RedHat Linux Kernel Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Operating Systems - Linux
Multiple vulnerabilities were identified in RedHat Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure, data manipulation and security restriction bypass on the targeted system.
Notes:
CVE-2024-1086 is being exploited in the wild. It is related to use-after-free vulnerability in the netfilter: nf_tables component. Local attackers could exploit this flaw to elevate privileges from a regular user to root. The risk level remain medium risk.
[Updated on 2024-04-12]
Updated System / Technologies affected, Solutions, Vulnerability Identifier and Related Links.
[Updated on 2024-04-18]
Updated System / Technologies affected, Solutions, Vulnerability Identifier and Related Links.
[Updated on 2024-04-19]
Updated Solutions, Vulnerability Identifier and Related Links.
[Updated on 2024-04-26]
Updated Solutions, Vulnerability Identifier and Related Links.
[Updated on 2024-05-31]
Updated Description.
Impact
- Denial of Service
- Remote Code Execution
- Information Disclosure
- Data Manipulation
- Elevation of Privilege
- Security Restriction Bypass
System / Technologies affected
- Red Hat CodeReady Linux Builder EUS (v.9.0) - aarch64, ppc64le, x86_64, s390x, noarch
- Red Hat Enterprise Linux AppStream EUS (v.9.0) - aarch64, ppc64le, x86_64, s390x, noarch
- Red Hat Enterprise Linux BaseOS EUS (v.9.0) - aarch64, ppc64le, x86_64, s390x, noarch
- Red Hat Enterprise Linux Real Time EUS (v.9.0) - x86_64
- Red Hat Enterprise Linux Real Time for NFV EUS (v.9.0) - x86_64
- Red Hat Enterprise Linux Server (v. 6 ELS) - x86_64, i686, s390x, noarch
- Red Hat Enterprise Linux Server Optional (v. 6 ELS) - x86_64, i686, s390x, noarch
- Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.6 aarch64
- Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.8 aarch64
- Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.2 aarch64
- Red Hat CodeReady Linux Builder for ARM 64 8 aarch64
- Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.2 s390x
- Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.6 ppc64le
- Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.8 ppc64le
- Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.2 ppc64le
- Red Hat CodeReady Linux Builder for Power, little endian 8 ppc64le
- Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.6 x86_64
- Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.8 x86_64
- Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.2 x86_64
- Red Hat CodeReady Linux Builder for x86_64 8 x86_64
- Red Hat Enterprise Linux Server - AUS 7.6 x86_64
- Red Hat Enterprise Linux Server - AUS 7.7 x86_64
- Red Hat Enterprise Linux Server - AUS 8.6 x86_64
- Red Hat Enterprise Linux Server - AUS 9.2 x86_64
- Red Hat Enterprise Linux Server - TUS 8.6 x86_64
- Red Hat Enterprise Linux Server - TUS 8.8 x86_64
- Red Hat Enterprise Linux Server for ARM 64 - 4 years of updates 9.2 aarch64
- Red Hat Enterprise Linux Server for IBM z Systems - 4 years of updates 9.2 s390x
- Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4 ppc64le
- Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le
- Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
- Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le
- Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64
- Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8 aarch64
- Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.2 aarch64
- Red Hat Enterprise Linux for ARM 64 8 aarch64
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8 s390x
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.2 s390x
- Red Hat Enterprise Linux for IBM z Systems 8 s390x
- Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le
- Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8 ppc64le
- Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.2 ppc64le
- Red Hat Enterprise Linux for Power, little endian 8 ppc64le
- Red Hat Enterprise Linux for Real Time - Telecommunications Update Service 8.4 x86_64
- Red Hat Enterprise Linux for Real Time 8 x86_64
- Red Hat Enterprise Linux for Real Time for NFV - Telecommunications Update Service 8.4 x86_64
- Red Hat Enterprise Linux for Real Time for NFV 8 x86_64
- Red Hat Enterprise Linux for Real Time for NFV for x86_64 - 4 years of updates 9.2 x86_64
- Red Hat Enterprise Linux for Real Time for x86_64 - 4 years of updates 9.2 x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8 x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.2 x86_64
- Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4 x86_64
- Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64
- Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64
- Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64
- Red Hat Enterprise Linux for x86_64 8 x86_64
- Red Hat Virtualization Host 4 for RHEL 8 x86_64
- Red Hat Enterprise Linux for Real Time 7 x86_64
- Red Hat Enterprise Linux for Real Time for NFV 7 x86_64
- Red Hat Enterprise Linux Server 7 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64
- Red Hat Enterprise Linux Workstation 7 x86_64
- Red Hat Enterprise Linux Desktop 7 x86_64
- Red Hat Enterprise Linux for IBM z Systems 7 s390x
- Red Hat Enterprise Linux for Power, big endian 7 ppc64
- Red Hat Enterprise Linux for Scientific Computing 7 x86_64
- Red Hat Enterprise Linux for Power, little endian 7 ppc64le
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x
- Red Hat Enterprise Linux Server - AUS 8.2 x86_64
- Red Hat Enterprise Linux Server - TUS 8.2 x86_64
- Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.2 ppc64le
- Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.2 x86_64
- Red Hat Enterprise Linux for Real Time - Telecommunications Update Service 8.2 x86_64
- Red Hat Enterprise Linux for Real Time for NFV - Telecommunications Update Service 8.2 x86_64
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://access.redhat.com/errata/RHSA-2024:1377
- https://access.redhat.com/errata/RHSA-2024:1382
- https://access.redhat.com/errata/RHSA-2024:1404
- https://access.redhat.com/errata/RHSA-2024:1532
- https://access.redhat.com/errata/RHSA-2024:1533
- https://access.redhat.com/errata/RHSA-2024:1607
- https://access.redhat.com/errata/RHSA-2024:1612
- https://access.redhat.com/errata/RHSA-2024:1614
- https://access.redhat.com/errata/RHSA-2024:1653
- https://access.redhat.com/errata/RHSA-2024:1746
- https://access.redhat.com/errata/RHSA-2024:1747
- https://access.redhat.com/errata/RHSA-2024:1840
- https://access.redhat.com/errata/RHSA-2024:1836
- https://access.redhat.com/errata/RHSA-2024:1831
- https://access.redhat.com/errata/RHSA-2024:1882
- https://access.redhat.com/errata/RHSA-2024:1881
- https://access.redhat.com/errata/RHSA-2024:1877
- https://access.redhat.com/errata/RHSA-2024:2003
- https://access.redhat.com/errata/RHSA-2024:2004
- https://access.redhat.com/errata/RHSA-2024:2006
- https://access.redhat.com/errata/RHSA-2024:2008
Vulnerability Identifier
- CVE-2020-36558
- CVE-2021-26341
- CVE-2021-33631
- CVE-2021-43975
- CVE-2021-46915
- CVE-2021-47099
- CVE-2022-1184
- CVE-2022-1852
- CVE-2022-3545
- CVE-2022-3594
- CVE-2022-3640
- CVE-2022-4744
- CVE-2022-28388
- CVE-2022-36402
- CVE-2022-38096
- CVE-2022-38457
- CVE-2022-40133
- CVE-2022-41858
- CVE-2022-42895
- CVE-2022-42896
- CVE-2022-45869
- CVE-2022-45887
- CVE-2023-1118
- CVE-2023-1192
- CVE-2023-1382
- CVE-2023-2002
- CVE-2023-2166
- CVE-2023-2176
- CVE-2023-3611
- CVE-2023-3812
- CVE-2023-4459
- CVE-2023-4622
- CVE-2023-4623
- CVE-2023-4921
- CVE-2023-5633
- CVE-2023-6240
- CVE-2023-6546
- CVE-2023-6606
- CVE-2023-6610
- CVE-2023-6817
- CVE-2023-6931
- CVE-2023-6932
- CVE-2023-7192
- CVE-2023-25775
- CVE-2023-28772
- CVE-2023-30456
- CVE-2023-31084
- CVE-2023-31436
- CVE-2023-33951
- CVE-2023-33952
- CVE-2023-40283
- CVE-2023-45862
- CVE-2023-51042
- CVE-2023-51043
- CVE-2024-0565
- CVE-2024-0646
- CVE-2024-1086
- CVE-2024-26582
- CVE-2024-26584
- CVE-2024-26586
- CVE-2024-26602
Source
Related Link
- https://access.redhat.com/errata/RHSA-2024:1377
- https://access.redhat.com/errata/RHSA-2024:1382
- https://access.redhat.com/errata/RHSA-2024:1404
- https://access.redhat.com/errata/RHSA-2024:1532
- https://access.redhat.com/errata/RHSA-2024:1533
- https://access.redhat.com/errata/RHSA-2024:1607
- https://access.redhat.com/errata/RHSA-2024:1612
- https://access.redhat.com/errata/RHSA-2024:1614
- https://access.redhat.com/errata/RHSA-2024:1653
- https://access.redhat.com/errata/RHSA-2024:1746
- https://access.redhat.com/errata/RHSA-2024:1747
- https://access.redhat.com/errata/RHSA-2024:1840
- https://access.redhat.com/errata/RHSA-2024:1836
- https://access.redhat.com/errata/RHSA-2024:1831
- https://access.redhat.com/errata/RHSA-2024:1882
- https://access.redhat.com/errata/RHSA-2024:1881
- https://access.redhat.com/errata/RHSA-2024:1877
- https://access.redhat.com/errata/RHSA-2024:2003
- https://access.redhat.com/errata/RHSA-2024:2004
- https://access.redhat.com/errata/RHSA-2024:2006
- https://access.redhat.com/errata/RHSA-2024:2008
Related Tags
Share with