{"id":"RLSA-2022:7318","summary":"Important: kernel security, bug fix, and enhancement update","details":"The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* posix cpu timer use-after-free may lead to local privilege escalation (CVE-2022-2585)\n\n* Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP option (CVE-2022-30594)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* kernel crash after reboot of T14/G2 AMD laptop (mt7921e module) (BZ#2095653)\n\n* execve exit tracepoint not called (BZ#2106661)\n\n* Matrox black screen on VGA output on some systems. (BZ#2112017)\n\n* The kernel needs to offer a way to reseed the Crypto DRBG and atomically extract random numbers from it (BZ#2121129)\n\n* watchdog BUG: soft lockup - CPU#30 stuck for 34s! [swapper/30:0] (BZ#2127857)\n\n* Update cifs to 5.16 (BZ#2127858)\n\n* Bad page state in process qemu-kvm  pfn:68a74600 (BZ#2127859)\n\n* vfio zero page mappings fail after 2M instances (BZ#2128791)\n\n* The kernel needs to offer a way to reseed the Crypto DRBG and atomically extract random numbers from it (part 2) (BZ#2128970)\n\nEnhancement(s):\n\n* Need to enable hpilo to support new HPE RL300 Gen11 for ARM (aarch64) (BZ#2129453)","modified":"2026-02-05T02:30:09.394139Z","published":"2022-11-02T13:52:07Z","upstream":["CVE-2022-2585","CVE-2022-30594"],"references":[{"type":"ADVISORY","url":"https://errata.rockylinux.org/RLSA-2022:7318"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2085300"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2114874"}],"affected":[{"package":{"name":"kernel","ecosystem":"Rocky Linux:9","purl":"pkg:rpm/rocky-linux/kernel?distro=rocky-linux-9-0-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.14.0-70.30.1.el9"}],"database_specific":{"yum_repository":"CRB"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:7318.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"credits":[{"name":"Rocky Enterprise Software Foundation"},{"name":"Red Hat"}]}