RHSA-2021:2726: Important: kernel-rt security and bug fix update
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.<br>Security Fix(es):<br><li> kernel: sizet-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909)</li> <li> kernel: use-after-free in net/bluetooth/hcievent.c when destroying an hcichan (CVE-2021-33034)</li> <li> kernel: use-after-free in shownumastats function (CVE-2019-20934)</li> <li> kernel: mishandles invalid descriptors in drivers/media/usb/gspca/xirlinkcit.c (CVE-2020-11668)</li> <li> kernel: use-after-free in cipsov4genopt in net/ipv4/cipsoipv4.c (CVE-2021-33033)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> kernel-rt: update to the latest RHEL7.9.z7 source tree (BZ#1967333)</li>
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2021:2726?
The severity of RHSA-2021:2726 is classified as important due to the potential impact on system security.
How do I fix RHSA-2021:2726?
To fix RHSA-2021:2726, update the affected kernel-rt packages to version 3.10.0-1160.36.2.rt56.1179.el7.
What vulnerabilities are addressed by RHSA-2021:2726?
RHSA-2021:2726 addresses a size_t-to-int conversion vulnerability in the filesystem layer, identified as CVE-2021-33909.
Which packages are affected by RHSA-2021:2726?
The affected packages under RHSA-2021:2726 include kernel-rt, kernel-rt-debug, and other related kernel-rt packages.
Is a reboot required after applying the fix for RHSA-2021:2726?
Yes, a reboot is generally required after applying the updates for RHSA-2021:2726 to ensure all changes take effect.