{"id":"ALSA-2023:3708","summary":"Important: kernel-rt security and bug fix update","details":"The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: use-after-free vulnerability in the perf_group_detach function of the Linux Kernel Performance Events (CVE-2023-2235)\n* kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation (CVE-2023-32233)\n* Kernel: bluetooth: Unauthorized management command execution (CVE-2023-2002)\n* kernel: OOB access in the Linux kernel's XFS subsystem (CVE-2023-2124)\n* kernel: i2c: out-of-bounds write in xgene_slimpro_i2c_xfer() (CVE-2023-2194)\n* kernel: tls: race condition in do_tls_getsockopt may lead to use-after-free or NULL pointer dereference (CVE-2023-28466)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* [RT] Single Node Openshift cluster becomes unreachable after running less than 2 hours (BZ#2186853)\n* kernel-rt: update RT source tree to the latest AlmaLinux-9.2.z1 Batch (BZ#2188313)","modified":"2026-02-04T04:05:26.986211Z","published":"2023-06-21T00:00:00Z","related":["CVE-2023-2002","CVE-2023-2124","CVE-2023-2194","CVE-2023-2235","CVE-2023-28466","CVE-2023-32233"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2023:3708"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-2002"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-2124"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-2194"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-2235"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-28466"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-32233"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2179000"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2187308"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2187439"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2188396"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2192589"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2196105"},{"type":"ADVISORY","url":"https://errata.almalinux.org/9/ALSA-2023-3708.html"}],"affected":[{"package":{"name":"kernel-rt","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-debug","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-debug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-debug-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-debug-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-debug-devel","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-debug-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-debug-kvm","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-debug-kvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-debug-modules","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-debug-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-debug-modules-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-debug-modules-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-debug-modules-extra","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-debug-modules-extra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-devel","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-kvm","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-kvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-modules","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-modules-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-modules-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}},{"package":{"name":"kernel-rt-modules-extra","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-rt-modules-extra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.18.1.rt14.303.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:3708.json"}}],"schema_version":"1.7.3"}