{"id":"ALSA-2023:4377","summary":"Important: kernel security, bug fix, and enhancement update","details":"The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: ipvlan: out-of-bounds write caused by unclear skb-\u003ecb (CVE-2023-3090)\n* kernel: cls_flower: out-of-bounds write in fl_set_geneve_opt() (CVE-2023-35788)\n* kernel: KVM: x86/mmu: race condition in direct_page_fault() (CVE-2022-45869)\n* kernel: speculative pointer dereference in do_prlimit() in kernel/sys.c (CVE-2023-0458)\n* kernel: Spectre v2 SMT mitigations problem (CVE-2023-1998)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.","modified":"2026-02-04T04:15:06.866353Z","published":"2023-08-01T00:00:00Z","related":["CVE-2022-45869","CVE-2023-0458","CVE-2023-1998","CVE-2023-3090","CVE-2023-35788"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2023:4377"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-45869"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-0458"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-1998"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-3090"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-35788"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2151317"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2187257"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2193219"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2215768"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2218672"},{"type":"ADVISORY","url":"https://errata.almalinux.org/9/ALSA-2023-4377.html"}],"affected":[{"package":{"name":"bpftool","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/bpftool"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.0.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-debug","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-debug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-debug-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-debug-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-debug-devel","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-debug-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-debug-devel-matched","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-debug-devel-matched"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-debug-modules","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-debug-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-debug-modules-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-debug-modules-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-debug-modules-extra","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-debug-modules-extra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-devel","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-devel-matched","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-devel-matched"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-modules","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-modules-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-modules-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-64k-modules-extra","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-64k-modules-extra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-abi-stablelists","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-abi-stablelists"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-cross-headers","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-cross-headers"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-debug","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-debug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-debug-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-debug-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-debug-devel","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-debug-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-debug-devel-matched","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-debug-devel-matched"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-debug-modules","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-debug-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-debug-modules-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-debug-modules-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-debug-modules-extra","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-debug-modules-extra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-debug-uki-virt","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-debug-uki-virt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-devel","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-devel-matched","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-devel-matched"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-doc","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-doc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-modules","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-modules-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-modules-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-modules-extra","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-modules-extra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-tools","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-tools-libs","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-tools-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-tools-libs-devel","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-tools-libs-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-uki-virt","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-uki-virt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-zfcpdump","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-zfcpdump"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-zfcpdump-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-zfcpdump-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-zfcpdump-devel","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-zfcpdump-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-zfcpdump-devel-matched","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-zfcpdump-devel-matched"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-zfcpdump-modules","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-zfcpdump-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-zfcpdump-modules-core","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-zfcpdump-modules-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"kernel-zfcpdump-modules-extra","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/kernel-zfcpdump-modules-extra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"perf","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/perf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"python3-perf","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/python3-perf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}},{"package":{"name":"rtla","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/rtla"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.14.0-284.25.1.el9_2"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2023:4377.json"}}],"schema_version":"1.7.3"}