Vulnerability Database
Blog
FAQ
Docs
RHSA-2023:6595
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2023:6595
Import Source
https://security.access.redhat.com/data/osv/RHSA-2023:6595.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2023:6595
Related
CVE-2022-27635
CVE-2022-36351
CVE-2022-38076
CVE-2022-40964
CVE-2022-46329
CVE-2023-20569
Published
2024-09-16T11:18:09Z
Modified
2024-10-30T18:00:21Z
Severity
8.2 (High)
CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: linux-firmware security, bug fix, and enhancement update
Details
References
https://access.redhat.com/errata/RHSA-2023:6595
https://access.redhat.com/security/updates/classification/#important
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.3_release_notes/index
https://bugzilla.redhat.com/show_bug.cgi?id=2178579
https://bugzilla.redhat.com/show_bug.cgi?id=2207625
https://bugzilla.redhat.com/show_bug.cgi?id=2214391
https://bugzilla.redhat.com/show_bug.cgi?id=2235321
https://bugzilla.redhat.com/show_bug.cgi?id=2238960
https://bugzilla.redhat.com/show_bug.cgi?id=2238961
https://bugzilla.redhat.com/show_bug.cgi?id=2238962
https://bugzilla.redhat.com/show_bug.cgi?id=2238963
https://bugzilla.redhat.com/show_bug.cgi?id=2238964
https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6595.json
https://access.redhat.com/security/cve/CVE-2022-27635
https://www.cve.org/CVERecord?id=CVE-2022-27635
https://nvd.nist.gov/vuln/detail/CVE-2022-27635
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00766.html
https://access.redhat.com/security/cve/CVE-2022-36351
https://www.cve.org/CVERecord?id=CVE-2022-36351
https://nvd.nist.gov/vuln/detail/CVE-2022-36351
https://access.redhat.com/security/cve/CVE-2022-38076
https://www.cve.org/CVERecord?id=CVE-2022-38076
https://nvd.nist.gov/vuln/detail/CVE-2022-38076
https://access.redhat.com/security/cve/CVE-2022-40964
https://www.cve.org/CVERecord?id=CVE-2022-40964
https://nvd.nist.gov/vuln/detail/CVE-2022-40964
https://access.redhat.com/security/cve/CVE-2022-46329
https://www.cve.org/CVERecord?id=CVE-2022-46329
https://nvd.nist.gov/vuln/detail/CVE-2022-46329
https://access.redhat.com/security/cve/CVE-2023-20569
https://www.cve.org/CVERecord?id=CVE-2023-20569
https://nvd.nist.gov/vuln/detail/CVE-2023-20569
https://access.redhat.com/solutions/7049120
https://www.amd.com/content/dam/amd/en/documents/corporate/cr/speculative-return-stack-overflow-whitepaper.pdf
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7005.html
Affected packages
Red Hat:enterprise_linux:9::baseos
/
iwl100-firmware
Package
Name
iwl100-firmware
Purl
pkg:rpm/redhat/iwl100-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:39.31.5.1-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
iwl1000-firmware
Package
Name
iwl1000-firmware
Purl
pkg:rpm/redhat/iwl1000-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:39.31.5.1-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
iwl105-firmware
Package
Name
iwl105-firmware
Purl
pkg:rpm/redhat/iwl105-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:18.168.6.1-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
iwl135-firmware
Package
Name
iwl135-firmware
Purl
pkg:rpm/redhat/iwl135-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:18.168.6.1-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
iwl2000-firmware
Package
Name
iwl2000-firmware
Purl
pkg:rpm/redhat/iwl2000-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:18.168.6.1-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
iwl2030-firmware
Package
Name
iwl2030-firmware
Purl
pkg:rpm/redhat/iwl2030-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:18.168.6.1-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
iwl3160-firmware
Package
Name
iwl3160-firmware
Purl
pkg:rpm/redhat/iwl3160-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:25.30.13.0-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
iwl5000-firmware
Package
Name
iwl5000-firmware
Purl
pkg:rpm/redhat/iwl5000-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:8.83.5.1_1-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
iwl5150-firmware
Package
Name
iwl5150-firmware
Purl
pkg:rpm/redhat/iwl5150-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:8.24.2.2-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
iwl6000g2a-firmware
Package
Name
iwl6000g2a-firmware
Purl
pkg:rpm/redhat/iwl6000g2a-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:18.168.6.1-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
iwl6000g2b-firmware
Package
Name
iwl6000g2b-firmware
Purl
pkg:rpm/redhat/iwl6000g2b-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:18.168.6.1-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
iwl6050-firmware
Package
Name
iwl6050-firmware
Purl
pkg:rpm/redhat/iwl6050-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:41.28.5.1-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
iwl7260-firmware
Package
Name
iwl7260-firmware
Purl
pkg:rpm/redhat/iwl7260-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:25.30.13.0-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
libertas-sd8787-firmware
Package
Name
libertas-sd8787-firmware
Purl
pkg:rpm/redhat/libertas-sd8787-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:20230814-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
linux-firmware
Package
Name
linux-firmware
Purl
pkg:rpm/redhat/linux-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:20230814-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
linux-firmware-whence
Package
Name
linux-firmware-whence
Purl
pkg:rpm/redhat/linux-firmware-whence
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:20230814-140.el9_3
Red Hat:enterprise_linux:9::baseos
/
netronome-firmware
Package
Name
netronome-firmware
Purl
pkg:rpm/redhat/netronome-firmware
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:20230814-140.el9_3
RHSA-2023:6595 - OSV