(RHSA-2022:5220) Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

• kernel: Small table perturb size in the TCP source port generation algorithm can lead to information leak (CVE-2022-1012)

• kernel: race condition in perf_event_open leads to privilege escalation (CVE-2022-1729)

• kernel: a use-after-free write in the netfilter subsystem can lead to privilege escalation to root (CVE-2022-1966)

• kernel: buffer overflow in IPsec ESP transformation code (CVE-2022-27666)

• kernel: the copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check (CVE-2020-29368)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

• slub corruption during LPM of hnv interface (BZ#2081252)

• sleeping function called from invalid context at kernel/locking/spinlock_rt.c:35 (BZ#2082090)

• Backport request of “genirq: use rcu in kstat_irqs_usr()” (BZ#2083310)

• kernel memory leak while freeing nested actions (BZ#2086604)

• dm: sync rhel-8.6 with upstream 5.13 through 5.16 fixes and improvements (BZ#2088036)

• NFS processing deadlock in low memory condition (BZ#2094459)