Lucene search

K
redhatRedHatRHSA-2024:1303
HistoryMar 13, 2024 - 12:05 a.m.

(RHSA-2024:1303) Moderate: kernel-rt security and bug fix update

2024-03-1300:05:55
access.redhat.com
11
kernel-rt
security
bug fix
real time linux kernel
determinism requirements
memcg
posix file locks
memory exhaustion
cve-2022-0480
jira:rhel-8998
jira:rhel-26863
update
rhel-9.2.z7 batch

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

7.3

Confidence

Low

EPSS

0

Percentile

14.2%

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

  • kernel: memcg does not limit the number of POSIX file locks allowing memory exhaustion (CVE-2022-0480)

Bug Fix(es):

  • kernel-rt: kernel: memcg does not limit the number of POSIX file locks allowing memory exhaustion (JIRA:RHEL-8998)

  • kernel-rt: update RT source tree to the latest RHEL-9.2.z7 Batch (JIRA:RHEL-26863)

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

7.3

Confidence

Low

EPSS

0

Percentile

14.2%