RLSA-2024:0134 --- kernel-rtID: oval:org.secpod.oval:def:4501523 | Date: (C)2024-01-23 (M)2024-06-13 |
Class: PATCH | Family: unix |
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix: * kernel: use after free in unix_stream_sendpage * kernel: vmwgfx: reference count issue leads to use-after-free in surface handling * kernel: netfilter: potential slab-out-of-bound access due to integer underflow * Kernel: UAF during login when accessing the shost ipaddress * hw amd: Return Address Predictor vulnerability leading to information disclosure For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Bug Fix: * kernel-rt: update RT source tree to the latest Rocky Linux-8.9.z1 Batch