Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2024:1019
HistoryFeb 28, 2024 - 12:25 p.m.

(RHSA-2024:1019) Important: kernel-rt security update

2024-02-2812:25:09
access.redhat.com
23
kernel-rt
security update
privilege escalation
race condition
cve-2023-6546
cve-2023-6817
cve-2024-0193
cve-2022-38096
cve-2023-4244
cve-2023-6931
cve-2023-51042
cve-2023-51043
cve-2024-1085
cve-2024-1086

7.9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.3%

JSON

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

  • kernel: GSM multiplexing race condition leads to privilege escalation (CVE-2023-6546)

  • kernel: inactive elements in nft_pipapo_walk (CVE-2023-6817)

  • kernel: netfilter: use-after-free in nft_trans_gc_catchall_sync leads to privilege escalation (CVE-2024-0193)

  • kernel: vmwgfx: NULL pointer dereference in vmw_cmd_dx_define_query (CVE-2022-38096)

  • kernel: Use-after-free in nft_verdict_dump due to a race between set GC and transaction (CVE-2023-4244)

  • kernel: Out of boundary write in perf_read_group() as result of overflow a perf_event’s read_size (CVE-2023-6931)

  • kernel: use-after-free in amdgpu_cs_wait_all_fences in drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c (CVE-2023-51042)

  • kernel: use-after-free during a race condition between a nonblocking atomic commit and a driver unload in drivers/gpu/drm/drm_atomic.c (CVE-2023-51043)

  • kernel: nf_tables: use-after-free vulnerability in the nft_setelem_catchall_deactivate() function (CVE-2024-1085)

  • kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function (CVE-2024-1086)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat9x86_64kernel-rt-modules-extra< 5.14.0-284.55.1.rt14.340.el9_2kernel-rt-modules-extra-5.14.0-284.55.1.rt14.340.el9_2.x86_64.rpm
RedHat9x86_64kernel-rt-kvm< 5.14.0-284.55.1.rt14.340.el9_2kernel-rt-kvm-5.14.0-284.55.1.rt14.340.el9_2.x86_64.rpm
RedHat9x86_64kernel-rt-debug-modules< 5.14.0-284.55.1.rt14.340.el9_2kernel-rt-debug-modules-5.14.0-284.55.1.rt14.340.el9_2.x86_64.rpm
RedHat9x86_64kernel-rt-debug-devel< 5.14.0-284.55.1.rt14.340.el9_2kernel-rt-debug-devel-5.14.0-284.55.1.rt14.340.el9_2.x86_64.rpm
RedHat9x86_64kernel-rt-debuginfo< 5.14.0-284.55.1.rt14.340.el9_2kernel-rt-debuginfo-5.14.0-284.55.1.rt14.340.el9_2.x86_64.rpm
RedHat9x86_64kernel-rt-debug-debuginfo< 5.14.0-284.55.1.rt14.340.el9_2kernel-rt-debug-debuginfo-5.14.0-284.55.1.rt14.340.el9_2.x86_64.rpm
RedHat9x86_64kernel-rt< 5.14.0-284.55.1.rt14.340.el9_2kernel-rt-5.14.0-284.55.1.rt14.340.el9_2.x86_64.rpm
RedHat9x86_64kernel-rt-debug-modules-core< 5.14.0-284.55.1.rt14.340.el9_2kernel-rt-debug-modules-core-5.14.0-284.55.1.rt14.340.el9_2.x86_64.rpm
RedHat9x86_64kernel-rt-debug< 5.14.0-284.55.1.rt14.340.el9_2kernel-rt-debug-5.14.0-284.55.1.rt14.340.el9_2.x86_64.rpm
RedHat9x86_64kernel-rt-modules< 5.14.0-284.55.1.rt14.340.el9_2kernel-rt-modules-5.14.0-284.55.1.rt14.340.el9_2.x86_64.rpm
Rows per page:
1-10 of 171

Related

redhat 16
nessus 46
almalinux 1
oraclelinux 5
osv 23
rocky 4
ubuntu 17
openvas 15
ibm 3
amazon 2
cve 8
redhatcve 6
ubuntucve 6
nvd 8
debiancve 7
cbl_mariner 8
prion 8
cnvd 2
cvelist 8
vulnrichment 1
githubexploit 2
zdi 1
cisa_kev 1
attackerkb 1
redhat
redhat
(RHSA-2024:1018) Important: kernel security update
2024-02-28 12:25:01
(RHSA-2024:1052) Critical: OpenShift Container Platform 4.12.51 bug fix and security update
2024-03-06 00:34:28
(RHSA-2024:1614) Important: kernel-rt security and bug fix update
2024-04-02 17:14:46
nessus
nessus
RHEL 9 : kernel-rt (RHSA-2024:1019)
2024-02-28 00:00:00
RHEL 9 : kernel (RHSA-2024:1018)
2024-02-28 00:00:00
RHEL 8 : kernel (RHSA-2024:1607)
2024-04-02 00:00:00
almalinux
almalinux
Important: kernel security, bug fix, and enhancement update
2024-04-02 00:00:00
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2024-04-10 00:00:00
kernel security update
2024-03-15 00:00:00
Unbreakable Enterprise kernel security update
2024-03-11 00:00:00
osv
osv
Important: kernel security, bug fix, and enhancement update
2024-04-05 14:55:53
Important: kernel security, bug fix, and enhancement update
2024-04-02 00:00:00
Important: kernel-rt security and bug fix update
2024-04-05 14:56:14
rocky
rocky
kernel-rt security and bug fix update
2024-04-05 14:56:14
kernel security, bug fix, and enhancement update
2024-05-06 13:07:04
kernel security, bug fix, and enhancement update
2024-04-05 14:55:53
ubuntu
ubuntu
Kernel Live Patch Security Notice
2024-04-30 00:00:00
Linux kernel (NVIDIA) vulnerabilities
2024-02-14 00:00:00
Linux kernel vulnerabilities
2024-01-25 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6608-2)
2024-02-15 00:00:00
Ubuntu: Security Advisory (USN-6608-1)
2024-01-26 00:00:00
Ubuntu: Security Advisory (USN-6606-1)
2024-01-26 00:00:00
ibm
ibm
Security Bulletin: Multiple Linux Kernel vulnerabilities affect IBM Storage Scale System.
2024-06-21 12:54:56
Security Bulletin: Vulnerabilities in libcurl, cURL and Linux Kernel might affect IBM Storage Copy Data Management
2024-06-14 16:27:36
Security Bulletin: IBM MQ Appliance is affected by multiple open source vulnerabilities.
2024-06-27 03:30:01
amazon
amazon
Important: kernel
2024-02-01 19:57:00
Important: kernel
2024-02-15 03:52:00
cve
cve
CVE-2023-51042
2024-01-23 11:15:08
CVE-2023-51043
2024-01-23 11:15:08
CVE-2022-38096
2022-09-09 15:15:14
redhatcve
redhatcve
CVE-2023-51042
2024-01-24 16:33:06
CVE-2023-51043
2024-01-25 18:10:50
CVE-2022-38096
2022-10-13 14:30:18
ubuntucve
ubuntucve
CVE-2023-51042
2024-01-23 00:00:00
CVE-2023-51043
2024-01-23 00:00:00
CVE-2022-38096
2022-09-09 00:00:00
nvd
nvd
CVE-2023-51043
2024-01-23 11:15:08
CVE-2023-51042
2024-01-23 11:15:08
CVE-2022-38096
2022-09-09 15:15:14
debiancve
debiancve
CVE-2023-51043
2024-01-23 11:15:08
CVE-2023-51042
2024-01-23 11:15:08
CVE-2022-38096
2022-09-09 15:15:14
cbl_mariner
cbl_mariner
CVE-2023-51042 affecting package kernel for versions less than 5.15.148.1-1
2024-02-25 03:00:06
CVE-2023-51043 affecting package kernel for versions less than 5.15.148.1-1
2024-02-25 03:00:06
CVE-2022-38096 affecting package kernel for versions less than 5.15.158.2-1
2024-06-12 22:23:00
prion
prion
Race condition
2024-01-23 11:15:00
Design/Logic Flaw
2024-01-23 11:15:00
Null pointer dereference
2022-09-09 15:15:00
cnvd
cnvd
Unspecified vulnerability in Linux kernel (CNVD-2024-06433)
2024-01-29 00:00:00
Unspecified vulnerability in Linux kernel (CNVD-2024-06432)
2024-01-29 00:00:00
cvelist
cvelist
CVE-2023-51043
2024-01-23 00:00:00
CVE-2023-51042
2024-01-23 00:00:00
CVE-2022-38096 There is a NULL pointer vulnerability in vmwgfx driver
2022-09-06 00:00:00
vulnrichment
vulnrichment
CVE-2022-38096 There is a NULL pointer vulnerability in vmwgfx driver
2022-09-06 00:00:00
githubexploit
githubexploit
Exploit for Use After Free in Linux Linux Kernel
2024-04-30 16:10:37
Exploit for Use After Free in Linux Linux Kernel
2024-06-03 22:04:03
zdi
zdi
Linux Kernel GSM Multiplexing Race Condition Local Privilege Escalation Vulnerability
2024-01-09 00:00:00
cisa_kev
cisa_kev
Linux Kernel Use-After-Free Vulnerability
2024-05-30 00:00:00
attackerkb
attackerkb
CVE-2024-1086
2024-01-31 00:00:00

7.9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.3%

JSON
Related for RHSA-2024:1019
redhat16nessus46almalinux1oraclelinux5osv23rocky4ubuntu17openvas15ibm3amazon2cve8redhatcve6ubuntucve6nvd8debiancve7cbl_mariner8prion8cnvd2cvelist8vulnrichment1githubexploit2zdi1cisa_kev1attackerkb1