(RHSA-2024:2008) Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

• kernel: use-after-free in smb2_is_status_io_timeout() (CVE-2023-1192)

• kernel: vmxnet3: NULL pointer dereference in vmxnet3_rq_cleanup() (CVE-2023-4459)

• kernel: tun: bugs for oversize packet when napi frags enabled in tun_napi_alloc_frags (CVE-2023-3812)

• kernel: refcount leak in ctnetlink_create_conntrack() (CVE-2023-7192)

• kernel: mlxsw: spectrum_acl_tcam: Fix stack corruption (CVE-2024-26586)

• kernel: netfilter: divide error in nft_limit_init (CVE-2021-46915)

• kernel: sched/membarrier: reduce the ability to hammer on sys_membarrier (CVE-2024-26602)