Lucene search

K
centosCentOS ProjectCESA-2023:0399
HistoryJan 30, 2023 - 4:50 p.m.

bpftool, kernel, perf, python security update

2023-01-3016:50:20
CentOS Project
lists.centos.org
257

0.975 High

EPSS

Percentile

100.0%

CentOS Errata and Security Advisory CESA-2023:0399

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: memory corruption in AX88179_178A based USB ethernet device. (CVE-2022-2964)

  • hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715 (CVE-2021-26401)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • Prevent unnecessary resets - Avoid leaving shost->last_reset with stale value if EH does not run (BZ#2128337)

  • i40e: Request to backport upstream commit 2e5a20573a92 (BZ#2129248)

  • disable VMA-based swap-in readahead on PowerPC (BZ#2142455)

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2023-January/086370.html

Affected packages:
bpftool
kernel
kernel-abi-whitelists
kernel-debug
kernel-debug-devel
kernel-devel
kernel-doc
kernel-headers
kernel-tools
kernel-tools-libs
kernel-tools-libs-devel
perf
python-perf

Upstream details at:
https://access.redhat.com/errata/RHSA-2023:0399