OVAL Reference oval:com.redhat.rhsa:def:20227110

device pointer, backport upstream fix (BZ#2115965) * pyverbs-tests fail over qede IW HCAs on "test_query_rc_qp" (tests.test_qp.QPTest) (BZ#2119122) * qedi shutdown handler hangs upon reboot (BZ#2119847) * cache link_info for ethtool (BZ#2120197) * Important iavf bug fixes (BZ#2120225) * Hibernate crash with Aquantia 2.5/5 Gb LAN card (BZ#2124966) * While using PTimekeeper the qede driver produces excessive log messages (BZ#2125477) * general protection fault handling rpc_xprt.timer (BZ#2126184) * Not enough device MSI-X vectors (BZ#2126482) * Atlantic driver panic on wakeup after hybernate (BZ#2127845) * Memory leak in vxlan_xmit_one (BZ#2131255) * Missing hybernate/resume fixes (BZ#2131936) Enhancement(s): * Update smartpqi driver to latest upstream Second Set of Patches (BZ#2112354) * qed/qede/qedr - driver updates to latest upstream (BZ#2120611) * Update qedi driver to latest upstream (BZ#2120612) * Update qedf driver to latest upstream (BZ#2120613) * Include the support for new NVIDIA Mobile GFX GA103 on ADL Gen Laptops (BZ#2127122) * Need to enable hpilo to support new HPE RL300 Gen11 for ARM (aarch64) (BZ#2129923) "> OVAL Reference oval:com.redhat.rhsa:def:20227110 - CERT Civis.Net

Oval Definition:

oval:com.redhat.rhsa:def:20227110

Revision Date:	2022-10-25	Version:	643
Title:	RHSA-2022:7110: kernel security, bug fix, and enhancement update (Important)
Description:	The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): A use-after-free in cls_route filter implementation may lead to privilege escalation (CVE-2022-2588) Information leak in scsi_ioctl() (CVE-2022-0494) A kernel-info-leak issue in pfkey_register (CVE-2022-1353) RetBleed Arbitrary Speculative Code Execution with Return Instructions (CVE-2022-23816, CVE-2022-29900) Branch Type Confusion (non-retbleed) (CVE-2022-23825) RetBleed Arbitrary Speculative Code Execution with Return Instructions (CVE-2022-29901) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): Add s390_iommu_aperture kernel parameter (BZ#2081324) Blackscreen and hangup after resume from hibernate or S3 with DFGX WX3200 (BZ#2091065) Update NVME subsystem with bug fixes and minor changes (BZ#2106017) Fix parsing of nw_proto for IPv6 fragments (BZ#2106703) "vmcore failed, _exitcode:139" error observed while capturing vmcore during fadump after memory remove. incomplete vmcore is captured. (BZ#2107488) 'disable_policy' is ignored for addresses configured on a down interface (BZ#2109971) Backport request for new cpufreq.default_governor kernel command line parameter (BZ#2109996) Panics in mpt3sas mpt3sas_halt_firmware() if mpt3sas_fwfault_debug=1 enabled when poweroff issued to server (BZ#2111140) IOMMU/DMA update for 8.7 (BZ#2111692) Update Broadcom Emulex lpfc driver for RHEL8.7 with bug fixes (14.0.0.13) (BZ#2112103) Incorrect Socket(s) & "Core(s) per socket" reported by lscpu command. (BZ#2112820) Panic in ch_release() due to NULL ch->device pointer, backport upstream fix (BZ#2115965) pyverbs-tests fail over qede IW HCAs on "test_query_rc_qp" (tests.test_qp.QPTest) (BZ#2119122) qedi shutdown handler hangs upon reboot (BZ#2119847) cache link_info for ethtool (BZ#2120197) Important iavf bug fixes (BZ#2120225) Hibernate crash with Aquantia 2.5/5 Gb LAN card (BZ#2124966) While using PTimekeeper the qede driver produces excessive log messages (BZ#2125477) general protection fault handling rpc_xprt.timer (BZ#2126184) Not enough device MSI-X vectors (BZ#2126482) Atlantic driver panic on wakeup after hybernate (BZ#2127845) Memory leak in vxlan_xmit_one (BZ#2131255) Missing hybernate/resume fixes (BZ#2131936) Enhancement(s): Update smartpqi driver to latest upstream Second Set of Patches (BZ#2112354) qed/qede/qedr - driver updates to latest upstream (BZ#2120611) Update qedi driver to latest upstream (BZ#2120612) Update qedf driver to latest upstream (BZ#2120613) Include the support for new NVIDIA Mobile GFX GA103 on ADL Gen Laptops (BZ#2127122) Need to enable hpilo to support new HPE RL300 Gen11 for ARM (aarch64) (BZ#2129923)
Family:	unix	Class:	patch
Status:		Reference(s):	CVE-2022-0494 CVE-2022-1353 CVE-2022-23816 CVE-2022-23825 CVE-2022-2588 CVE-2022-29900 CVE-2022-29901 RHSA-2022:7110
Platform(s):	Red Hat Enterprise Linux 8	Product(s):
Definition Synopsis
Red Hat Enterprise Linux must be installed OR Package Information Red Hat Enterprise Linux 8 is installed OR Red Hat CoreOS 4 is installed AND kernel earlier than 0:4.18.0-372.32.1.el8_6 is currently running OR kernel earlier than 0:4.18.0-372.32.1.el8_6 is set to boot up on next boot AND bpftool is earlier than 0:4.18.0-372.32.1.el8_6 AND bpftool is signed with Red Hat redhatrelease2 key kernel is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel is signed with Red Hat redhatrelease2 key kernel-abi-stablelists is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-abi-stablelists is signed with Red Hat redhatrelease2 key kernel-core is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-core is signed with Red Hat redhatrelease2 key kernel-cross-headers is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-cross-headers is signed with Red Hat redhatrelease2 key kernel-debug is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-debug is signed with Red Hat redhatrelease2 key kernel-debug-core is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-debug-core is signed with Red Hat redhatrelease2 key kernel-debug-devel is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-debug-devel is signed with Red Hat redhatrelease2 key kernel-debug-modules is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-debug-modules is signed with Red Hat redhatrelease2 key kernel-debug-modules-extra is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-debug-modules-extra is signed with Red Hat redhatrelease2 key kernel-devel is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-devel is signed with Red Hat redhatrelease2 key kernel-doc is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-doc is signed with Red Hat redhatrelease2 key kernel-headers is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-headers is signed with Red Hat redhatrelease2 key kernel-modules is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-modules is signed with Red Hat redhatrelease2 key kernel-modules-extra is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-modules-extra is signed with Red Hat redhatrelease2 key kernel-tools is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-tools is signed with Red Hat redhatrelease2 key kernel-tools-libs is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-tools-libs is signed with Red Hat redhatrelease2 key kernel-tools-libs-devel is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-tools-libs-devel is signed with Red Hat redhatrelease2 key kernel-zfcpdump is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-zfcpdump is signed with Red Hat redhatrelease2 key kernel-zfcpdump-core is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-zfcpdump-core is signed with Red Hat redhatrelease2 key kernel-zfcpdump-devel is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-zfcpdump-devel is signed with Red Hat redhatrelease2 key kernel-zfcpdump-modules is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-zfcpdump-modules is signed with Red Hat redhatrelease2 key kernel-zfcpdump-modules-extra is earlier than 0:4.18.0-372.32.1.el8_6 AND kernel-zfcpdump-modules-extra is signed with Red Hat redhatrelease2 key perf is earlier than 0:4.18.0-372.32.1.el8_6 AND perf is signed with Red Hat redhatrelease2 key python3-perf is earlier than 0:4.18.0-372.32.1.el8_6 AND python3-perf is signed with Red Hat redhatrelease2 key

BACK