ALSA-2023:1470
- Source
- https://errata.almalinux.org/9/ALSA-2023-1470.html
- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:1470.json
- JSON Data
- https://api.osv.dev/v1/vulns/ALSA-2023:1470
- Related
- Published
- 2023-03-27T00:00:00Z
- Modified
- 2023-03-27T21:59:31Z
- Summary
- Important: kernel security, bug fix, and enhancement update
- Details
-
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
- kernel: tun: avoid double free in tunfreenetdev (CVE-2022-4744)
- ALSA: pcm: Move rwsem lock inside sndctlelem_read to prevent UAF (CVE-2023-0266)
- kernel: net: CPU soft lockup in TC mirred egress-to-ingress action (CVE-2022-4269)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
- AlmaLinux9.0 - zfcp: fix missing auto port scan and thus missing target ports (BZ#2127880)
- Cgroups_v2, when creating new cgroup/container, resets the cpu affinity masks for all usr processes on the system. (BZ#2143766)
- AlmaLinux9.0 - boot: Add secure boot trailer (BZ#2151528)
- kernel-rt-debug: WARNING: possible circular locking dependency detected (&n->listlock->&p->pilock->&lock->wait_lock) (BZ#2160614)
- Support cpuset.schedloadbalance by changing default CPUset directory structure (BZ#2161105)
- AlmaLinux9.0 - s390/kexec: fix ipl report address for kdump (BZ#2166903)
- libgpiod doesn't seem to work with Interphase gpiochip (BZ#2166956)
- Azure AlmaLinux9 scsi: storvsc: Fix swiotlb bounce buffer leak in confidential VM (BZ#2170227)
Enhancement(s):
- IBM 9.2 FEAT: Upgrade the QETH driver to latest from upstream, e.g. kernel 6.0 (BZ#2166304)
- Intel 9.2 FEAT SPR CPU: AMX: Improve the init_fpstate setup code (BZ#2168382)
- References
-
- https://access.redhat.com/errata/RHSA-2023:1470
- https://access.redhat.com/security/cve/CVE-2022-4269
- https://access.redhat.com/security/cve/CVE-2022-4744
- https://access.redhat.com/security/cve/CVE-2023-0266
- https://bugzilla.redhat.com/2150272
- https://bugzilla.redhat.com/2156322
- https://bugzilla.redhat.com/2163379
- https://errata.almalinux.org/9/ALSA-2023-1470.html
Affected packages
AlmaLinux:9 / bpftool
Package
- Name
- bpftool
AlmaLinux:9 / kernel
Package
- Name
- kernel
AlmaLinux:9 / kernel-abi-stablelists
Package
- Name
- kernel-abi-stablelists
AlmaLinux:9 / kernel-core
Package
- Name
- kernel-core
AlmaLinux:9 / kernel-cross-headers
Package
- Name
- kernel-cross-headers
AlmaLinux:9 / kernel-debug
Package
- Name
- kernel-debug
AlmaLinux:9 / kernel-debug-core
Package
- Name
- kernel-debug-core
AlmaLinux:9 / kernel-debug-devel
Package
- Name
- kernel-debug-devel
AlmaLinux:9 / kernel-debug-devel-matched
Package
- Name
- kernel-debug-devel-matched
AlmaLinux:9 / kernel-debug-modules
Package
- Name
- kernel-debug-modules
AlmaLinux:9 / kernel-debug-modules-extra
Package
- Name
- kernel-debug-modules-extra
AlmaLinux:9 / kernel-devel
Package
- Name
- kernel-devel
AlmaLinux:9 / kernel-devel-matched
Package
- Name
- kernel-devel-matched
AlmaLinux:9 / kernel-doc
Package
- Name
- kernel-doc
AlmaLinux:9 / kernel-modules
Package
- Name
- kernel-modules
AlmaLinux:9 / kernel-modules-extra
Package
- Name
- kernel-modules-extra
AlmaLinux:9 / kernel-tools
Package
- Name
- kernel-tools
AlmaLinux:9 / kernel-tools-libs
Package
- Name
- kernel-tools-libs
AlmaLinux:9 / kernel-tools-libs-devel
Package
- Name
- kernel-tools-libs-devel
AlmaLinux:9 / kernel-zfcpdump
Package
- Name
- kernel-zfcpdump
AlmaLinux:9 / kernel-zfcpdump-core
Package
- Name
- kernel-zfcpdump-core
AlmaLinux:9 / kernel-zfcpdump-devel
Package
- Name
- kernel-zfcpdump-devel
AlmaLinux:9 / kernel-zfcpdump-devel-matched
Package
- Name
- kernel-zfcpdump-devel-matched
AlmaLinux:9 / kernel-zfcpdump-modules
Package
- Name
- kernel-zfcpdump-modules
AlmaLinux:9 / kernel-zfcpdump-modules-extra
Package
- Name
- kernel-zfcpdump-modules-extra
AlmaLinux:9 / perf
Package
- Name
- perf