Lucene search

K
almalinuxAlmaLinuxALSA-2022:6003
HistoryAug 09, 2022 - 12:00 a.m.

Moderate: kernel security, bug fix, and enhancement update

2022-08-0900:00:00
errata.almalinux.org
15

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

0.0004 Low

EPSS

Percentile

5.3%

The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):

  • information leak in scsi_ioctl() (CVE-2022-0494)
  • use-after-free in tc_new_tfilter() in net/sched/cls_api.c (CVE-2022-1055)
    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
    Bug Fix(es):
  • Power9 - LPAR fails to boot in shared processing mode and call traces are seen [Hash] (BZ#2092248)
  • Hard lockups are observed while running stress-ng and LPAR hangs (BZ#2092253)
  • FIPS module identification via name and version (BZ#2093384)
  • gfs2: File corruption with large writes when memory is tight (BZ#2097306)
  • i/o on initiator stuck when network is disrupted (4.18.0-372.9.1.el8.x86_64) (BZ#2098251)
  • AlmaLinux 9.1 doesn’t support 3rd SATA (BZ#2099740)
  • Guest call trace when reboot after postcopy migration with high stress workload (BZ#2100903)
  • Oops or general protection fault with RIP decode_attr_security_label at decode_getfattr_attrs (BZ#2101854)
  • Oops as BUG: unable to handle page fault as free of uninitialized nfs4_label on nfs referral lookup (BZ#2101858)
  • lpar crash with Oops: Kernel access of bad area, sig: 11 [#1] when changing mtu of a bond interface (P10/ ibmvnic/ Haleakala) (BZ#2103085)
  • OS doesn’t boot when vmd and interrupt remapping are enabled (BZ#2109974)
    Enhancement(s):
  • iommu/vt-d: Make DMAR_UNITS_SUPPORTED a config setting (BZ#2105326)

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

0.0004 Low

EPSS

Percentile

5.3%