Lucene search

K
redhatRedHatRHSA-2024:2758
HistoryMay 08, 2024 - 12:02 a.m.

(RHSA-2024:2758) Moderate: kernel security and bug fix update

2024-05-0800:02:33
access.redhat.com
64
kernel
linux
security
bug fix
marvin vulnerability
rsa decryption
amd
exception
ffdhe algorithm
page cache
system hang
ptp
nmi

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

AI Score

6.8

Confidence

Low

EPSS

0.001

Percentile

46.8%

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: Marvin vulnerability side-channel leakage in the RSA decryption operation (CVE-2023-6240)

  • CVE-2024-25743 hw: amd: Instruction raise #VC exception at exit (AMD-SN-3008,CVE-2024-25742,CVE-2024-25743)

Bug Fix(es):

  • ffdhe* algortihms introduced in 0a2e5b909023 as .fips_allowed=1 lack pairwise consistency tests (JIRA:RHEL-27009)

  • mm/mglru: fix underprotected page cache (JIRA:RHEL-29235)

  • [EMR] [TBOOT OS] SUT could not go to S3 state with RHEL 9.2 Tboot OS One CPU return -16 running BUSY (JIRA:RHEL-29673)

  • system hangs completely - NMI not possible (JIRA:RHEL-30678)

  • ice 0000:6f:00.0: PTP failed to get time (JIRA:RHEL-30110)

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

AI Score

6.8

Confidence

Low

EPSS

0.001

Percentile

46.8%