QID 240527
Date Published: 2022-07-04
QID 240527: Red Hat Update for kernel-rt (RHSA-2022:5267)
the kernel-rt packages provide the real time linux kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):- kernel: small table perturb size in the tcp source port generation algorithm can lead to information leak (cve-2022-1012)
- kernel: race condition in perf_event_open leads to privilege escalation (cve-2022-1729)
- kernel: a use-after-free write in the netfilter subsystem can lead to privilege escalation to root (cve-2022-1966)
- kernel: buffer overflow in ipsec esp transformation code (cve-2022-27666)
Affected Products:
- Red Hat enterprise linux for real time 9 x86_64
- Red Hat enterprise linux for real time for nfv 9 x86_64
- Red Hat enterprise linux for real time for x86_64 - 4 years of updates 9.0 x86_64
- Red Hat enterprise linux for real time for nfv for x86_64 - 4 years of updates 9.0 x86_64
Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.
Successful exploitation of this vulnerability could lead to a security breach or could affect integrity, availability, and confidentiality.
Solution
Refer to Red Hat security advisory RHSA-2022:5267 for updates and patch information.
Vendor References
- RHSA-2022:5267 -
access.redhat.com/errata/RHSA-2022:5267
CVEs related to QID 240527
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| RHSA-2022:5267 | Red Hat Enterprise Linux |
access.redhat.com/errata/RHSA-2022:5267 |