ALSA-2022:5267

[ALSA-2022:5267] Important: kernel-rt security and bug fix update

Type:

security

Severity:

important

Release date:

2022-06-30

Description:

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
* kernel: Small table perturb size in the TCP source port generation algorithm can lead to information leak (CVE-2022-1012)
* kernel: race condition in perf_event_open leads to privilege escalation (CVE-2022-1729)
* kernel: a use-after-free write in the netfilter subsystem can lead to privilege escalation to root (CVE-2022-1966)
* kernel: buffer overflow in IPsec ESP transformation code (CVE-2022-27666)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* kernel-rt: update RT source tree to the latest AlmaLinux-9.0.z1 Batch (BZ#2089492)

References:

Updated packages listed below:

Architecture	Package	Checksum
x86_64	kernel-rt-debug-modules-extra-5.14.0-70.17.1.rt21.89.el9_0.x86_64.rpm	02fc0158918e30273b82afc53fac22e69dd28ba3050e46d2b28e56cf70056d8d
x86_64	kernel-rt-devel-5.14.0-70.17.1.rt21.89.el9_0.x86_64.rpm	5c3a42b7fabaaccb7b15fa5d43d982893613ac4fbea2c147a0263101b278a569
x86_64	kernel-rt-debug-core-5.14.0-70.17.1.rt21.89.el9_0.x86_64.rpm	6ec45928bbbfdad22d03a8957f13f63c351b2c48e4e8766745fae57a8c53db3a
x86_64	kernel-rt-modules-extra-5.14.0-70.17.1.rt21.89.el9_0.x86_64.rpm	7a0ccd9fe5c04bc2c591a17723dad834f29ca031c3ccfc9a9e42594b9444a5ef
x86_64	kernel-rt-core-5.14.0-70.17.1.rt21.89.el9_0.x86_64.rpm	8ed218996e2991b7dc6e4daa81d88c77178922dafc6f82d464060700073cc6ed
x86_64	kernel-rt-debug-5.14.0-70.17.1.rt21.89.el9_0.x86_64.rpm	a13b1749dcce5802bf77a55621c4109ce184e391e7a162fd18367a1f9c5108cf
x86_64	kernel-rt-debug-kvm-5.14.0-70.17.1.rt21.89.el9_0.x86_64.rpm	a9999f42cf0a40500ec4de44a1a996dae81d9aba5a8ba7d9d3adff532fb04f09
x86_64	kernel-rt-kvm-5.14.0-70.17.1.rt21.89.el9_0.x86_64.rpm	bb8a24390b05a735df0a1b6a207873c7bf2badacbe7b8e9fe072c869116606f0
x86_64	kernel-rt-debug-modules-5.14.0-70.17.1.rt21.89.el9_0.x86_64.rpm	be10c8e75bf9b67c081002fce5b7331b0d6bdd1a6e56ea412c44b4552a8ce9d7
x86_64	kernel-rt-modules-5.14.0-70.17.1.rt21.89.el9_0.x86_64.rpm	e1bd8711e63d6ca50f96aaf45d48bf7f9f11c9ccf685da983b6707c76533bcda
x86_64	kernel-rt-5.14.0-70.17.1.rt21.89.el9_0.x86_64.rpm	ea50dd085d2efd0278c94383f6b761ce10507f35231b1cdc7e204cb6828bd5e5
x86_64	kernel-rt-debug-devel-5.14.0-70.17.1.rt21.89.el9_0.x86_64.rpm	eba7e7ff0c517fc97dc42d0bf54680eb8df08099195cd45fa1c55741022c1190

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.