RHSA-2021:2719: Important: kernel-rt security and bug fix update
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.Security Fix(es): kernel: sizet-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909) kernel: use-after-free in net/bluetooth/hcievent.c when destroying an hcichan (CVE-2021-33034) kernel: perfeventparseaddrfilter memory (CVE-2020-25704) kernel: security bypass in certs/blacklist.c and certs/systemkeyring.c (CVE-2020-26541) kernel: fork: fix copyprocess(CLONEPARENT) race with the exiting ->realparent (CVE-2020-35508) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Bug Fix(es): kernel-rt: update RT source tree to the latest RHEL-8.2.z10 Batch source tree (BZ#1968022)
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2021:2719?
The severity of RHSA-2021:2719 is categorized as important due to its potential impact on system security.
How do I fix RHSA-2021:2719?
To fix RHSA-2021:2719, update the affected kernel-rt packages to version 4.18.0-193.60.2.rt13.112.el8_2 or higher.
What vulnerabilities are addressed in RHSA-2021:2719?
RHSA-2021:2719 addresses a size_t-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909).
Which packages are affected by RHSA-2021:2719?
RHSA-2021:2719 affects several packages including kernel-rt, kernel-rt-core, and kernel-rt-debug among others.
Is RHSA-2021:2719 applicable to all systems?
RHSA-2021:2719 is specifically applicable to systems running the Real Time Linux Kernel provided by Red Hat.