ALSA-2023:3723

See a problem?
Please try reporting it to the source first.
Source
https://errata.almalinux.org/9/ALSA-2023-3723.html
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3723.json
JSON Data
https://api.osv.dev/v1/vulns/ALSA-2023:3723
Related
Published
2023-06-21T00:00:00Z
Modified
2023-07-11T20:32:33Z
Summary
Important: kernel security and bug fix update
Details

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: use-after-free vulnerability in the perfgroupdetach function of the Linux Kernel Performance Events (CVE-2023-2235)
  • kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation (CVE-2023-32233)
  • Kernel: bluetooth: Unauthorized management command execution (CVE-2023-2002)
  • kernel: OOB access in the Linux kernel's XFS subsystem (CVE-2023-2124)
  • kernel: i2c: out-of-bounds write in xgeneslimproi2c_xfer() (CVE-2023-2194)
  • kernel: tls: race condition in dotlsgetsockopt may lead to use-after-free or NULL pointer dereference (CVE-2023-28466)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • Intel QAT Update - (kernel changes) (BZ#2176846)
  • RPL-P IOTG/RPL-S IOTG: cpu frequency issues (BZ#2178857)
  • In FIPS mode, kernel does not transition into error state when RCT or APT health tests fail (BZ#2181727)
  • Kernel BUG in iwlmvm wifi driver when used Mesh systems (BZ#2186723)
  • Azure AlmaLinux 9 Backport upstream commit 93827a0a36396f2fd6368a54a020f420c8916e9b [KVM: VMX: Fix crash due to uninitialized current_vmcs] (BZ#2186822)
  • AlmaLinux 9 blktests nvme/047 lead kernel NULL pointer (BZ#2187536)
  • Single Node Openshift cluster becomes unreachable after running less than 2 hours (BZ#2187709)
  • kernel[-rt]: task deadline_test:1778 blocked for more than 622 seconds (BZ#2188655)
  • fix page end in filemapgetread_batch (BZ#2189349)
  • AlmaLinux 9.2 hwpoison: data loss when memory error occurs on hugetlb pagecache (BZ#2192348)
  • wdat_wdt watchdog timeout triggered unexpectedly (BZ#2192585)
  • ice: high CPU usage with GNSS or ptp4l (BZ#2203154)
  • AlmaLinux 9 "smpboot: Scheduler frequency invariance went wobbly, disabling!" on nohz_full CPUs after long run (BZ#2203178)
  • Dying percpu kworkers cause issues on isolated CPUs [almalinux-9] (BZ#2203229)
  • FJ9.2 Bug: [REG] NFS infinite loop of COMMIT call and NFS4ERR_DELAY reply. (BZ#2203335)
  • perf errors - "event syntax error: 'uncpdelayedcstateabortcore5'" b'_ value too big for format, maximum is 255' (BZ#2207471)
  • AlmaLinux 9: Invalid character detected by rpminspect in Documentation/translations/zh_CN/process/magic-number.rst (BZ#2208242)
  • cifs: backport small patches to bring us close to 9.1 - backport commit aea02fc40a7f cifs: fix wrong unlock before return from cifstreeconnect (BZ#2209045)
  • AlmaLinux 9 x86_64, kdump 2nd kernel will randomly panic on "kvm-08-guest25.hv2" (BZ#2210614)
References

Affected packages

AlmaLinux:9 / bpftool

Package

Name
bpftool

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.0-284.18.1.el9_2

AlmaLinux:9 / kernel

Package

Name
kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k

Package

Name
kernel-64k

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-core

Package

Name
kernel-64k-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-debug

Package

Name
kernel-64k-debug

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-debug-core

Package

Name
kernel-64k-debug-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-debug-devel

Package

Name
kernel-64k-debug-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-debug-devel-matched

Package

Name
kernel-64k-debug-devel-matched

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-debug-modules

Package

Name
kernel-64k-debug-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-debug-modules-core

Package

Name
kernel-64k-debug-modules-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-debug-modules-extra

Package

Name
kernel-64k-debug-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-devel

Package

Name
kernel-64k-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-devel-matched

Package

Name
kernel-64k-devel-matched

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-modules

Package

Name
kernel-64k-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-modules-core

Package

Name
kernel-64k-modules-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-64k-modules-extra

Package

Name
kernel-64k-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-abi-stablelists

Package

Name
kernel-abi-stablelists

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-core

Package

Name
kernel-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-debug

Package

Name
kernel-debug

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-debug-core

Package

Name
kernel-debug-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-debug-devel

Package

Name
kernel-debug-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-debug-devel-matched

Package

Name
kernel-debug-devel-matched

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-debug-modules

Package

Name
kernel-debug-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-debug-modules-core

Package

Name
kernel-debug-modules-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-debug-modules-extra

Package

Name
kernel-debug-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-debug-uki-virt

Package

Name
kernel-debug-uki-virt

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-devel

Package

Name
kernel-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-devel-matched

Package

Name
kernel-devel-matched

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-modules

Package

Name
kernel-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-modules-core

Package

Name
kernel-modules-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-modules-extra

Package

Name
kernel-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-tools

Package

Name
kernel-tools

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-tools-libs

Package

Name
kernel-tools-libs

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-tools-libs-devel

Package

Name
kernel-tools-libs-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-uki-virt

Package

Name
kernel-uki-virt

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-zfcpdump

Package

Name
kernel-zfcpdump

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-zfcpdump-core

Package

Name
kernel-zfcpdump-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-zfcpdump-devel

Package

Name
kernel-zfcpdump-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-zfcpdump-devel-matched

Package

Name
kernel-zfcpdump-devel-matched

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-zfcpdump-modules

Package

Name
kernel-zfcpdump-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-zfcpdump-modules-core

Package

Name
kernel-zfcpdump-modules-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / kernel-zfcpdump-modules-extra

Package

Name
kernel-zfcpdump-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / perf

Package

Name
perf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / python3-perf

Package

Name
python3-perf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2

AlmaLinux:9 / rtla

Package

Name
rtla

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.0-284.18.1.el9_2