vendor_severity", value:"Moderate");
script_set_attribute(attribute:"vuln_publication_date", value:"2024/02/15");
script_set_attribute(attribute:"patch_publication_date", value:"2024/09/11");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/09/11");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:9");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bpftool");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-devel-matched");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-modules-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-modules-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-devel-matched");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-modules-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-64k-modules-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-cross-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel-matched");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-uki-virt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-devel-matched");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-modules-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-modules-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-kvm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-modules-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-modules-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-kvm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-modules-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-rt-modules-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-uki-virt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-devel-matched");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libperf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:perf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:python3-perf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rtla");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rv");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Red Hat Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl", "redhat_repos.nasl", "linux_alt_patch_detect.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include('rpm.inc');
include('rhel.inc');
include('ksplice.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/RedHat/release');
if (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');
var os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');
os_ver = os_ver[1];
if (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '9')) audit(AUDIT_OS_NOT, 'Red Hat 9.x', 'Red Hat ' + os_ver);
if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu && 'ppc' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);
if (get_one_kb_item('Host/ksplice/kernel-cves'))
{
rm_kb_item(name:'Host/uptrack-uname-r');
var cve_list = make_list('CVE-2023-52463', 'CVE-2023-52801', 'CVE-2024-26629', 'CVE-2024-26630', 'CVE-2024-26720', 'CVE-2024-26886', 'CVE-2024-26946', 'CVE-2024-35791', 'CVE-2024-35797', 'CVE-2024-35875', 'CVE-2024-36000', 'CVE-2024-36019', 'CVE-2024-36883', 'CVE-2024-36979', 'CVE-2024-38559', 'CVE-2024-38619', 'CVE-2024-40927', 'CVE-2024-40936', 'CVE-2024-41040', 'CVE-2024-41044', 'CVE-2024-41055', 'CVE-2024-41073', 'CVE-2024-41096', 'CVE-2024-42082', 'CVE-2024-42096', 'CVE-2024-42102', 'CVE-2024-42131');
if (ksplice_cves_check(cve_list))
{
audit(AUDIT_PATCH_INSTALLED, 'KSplice hotfix for RHSA-2024:6567');
}
else
{
__rpm_report = ksplice_reporting_text();
}
}
var constraints = [
{
'repo_relative_urls': [
'content/dist/rhel9/9.1/aarch64/appstream/debug',
'content/dist/rhel9/9.1/aarch64/appstream/os',
'content/dist/rhel9/9.1/aarch64/appstream/source/SRPMS',
'content/dist/rhel9/9.1/aarch64/baseos/debug',
'content/dist/rhel9/9.1/aarch64/baseos/os',
'content/dist/rhel9/9.1/aarch64/baseos/source/SRPMS',
'content/dist/rhel9/9.1/aarch64/codeready-builder/debug',
'content/dist/rhel9/9.1/aarch64/codeready-builder/os',
'content/dist/rhel9/9.1/aarch64/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.1/ppc64le/appstream/debug',
'content/dist/rhel9/9.1/ppc64le/appstream/os',
'content/dist/rhel9/9.1/ppc64le/appstream/source/SRPMS',
'content/dist/rhel9/9.1/ppc64le/baseos/debug',
'content/dist/rhel9/9.1/ppc64le/baseos/os',
'content/dist/rhel9/9.1/ppc64le/baseos/source/SRPMS',
'content/dist/rhel9/9.1/ppc64le/codeready-builder/debug',
'content/dist/rhel9/9.1/ppc64le/codeready-builder/os',
'content/dist/rhel9/9.1/ppc64le/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.1/s390x/appstream/debug',
'content/dist/rhel9/9.1/s390x/appstream/os',
'content/dist/rhel9/9.1/s390x/appstream/source/SRPMS',
'content/dist/rhel9/9.1/s390x/baseos/debug',
'content/dist/rhel9/9.1/s390x/baseos/os',
'content/dist/rhel9/9.1/s390x/baseos/source/SRPMS',
'content/dist/rhel9/9.1/s390x/codeready-builder/debug',
'content/dist/rhel9/9.1/s390x/codeready-builder/os',
'content/dist/rhel9/9.1/s390x/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.1/x86_64/appstream/debug',
'content/dist/rhel9/9.1/x86_64/appstream/os',
'content/dist/rhel9/9.1/x86_64/appstream/source/SRPMS',
'content/dist/rhel9/9.1/x86_64/baseos/debug',
'content/dist/rhel9/9.1/x86_64/baseos/os',
'content/dist/rhel9/9.1/x86_64/baseos/source/SRPMS',
'content/dist/rhel9/9.1/x86_64/codeready-builder/debug',
'content/dist/rhel9/9.1/x86_64/codeready-builder/os',
'content/dist/rhel9/9.1/x86_64/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.1/x86_64/nfv/debug',
'content/dist/rhel9/9.1/x86_64/nfv/os',
'content/dist/rhel9/9.1/x86_64/nfv/source/SRPMS',
'content/dist/rhel9/9.1/x86_64/rt/debug',
'content/dist/rhel9/9.1/x86_64/rt/os',
'content/dist/rhel9/9.1/x86_64/rt/source/SRPMS',
'content/dist/rhel9/9.2/aarch64/appstream/debug',
'content/dist/rhel9/9.2/aarch64/appstream/os',
'content/dist/rhel9/9.2/aarch64/appstream/source/SRPMS',
'content/dist/rhel9/9.2/aarch64/baseos/debug',
'content/dist/rhel9/9.2/aarch64/baseos/os',
'content/dist/rhel9/9.2/aarch64/baseos/source/SRPMS',
'content/dist/rhel9/9.2/aarch64/codeready-builder/debug',
'content/dist/rhel9/9.2/aarch64/codeready-builder/os',
'content/dist/rhel9/9.2/aarch64/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.2/ppc64le/appstream/debug',
'content/dist/rhel9/9.2/ppc64le/appstream/os',
'content/dist/rhel9/9.2/ppc64le/appstream/source/SRPMS',
'content/dist/rhel9/9.2/ppc64le/baseos/debug',
'content/dist/rhel9/9.2/ppc64le/baseos/os',
'content/dist/rhel9/9.2/ppc64le/baseos/source/SRPMS',
'content/dist/rhel9/9.2/ppc64le/codeready-builder/debug',
'content/dist/rhel9/9.2/ppc64le/codeready-builder/os',
'content/dist/rhel9/9.2/ppc64le/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.2/s390x/appstream/debug',
'content/dist/rhel9/9.2/s390x/appstream/os',
'content/dist/rhel9/9.2/s390x/appstream/source/SRPMS',
'content/dist/rhel9/9.2/s390x/baseos/debug',
'content/dist/rhel9/9.2/s390x/baseos/os',
'content/dist/rhel9/9.2/s390x/baseos/source/SRPMS',
'content/dist/rhel9/9.2/s390x/codeready-builder/debug',
'content/dist/rhel9/9.2/s390x/codeready-builder/os',
'content/dist/rhel9/9.2/s390x/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.2/x86_64/appstream/debug',
'content/dist/rhel9/9.2/x86_64/appstream/os',
'content/dist/rhel9/9.2/x86_64/appstream/source/SRPMS',
'content/dist/rhel9/9.2/x86_64/baseos/debug',
'content/dist/rhel9/9.2/x86_64/baseos/os',
'content/dist/rhel9/9.2/x86_64/baseos/source/SRPMS',
'content/dist/rhel9/9.2/x86_64/codeready-builder/debug',
'content/dist/rhel9/9.2/x86_64/codeready-builder/os',
'content/dist/rhel9/9.2/x86_64/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.2/x86_64/nfv/debug',
'content/dist/rhel9/9.2/x86_64/nfv/os',
'content/dist/rhel9/9.2/x86_64/nfv/source/SRPMS',
'content/dist/rhel9/9.2/x86_64/rt/debug',
'content/dist/rhel9/9.2/x86_64/rt/os',
'content/dist/rhel9/9.2/x86_64/rt/source/SRPMS',
'content/dist/rhel9/9.3/aarch64/appstream/debug',
'content/dist/rhel9/9.3/aarch64/appstream/os',
'content/dist/rhel9/9.3/aarch64/appstream/source/SRPMS',
'content/dist/rhel9/9.3/aarch64/baseos/debug',
'content/dist/rhel9/9.3/aarch64/baseos/os',
'content/dist/rhel9/9.3/aarch64/baseos/source/SRPMS',
'content/dist/rhel9/9.3/aarch64/codeready-builder/debug',
'content/dist/rhel9/9.3/aarch64/codeready-builder/os',
'content/dist/rhel9/9.3/aarch64/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.3/ppc64le/appstream/debug',
'content/dist/rhel9/9.3/ppc64le/appstream/os',
'content/dist/rhel9/9.3/ppc64le/appstream/source/SRPMS',
'content/dist/rhel9/9.3/ppc64le/baseos/debug',
'content/dist/rhel9/9.3/ppc64le/baseos/os',
'content/dist/rhel9/9.3/ppc64le/baseos/source/SRPMS',
'content/dist/rhel9/9.3/ppc64le/codeready-builder/debug',
'content/dist/rhel9/9.3/ppc64le/codeready-builder/os',
'content/dist/rhel9/9.3/ppc64le/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.3/s390x/appstream/debug',
'content/dist/rhel9/9.3/s390x/appstream/os',
'content/dist/rhel9/9.3/s390x/appstream/source/SRPMS',
'content/dist/rhel9/9.3/s390x/baseos/debug',
'content/dist/rhel9/9.3/s390x/baseos/os',
'content/dist/rhel9/9.3/s390x/baseos/source/SRPMS',
'content/dist/rhel9/9.3/s390x/codeready-builder/debug',
'content/dist/rhel9/9.3/s390x/codeready-builder/os',
'content/dist/rhel9/9.3/s390x/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.3/x86_64/appstream/debug',
'content/dist/rhel9/9.3/x86_64/appstream/os',
'content/dist/rhel9/9.3/x86_64/appstream/source/SRPMS',
'content/dist/rhel9/9.3/x86_64/baseos/debug',
'content/dist/rhel9/9.3/x86_64/baseos/os',
'content/dist/rhel9/9.3/x86_64/baseos/source/SRPMS',
'content/dist/rhel9/9.3/x86_64/codeready-builder/debug',
'content/dist/rhel9/9.3/x86_64/codeready-builder/os',
'content/dist/rhel9/9.3/x86_64/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.3/x86_64/nfv/debug',
'content/dist/rhel9/9.3/x86_64/nfv/os',
'content/dist/rhel9/9.3/x86_64/nfv/source/SRPMS',
'content/dist/rhel9/9.3/x86_64/rt/debug',
'content/dist/rhel9/9.3/x86_64/rt/os',
'content/dist/rhel9/9.3/x86_64/rt/source/SRPMS',
'content/dist/rhel9/9.4/aarch64/appstream/debug',
'content/dist/rhel9/9.4/aarch64/appstream/os',
'content/dist/rhel9/9.4/aarch64/appstream/source/SRPMS',
'content/dist/rhel9/9.4/aarch64/baseos/debug',
'content/dist/rhel9/9.4/aarch64/baseos/os',
'content/dist/rhel9/9.4/aarch64/baseos/source/SRPMS',
'content/dist/rhel9/9.4/aarch64/codeready-builder/debug',
'content/dist/rhel9/9.4/aarch64/codeready-builder/os',
'content/dist/rhel9/9.4/aarch64/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.4/ppc64le/appstream/debug',
'content/dist/rhel9/9.4/ppc64le/appstream/os',
'content/dist/rhel9/9.4/ppc64le/appstream/source/SRPMS',
'content/dist/rhel9/9.4/ppc64le/baseos/debug',
'content/dist/rhel9/9.4/ppc64le/baseos/os',
'content/dist/rhel9/9.4/ppc64le/baseos/source/SRPMS',
'content/dist/rhel9/9.4/ppc64le/codeready-builder/debug',
'content/dist/rhel9/9.4/ppc64le/codeready-builder/os',
'content/dist/rhel9/9.4/ppc64le/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.4/s390x/appstream/debug',
'content/dist/rhel9/9.4/s390x/appstream/os',
'content/dist/rhel9/9.4/s390x/appstream/source/SRPMS',
'content/dist/rhel9/9.4/s390x/baseos/debug',
'content/dist/rhel9/9.4/s390x/baseos/os',
'content/dist/rhel9/9.4/s390x/baseos/source/SRPMS',
'content/dist/rhel9/9.4/s390x/codeready-builder/debug',
'content/dist/rhel9/9.4/s390x/codeready-builder/os',
'content/dist/rhel9/9.4/s390x/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.4/x86_64/appstream/debug',
'content/dist/rhel9/9.4/x86_64/appstream/os',
'content/dist/rhel9/9.4/x86_64/appstream/source/SRPMS',
'content/dist/rhel9/9.4/x86_64/baseos/debug',
'content/dist/rhel9/9.4/x86_64/baseos/os',
'content/dist/rhel9/9.4/x86_64/baseos/source/SRPMS',
'content/dist/rhel9/9.4/x86_64/codeready-builder/debug',
'content/dist/rhel9/9.4/x86_64/codeready-builder/os',
'content/dist/rhel9/9.4/x86_64/codeready-builder/source/SRPMS',
'content/dist/rhel9/9.4/x86_64/nfv/debug',
'content/dist/rhel9/9.4/x86_64/nfv/os',
'content/dist/rhel9/9.4/x86_64/nfv/source/SRPMS',
'content/dist/rhel9/9.4/x86_64/rt/debug',
'content/dist/rhel9/9.4/x86_64/rt/os',
'content/dist/rhel9/9.4/x86_64/rt/source/SRPMS',
'content/dist/rhel9/9/aarch64/appstream/debug',
'content/dist/rhel9/9/aarch64/appstream/os',
'content/dist/rhel9/9/aarch64/appstream/source/SRPMS',
'content/dist/rhel9/9/aarch64/baseos/debug',
'content/dist/rhel9/9/aarch64/baseos/os',
'content/dist/rhel9/9/aarch64/baseos/source/SRPMS',
'content/dist/rhel9/9/aarch64/codeready-builder/debug',
'content/dist/rhel9/9/aarch64/codeready-builder/os',
'content/dist/rhel9/9/aarch64/codeready-builder/source/SRPMS',
'content/dist/rhel9/9/ppc64le/appstream/debug',
'content/dist/rhel9/9/ppc64le/appstream/os',
'content/dist/rhel9/9/ppc64le/appstream/source/SRPMS',
'content/dist/rhel9/9/ppc64le/baseos/debug',
'content/dist/rhel9/9/ppc64le/baseos/os',
'content/dist/rhel9/9/ppc64le/baseos/source/SRPMS',
'content/dist/rhel9/9/ppc64le/codeready-builder/debug',
'content/dist/rhel9/9/ppc64le/codeready-builder/os',
'content/dist/rhel9/9/ppc64le/codeready-builder/source/SRPMS',
'content/dist/rhel9/9/s390x/appstream/debug',
'content/dist/rhel9/9/s390x/appstream/os',
'content/dist/rhel9/9/s390x/appstream/source/SRPMS',
'content/dist/rhel9/9/s390x/baseos/debug',
'content/dist/rhel9/9/s390x/baseos/os',
'content/dist/rhel9/9/s390x/baseos/source/SRPMS',
'content/dist/rhel9/9/s390x/codeready-builder/debug',
'content/dist/rhel9/9/s390x/codeready-builder/os',
'content/dist/rhel9/9/s390x/codeready-builder/source/SRPMS',
'content/dist/rhel9/9/x86_64/appstream/debug',
'content/dist/rhel9/9/x86_64/appstream/os',
'content/dist/rhel9/9/x86_64/appstream/source/SRPMS',
'content/dist/rhel9/9/x86_64/baseos/debug',
'content/dist/rhel9/9/x86_64/baseos/os',
'content/dist/rhel9/9/x86_64/baseos/source/SRPMS',
'content/dist/rhel9/9/x86_64/codeready-builder/debug',
'content/dist/rhel9/9/x86_64/codeready-builder/os',
'content/dist/rhel9/9/x86_64/codeready-builder/source/SRPMS',
'content/dist/rhel9/9/x86_64/nfv/debug',
'content/dist/rhel9/9/x86_64/nfv/os',
'content/dist/rhel9/9/x86_64/nfv/source/SRPMS',
'content/dist/rhel9/9/x86_64/rt/debug',
'content/dist/rhel9/9/x86_64/rt/os',
'content/dist/rhel9/9/x86_64/rt/source/SRPMS'
],
'pkgs': [
{'reference':'bpftool-7.3.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-core-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-debug-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-debug-core-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-debug-devel-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-debug-devel-matched-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-debug-modules-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-debug-modules-core-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-debug-modules-extra-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-devel-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-devel-matched-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-modules-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-modules-core-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-64k-modules-extra-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-core-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-cross-headers-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-debug-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-debug-core-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-debug-devel-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-debug-devel-matched-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-debug-modules-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-debug-modules-core-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-debug-modules-extra-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-debug-uki-virt-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-devel-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-devel-matched-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-modules-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-modules-core-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-modules-extra-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-core-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-debug-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-debug-core-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-debug-devel-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-debug-kvm-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-debug-modules-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-debug-modules-core-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-debug-modules-extra-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-devel-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-kvm-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-modules-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-modules-core-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-rt-modules-extra-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-tools-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-tools-libs-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-tools-libs-5.14.0-427.35.1.el9_4', 'cpu':'ppc64le', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-tools-libs-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-tools-libs-devel-5.14.0-427.35.1.el9_4', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-tools-libs-devel-5.14.0-427.35.1.el9_4', 'cpu':'ppc64le', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-tools-libs-devel-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-uki-virt-5.14.0-427.35.1.el9_4', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-zfcpdump-5.14.0-427.35.1.el9_4', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-zfcpdump-core-5.14.0-427.35.1.el9_4', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-zfcpdump-devel-5.14.0-427.35.1.el9_4', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-zfcpdump-devel-matched-5.14.0-427.35.1.el9_4', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-zfcpdump-modules-5.14.0-427.35.1.el9_4', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-zfcpdump-modules-core-5.14.0-427.35.1.el9_4', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-zfcpdump-modules-extra-5.14.0-427.35.1.el9_4', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libperf-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'perf-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python3-perf-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rtla-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rv-5.14.0-427.35.1.el9_4', 'release':'9', 'rpm_spec_vers_cmp':TRUE}
]
}
];
var applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);
if(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);
var flag = 0;
foreach var constraint_array ( constraints ) {
var repo_relative_urls = NULL;
if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];
foreach var pkg ( constraint_array['pkgs'] ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
var exists_check = NULL;
var cves = NULL;
if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];
if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
if (reference &&
_release &&
rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&
(applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&
rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
}
}
if (flag)
{
var extra = NULL;
if (isnull(applicable_repo_urls) || !applicable_repo_urls) extra = rpm_report_get() + redhat_report_repo_caveat();
else extra = rpm_report_get();
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : extra
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'bpftool / kernel / kernel-64k / kernel-64k-core / kernel-64k-debug / etc');
}
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52463
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52801
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26629
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26630
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26720
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26886
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26946
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35791
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35797
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35875
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36000
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36019
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36883
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36979
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38559
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38619
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40927
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40936
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41040
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41044
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41055
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41073
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41096
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42082
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42096
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42102
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42131
www.nessus.org/u?a2f70819
access.redhat.com/errata/RHSA-2024:6567
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=2265797
bugzilla.redhat.com/show_bug.cgi?id=2269434
bugzilla.redhat.com/show_bug.cgi?id=2269436
bugzilla.redhat.com/show_bug.cgi?id=2273141
bugzilla.redhat.com/show_bug.cgi?id=2275678
bugzilla.redhat.com/show_bug.cgi?id=2278206
bugzilla.redhat.com/show_bug.cgi?id=2281052
bugzilla.redhat.com/show_bug.cgi?id=2281151
bugzilla.redhat.com/show_bug.cgi?id=2281727
bugzilla.redhat.com/show_bug.cgi?id=2281968
bugzilla.redhat.com/show_bug.cgi?id=2282709
bugzilla.redhat.com/show_bug.cgi?id=2284271
bugzilla.redhat.com/show_bug.cgi?id=2284402
bugzilla.redhat.com/show_bug.cgi?id=2293273
bugzilla.redhat.com/show_bug.cgi?id=2293276
bugzilla.redhat.com/show_bug.cgi?id=2293440
bugzilla.redhat.com/show_bug.cgi?id=2297511
bugzilla.redhat.com/show_bug.cgi?id=2297520
bugzilla.redhat.com/show_bug.cgi?id=2300409
bugzilla.redhat.com/show_bug.cgi?id=2300414
bugzilla.redhat.com/show_bug.cgi?id=2300429
bugzilla.redhat.com/show_bug.cgi?id=2300491
bugzilla.redhat.com/show_bug.cgi?id=2300520
bugzilla.redhat.com/show_bug.cgi?id=2300713
bugzilla.redhat.com/show_bug.cgi?id=2301465
bugzilla.redhat.com/show_bug.cgi?id=2301496
bugzilla.redhat.com/show_bug.cgi?id=2301637
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
17.8%