CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
CVSS4
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/SC:H/VI:H/SI:H/VA:L/SA:L
EPSS
Percentile
59.5%
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
kernel: race condition in net/can/bcm.c leads to local privilege escalation (CVE-2021-3609)
kernel: Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks (CVE-2021-22543)
kernel: out-of-bounds write in xt_compat_target_from_user() in net/netfilter/x_tables.c (CVE-2021-22555)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
Urgent: Missing dptf_power.ko module in RHEL8 (BZ#1968381)
[mlx5] kdump over NFS fails: mlx5 driver gives error “Stop room 95 is bigger than the SQ size 64” (BZ#1969909)
BUG: unable to handle kernel NULL pointer dereference at 0000000000000000 in bluetooth hci_error_reset on intel-tigerlake-h01 (BZ#1972564)
Update CIFS to kernel 5.10 (BZ#1973637)
Backport “tick/nohz: Conditionally restart tick on idle exit” to RHEL 8.5 (BZ#1978710)
Significant performance drop starting on kernel-4.18.0-277 visible on mmap benchmark (BZ#1980314)
Inaccessible NFS server overloads clients (native_queued_spin_lock_slowpath connotation?) (BZ#1980613)
[RHEL8.4 BUG],RialtoMLK, I915 graphic driver failed to boot with one new 120HZ panel (BZ#1981250)
act_ct: subject to DNAT tuple collision (BZ#1982494)
Enhancement(s):
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 8 | aarch64 | perf | < 4.18.0-305.12.1.el8_4 | perf-4.18.0-305.12.1.el8_4.aarch64.rpm |
RedHat | 8 | ppc64le | kernel-devel | < 4.18.0-305.12.1.el8_4 | kernel-devel-4.18.0-305.12.1.el8_4.ppc64le.rpm |
RedHat | 8 | aarch64 | kernel | < 4.18.0-305.12.1.el8_4 | kernel-4.18.0-305.12.1.el8_4.aarch64.rpm |
RedHat | 8 | noarch | kernel-abi-stablelists | < 4.18.0-305.12.1.el8_4 | kernel-abi-stablelists-4.18.0-305.12.1.el8_4.noarch.rpm |
RedHat | 8 | s390x | kernel-tools | < 4.18.0-305.12.1.el8_4 | kernel-tools-4.18.0-305.12.1.el8_4.s390x.rpm |
RedHat | 8 | ppc64le | kernel-modules | < 4.18.0-305.12.1.el8_4 | kernel-modules-4.18.0-305.12.1.el8_4.ppc64le.rpm |
RedHat | 8 | aarch64 | kernel-debug-core | < 4.18.0-305.12.1.el8_4 | kernel-debug-core-4.18.0-305.12.1.el8_4.aarch64.rpm |
RedHat | 8 | s390x | bpftool | < 4.18.0-305.12.1.el8_4 | bpftool-4.18.0-305.12.1.el8_4.s390x.rpm |
RedHat | 8 | x86_64 | bpftool-debuginfo | < 4.18.0-305.12.1.el8_4 | bpftool-debuginfo-4.18.0-305.12.1.el8_4.x86_64.rpm |
RedHat | 8 | x86_64 | kernel-debug | < 4.18.0-305.12.1.el8_4 | kernel-debug-4.18.0-305.12.1.el8_4.x86_64.rpm |
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
CVSS4
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/SC:H/VI:H/SI:H/VA:L/SA:L
EPSS
Percentile
59.5%