Lucene search

K
redhatRedHatRHSA-2024:1653
HistoryApr 03, 2024 - 12:12 a.m.

(RHSA-2024:1653) Moderate: kernel security and bug fix update

2024-04-0300:12:17
access.redhat.com
33
rhsa-2024-1653
moderate
kernel
security fix
bug fix
linux operating system
cve-2023-1118
cve-2021-33631
cve-2024-26602

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7

Confidence

Low

EPSS

0

Percentile

10.1%

The kernel packages contain the Linux kernel, the core of any Linux operating
system.

Security Fix(es):

  • kernel: use-after-free in drivers/media/rc/ene_ir.c due to race condition (CVE-2023-1118)

  • kernel: ext4: kernel bug in ext4_write_inline_data_end() (CVE-2021-33631)

  • kernel: sched/membarrier: reduce the ability to hammer on sys_membarrier (CVE-2024-26602)

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7

Confidence

Low

EPSS

0

Percentile

10.1%