ALSA-2023:1469

[ALSA-2023:1469] Important: kernel-rt security and bug fix update

Type:

security

Severity:

important

Release date:

2023-03-27

Description:

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

* kernel: tun: avoid double free in tun_free_netdev (CVE-2022-4744)
* ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF (CVE-2023-0266)
* kernel: net: CPU soft lockup in TC mirred egress-to-ingress action (CVE-2022-4269)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

* kernel-rt: update RT source tree to the latest AlmaLinux-9.1.z3 Batch (BZ#2170460)

References:

Updated packages listed below:

Architecture	Package	Checksum
x86_64	kernel-rt-kvm-5.14.0-162.22.2.rt21.186.el9_1.x86_64.rpm	0b0ff07458a86e73a1bed6d6e04f891c0aa48466fd8bf594ea53458564d16548
x86_64	kernel-rt-devel-5.14.0-162.22.2.rt21.186.el9_1.x86_64.rpm	24429bbdfbb7d6c11f96f4e8a1c79c629c6b8167435fc0178a900f3f61ea1727
x86_64	kernel-rt-debug-devel-5.14.0-162.22.2.rt21.186.el9_1.x86_64.rpm	2a78129508af1271e0b475659eaa7c1a812ea3c25157702266ae96c5fe235a7d
x86_64	kernel-rt-debug-modules-extra-5.14.0-162.22.2.rt21.186.el9_1.x86_64.rpm	2b4087ebc0e4ce975c51e978ae03ed27d81ca77a4c4e3a9b4936e45185950daf
x86_64	kernel-rt-modules-5.14.0-162.22.2.rt21.186.el9_1.x86_64.rpm	3922bb002b6e10ed63ca8268c037e1e553db276910533d4929e4efd7719eef13
x86_64	kernel-rt-5.14.0-162.22.2.rt21.186.el9_1.x86_64.rpm	6c12b388834ce27975072118d26735f281e758d6f86633eec4040488c10fe8fd
x86_64	kernel-rt-core-5.14.0-162.22.2.rt21.186.el9_1.x86_64.rpm	c25b049bbbb455c8cfae802648c796aec8f4ba0467893d07c8c7e24d940b9371
x86_64	kernel-rt-debug-modules-5.14.0-162.22.2.rt21.186.el9_1.x86_64.rpm	d023f203898cc557ccf224f4f8ed1a3fc35158abb39b1160665663df25d01570
x86_64	kernel-rt-modules-extra-5.14.0-162.22.2.rt21.186.el9_1.x86_64.rpm	dce6da9e3425eab693e56a8cb83fffc445f843353b2229e1f4f381e8a52b1701
x86_64	kernel-rt-debug-core-5.14.0-162.22.2.rt21.186.el9_1.x86_64.rpm	dcf85d6aa86c566ba56555695fe6b790bf15a6d5cb87d82687e3cd492455d663
x86_64	kernel-rt-debug-5.14.0-162.22.2.rt21.186.el9_1.x86_64.rpm	ee09ad9594ac8facdecd01ca1b7fb882bc9f1b11906937aad0d1a363f3bd7195
x86_64	kernel-rt-debug-kvm-5.14.0-162.22.2.rt21.186.el9_1.x86_64.rpm	ee826cf04d8edd106a2e25245f0de31194139b3398bcb21f81a09b94b0ca8e5e

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.