(RHSA-2023:0856) Important: kernel security update

2023-02-2109:57:02

access.redhat.com

kernel

security update

memory corruption

use-after-free

stack overflow

cve-2022-2964

cve-2022-3564

cve-2022-4378

references

unix

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

17.9%

JSON

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: memory corruption in AX88179_178A based USB ethernet device. (CVE-2022-2964)
kernel: use-after-free caused by l2cap_reassemble_sdu() in net/bluetooth/l2cap_core.c (CVE-2022-3564)
kernel: stack overflow in do_proc_dointvec and proc_skip_spaces (CVE-2022-4378)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8ppc64lekernel-debug< 4.18.0-147.80.1.el8_1kernel-debug-4.18.0-147.80.1.el8_1.ppc64le.rpm
RedHat8x86_64kernel-tools-libs< 4.18.0-147.80.1.el8_1kernel-tools-libs-4.18.0-147.80.1.el8_1.x86_64.rpm
RedHat8ppc64lekernel-debug-core< 4.18.0-147.80.1.el8_1kernel-debug-core-4.18.0-147.80.1.el8_1.ppc64le.rpm
RedHat8x86_64kernel-headers< 4.18.0-147.80.1.el8_1kernel-headers-4.18.0-147.80.1.el8_1.x86_64.rpm
RedHat8ppc64lekernel-tools< 4.18.0-147.80.1.el8_1kernel-tools-4.18.0-147.80.1.el8_1.ppc64le.rpm
RedHat8noarchkernel-abi-whitelists< 4.18.0-147.80.1.el8_1kernel-abi-whitelists-4.18.0-147.80.1.el8_1.noarch.rpm
RedHat8x86_64kernel-debug-modules-extra< 4.18.0-147.80.1.el8_1kernel-debug-modules-extra-4.18.0-147.80.1.el8_1.x86_64.rpm
RedHat8x86_64bpftool< 4.18.0-147.80.1.el8_1bpftool-4.18.0-147.80.1.el8_1.x86_64.rpm
RedHat8x86_64kernel-debuginfo< 4.18.0-147.80.1.el8_1kernel-debuginfo-4.18.0-147.80.1.el8_1.x86_64.rpm
RedHat8x86_64python3-perf-debuginfo< 4.18.0-147.80.1.el8_1python3-perf-debuginfo-4.18.0-147.80.1.el8_1.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	ppc64le	kernel-debug	< 4.18.0-147.80.1.el8_1	kernel-debug-4.18.0-147.80.1.el8_1.ppc64le.rpm
RedHat	8	x86_64	kernel-tools-libs	< 4.18.0-147.80.1.el8_1	kernel-tools-libs-4.18.0-147.80.1.el8_1.x86_64.rpm
RedHat	8	ppc64le	kernel-debug-core	< 4.18.0-147.80.1.el8_1	kernel-debug-core-4.18.0-147.80.1.el8_1.ppc64le.rpm
RedHat	8	x86_64	kernel-headers	< 4.18.0-147.80.1.el8_1	kernel-headers-4.18.0-147.80.1.el8_1.x86_64.rpm
RedHat	8	ppc64le	kernel-tools	< 4.18.0-147.80.1.el8_1	kernel-tools-4.18.0-147.80.1.el8_1.ppc64le.rpm
RedHat	8	noarch	kernel-abi-whitelists	< 4.18.0-147.80.1.el8_1	kernel-abi-whitelists-4.18.0-147.80.1.el8_1.noarch.rpm
RedHat	8	x86_64	kernel-debug-modules-extra	< 4.18.0-147.80.1.el8_1	kernel-debug-modules-extra-4.18.0-147.80.1.el8_1.x86_64.rpm
RedHat	8	x86_64	bpftool	< 4.18.0-147.80.1.el8_1	bpftool-4.18.0-147.80.1.el8_1.x86_64.rpm
RedHat	8	x86_64	kernel-debuginfo	< 4.18.0-147.80.1.el8_1	kernel-debuginfo-4.18.0-147.80.1.el8_1.x86_64.rpm
RedHat	8	x86_64	python3-perf-debuginfo	< 4.18.0-147.80.1.el8_1	python3-perf-debuginfo-4.18.0-147.80.1.el8_1.x86_64.rpm