(RHSA-2022:1198) Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

• kernel: use-after-free in RDMA listen() (CVE-2021-4028)

• kernel: fget: check that the fd still exists after getting a ref to it (CVE-2021-4083)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

• Adding new kernel entry in grub configuration file only after generation of new initramfs (BZ#1893756)

• Cannot mount DFS shares on RHEL7 (BZ#1937304)

• RHEL7.9 - zcrypt DD: Toleration for new IBM Z Crypto Hardware (BZ#1997156)

• kernel panic at skb_free_datagram_locked on 3.10.0-1160.45.1.el7 (BZ#2028740)

• Lots of tasks are getting stuck in I/O wait waiting on the buffer_head locked by the task that is busy shrinking slab for freeing pages - 3 patches to fs/buffer.c (BZ#2030609)

• [RHEL 7.9 Bug] x86/platform/uv: Add more to secondary CPU kdump info (BZ#2042462)

• REGRESSION System panicking in __kmalloc+0x94 from a freelist issue introduced by a block patch. (BZ#2054743)

Enhancement(s):

• RHEL7.9 - kernel: Add support for CPU-MF counter second version 7 (BZ#2048920)