(RHSA-2024:6990) Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

• kernel: mm/sparsemem: fix race in accessing memory_section->usage (CVE-2023-52489)

• kernel: hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs (CVE-2021-47393)

• kernel: net/smc: Fix NULL pointer dereferencing in smc_vlan_by_tcpsk() (CVE-2021-47559)

• kernel: ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." (CVE-2024-40984)

• kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() (CVE-2024-40995)

• kernel: xprtrdma: fix pointer derefs in error cases of rpcrdma_ep_create (CVE-2022-48773)

• kernel: vsock: remove vsock from connected table when connect is interrupted by a signal (CVE-2022-48786)

• kernel: perf: Fix list corruption in perf_cgroup_switch() (CVE-2022-48799)

• kernel: SUNRPC: lock against ->sock changing during sysfs read (CVE-2022-48816)

• kernel: mm: prevent derefencing NULL ptr in pfn_section_valid() (CVE-2024-41055)

• kernel: wifi: mac80211: Avoid address calculations via out of bounds array indexing (CVE-2024-41071)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.