Lucene search

RedHatRHSA-2022:5636

HistoryJul 19, 2022 - 2:44 p.m.

(RHSA-2022:5636) Important: kernel security and bug fix update

2022-07-1914:44:22

access.redhat.com

kernel packages

linux operating system

information leak

privilege escalation

use-after-free write

netfilter subsystem

cve-2022-1012

cve-2022-1729

cve-2022-32250

backport request

genirq

bz#2083311

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

8.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

EPSS

0.001

Percentile

50.8%

JSON

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: Small table perturb size in the TCP source port generation algorithm can lead to information leak (CVE-2022-1012)
kernel: race condition in perf_event_open leads to privilege escalation (CVE-2022-1729)
kernel: a use-after-free write in the netfilter subsystem can lead to privilege escalation to root (CVE-2022-32250)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

Backport request of “genirq: use rcu in kstat_irqs_usr()” (BZ#2083311)

OSVersionArchitecturePackageVersionFilename
RedHat8x86_64python3-perf< 4.18.0-147.70.1.el8_1python3-perf-4.18.0-147.70.1.el8_1.x86_64.rpm
RedHat8x86_64kernel-debug< 4.18.0-147.70.1.el8_1kernel-debug-4.18.0-147.70.1.el8_1.x86_64.rpm
RedHat8ppc64lekernel-core< 4.18.0-147.70.1.el8_1kernel-core-4.18.0-147.70.1.el8_1.ppc64le.rpm
RedHat8x86_64kernel-devel< 4.18.0-147.70.1.el8_1kernel-devel-4.18.0-147.70.1.el8_1.x86_64.rpm
RedHat8ppc64lekernel-debuginfo-common-ppc64le< 4.18.0-147.70.1.el8_1kernel-debuginfo-common-ppc64le-4.18.0-147.70.1.el8_1.ppc64le.rpm
RedHat8x86_64bpftool-debuginfo< 4.18.0-147.70.1.el8_1bpftool-debuginfo-4.18.0-147.70.1.el8_1.x86_64.rpm
RedHat8ppc64lekernel-debug-devel< 4.18.0-147.70.1.el8_1kernel-debug-devel-4.18.0-147.70.1.el8_1.ppc64le.rpm
RedHat8ppc64lekernel-debug-debuginfo< 4.18.0-147.70.1.el8_1kernel-debug-debuginfo-4.18.0-147.70.1.el8_1.ppc64le.rpm
RedHat8ppc64lekernel-debuginfo< 4.18.0-147.70.1.el8_1kernel-debuginfo-4.18.0-147.70.1.el8_1.ppc64le.rpm
RedHat8x86_64kernel-debuginfo-common-x86_64< 4.18.0-147.70.1.el8_1kernel-debuginfo-common-x86_64-4.18.0-147.70.1.el8_1.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	x86_64	python3-perf	< 4.18.0-147.70.1.el8_1	python3-perf-4.18.0-147.70.1.el8_1.x86_64.rpm
RedHat	8	x86_64	kernel-debug	< 4.18.0-147.70.1.el8_1	kernel-debug-4.18.0-147.70.1.el8_1.x86_64.rpm
RedHat	8	ppc64le	kernel-core	< 4.18.0-147.70.1.el8_1	kernel-core-4.18.0-147.70.1.el8_1.ppc64le.rpm
RedHat	8	x86_64	kernel-devel	< 4.18.0-147.70.1.el8_1	kernel-devel-4.18.0-147.70.1.el8_1.x86_64.rpm
RedHat	8	ppc64le	kernel-debuginfo-common-ppc64le	< 4.18.0-147.70.1.el8_1	kernel-debuginfo-common-ppc64le-4.18.0-147.70.1.el8_1.ppc64le.rpm
RedHat	8	x86_64	bpftool-debuginfo	< 4.18.0-147.70.1.el8_1	bpftool-debuginfo-4.18.0-147.70.1.el8_1.x86_64.rpm
RedHat	8	ppc64le	kernel-debug-devel	< 4.18.0-147.70.1.el8_1	kernel-debug-devel-4.18.0-147.70.1.el8_1.ppc64le.rpm
RedHat	8	ppc64le	kernel-debug-debuginfo	< 4.18.0-147.70.1.el8_1	kernel-debug-debuginfo-4.18.0-147.70.1.el8_1.ppc64le.rpm
RedHat	8	ppc64le	kernel-debuginfo	< 4.18.0-147.70.1.el8_1	kernel-debuginfo-4.18.0-147.70.1.el8_1.ppc64le.rpm
RedHat	8	x86_64	kernel-debuginfo-common-x86_64	< 4.18.0-147.70.1.el8_1	kernel-debuginfo-common-x86_64-4.18.0-147.70.1.el8_1.x86_64.rpm