RLSA-2023:3819

Source

https://storage.googleapis.com/resf-osv-data/RLSA-2023:3819.json

Published

2023-08-31T16:54:43.486628Z

Modified

2023-08-31T16:56:54.866897Z

Details

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

kernel: tls: race condition in dotlsgetsockopt may lead to use-after-free or NULL pointer dereference (CVE-2023-28466)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

kernel-rt: update RT source tree to the Rocky Linux-8.8.z1 source tree. (BZ#2210299)

References

https://errata.rockylinux.org/RLSA-2023:3819
https://bugzilla.redhat.com/show_bug.cgi?id=2179000

Affected packages

Rocky Linux:8 / kernel-rt

Source Details

Package Name: kernel-rt

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

0:4.18.0-477.15.1.rt7.278.el8_8