RedHatRHSA-2024:2582(RHSA-2024:2582) Moderate: kernel security and bug fix update
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
5.1%
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
-
kernel: use-after-free in l2cap_sock_release in net/bluetooth/l2cap_sock.c (CVE-2023-40283)
-
kernel: mlxsw: spectrum_acl_tcam: Fix stack corruption (CVE-2024-26586)
-
kernel: netfilter: divide error in nft_limit_init (CVE-2021-46915)
-
kernel: sched/membarrier: reduce the ability to hammer on sys_membarrier (CVE-2024-26602)
Bug Fix(es):
-
kernel: use-after-free in l2cap_sock_release in net/bluetooth/l2cap_sock.c (JIRA:RHEL-18996)
-
rbd: don’t move requests to the running list on errors [8.x] (JIRA:RHEL-24201)
-
TRIAGE CVE-2021-46915 kernel: netfilter: divide error in nft_limit_init (JIRA:RHEL-28179)
-
[RHEL 8.4] Soft Lockups from BZ-2174623 hit on RHEL 8.4 (JIRA:RHEL-16035)
-
kernel: sched/membarrier: reduce the ability to hammer on sys_membarrier (JIRA:RHEL-26386)
-
kernel: mlxsw: spectrum_acl_tcam: Fix stack corruption (JIRA:RHEL-29181)
-
Intel i40e driver performance issue (JIRA:RHEL-30402)
Related
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
5.1%