RHSA-2021:2727: Important: kpatch-patch security update
Published Jul 20, 2021
·Updated
This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.<br>Security Fix(es):<br><li> kernel: sizet-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909)</li> <li> kernel: use-after-free in net/bluetooth/hcievent.c when destroying an hcichan (CVE-2021-33034)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software
50 affected componentsFixes available
redhat/kpatch-patch<3_10_0-1160-1-7.el7
3_10_0-1160-1-7.el7
redhat/kpatch-patch<3_10_0-1160_11_1-1-6.el7
3_10_0-1160_11_1-1-6.el7
redhat/kpatch-patch<3_10_0-1160_15_2-1-6.el7
3_10_0-1160_15_2-1-6.el7
redhat/kpatch-patch<3_10_0-1160_21_1-1-4.el7
3_10_0-1160_21_1-1-4.el7
redhat/kpatch-patch<3_10_0-1160_24_1-1-2.el7
3_10_0-1160_24_1-1-2.el7
redhat/kpatch-patch<3_10_0-1160_25_1-1-2.el7
3_10_0-1160_25_1-1-2.el7
redhat/kpatch-patch<3_10_0-1160_2_1-1-7.el7
3_10_0-1160_2_1-1-7.el7
redhat/kpatch-patch<3_10_0-1160_2_2-1-7.el7
3_10_0-1160_2_2-1-7.el7
redhat/kpatch-patch<3_10_0-1160_31_1-1-1.el7
3_10_0-1160_31_1-1-1.el7
redhat/kpatch-patch<3_10_0-1160_6_1-1-7.el7
3_10_0-1160_6_1-1-7.el7
redhat/kpatch-patch<3_10_0-1160-1-7.el7
3_10_0-1160-1-7.el7
redhat/kpatch-patch<3_10_0-1160-debuginfo-1-7.el7
3_10_0-1160-debuginfo-1-7.el7
redhat/kpatch-patch<3_10_0-1160_11_1-1-6.el7
3_10_0-1160_11_1-1-6.el7
redhat/kpatch-patch<3_10_0-1160_11_1-debuginfo-1-6.el7
3_10_0-1160_11_1-debuginfo-1-6.el7
redhat/kpatch-patch<3_10_0-1160_15_2-1-6.el7
3_10_0-1160_15_2-1-6.el7
redhat/kpatch-patch<3_10_0-1160_15_2-debuginfo-1-6.el7
3_10_0-1160_15_2-debuginfo-1-6.el7
redhat/kpatch-patch<3_10_0-1160_21_1-1-4.el7
3_10_0-1160_21_1-1-4.el7
redhat/kpatch-patch<3_10_0-1160_21_1-debuginfo-1-4.el7
3_10_0-1160_21_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1160_24_1-1-2.el7
3_10_0-1160_24_1-1-2.el7
redhat/kpatch-patch<3_10_0-1160_24_1-debuginfo-1-2.el7
3_10_0-1160_24_1-debuginfo-1-2.el7
redhat/kpatch-patch<3_10_0-1160_25_1-1-2.el7
3_10_0-1160_25_1-1-2.el7
redhat/kpatch-patch<3_10_0-1160_25_1-debuginfo-1-2.el7
3_10_0-1160_25_1-debuginfo-1-2.el7
redhat/kpatch-patch<3_10_0-1160_2_1-1-7.el7
3_10_0-1160_2_1-1-7.el7
redhat/kpatch-patch<3_10_0-1160_2_1-debuginfo-1-7.el7
3_10_0-1160_2_1-debuginfo-1-7.el7
redhat/kpatch-patch<3_10_0-1160_2_2-1-7.el7
3_10_0-1160_2_2-1-7.el7
redhat/kpatch-patch<3_10_0-1160_2_2-debuginfo-1-7.el7
3_10_0-1160_2_2-debuginfo-1-7.el7
redhat/kpatch-patch<3_10_0-1160_31_1-1-1.el7
3_10_0-1160_31_1-1-1.el7
redhat/kpatch-patch<3_10_0-1160_31_1-debuginfo-1-1.el7
3_10_0-1160_31_1-debuginfo-1-1.el7
redhat/kpatch-patch<3_10_0-1160_6_1-1-7.el7
3_10_0-1160_6_1-1-7.el7
redhat/kpatch-patch<3_10_0-1160_6_1-debuginfo-1-7.el7
3_10_0-1160_6_1-debuginfo-1-7.el7
redhat/kpatch-patch<3_10_0-1160-1-7.el7
3_10_0-1160-1-7.el7
redhat/kpatch-patch<3_10_0-1160-debuginfo-1-7.el7
3_10_0-1160-debuginfo-1-7.el7
redhat/kpatch-patch<3_10_0-1160_11_1-1-6.el7
3_10_0-1160_11_1-1-6.el7
redhat/kpatch-patch<3_10_0-1160_11_1-debuginfo-1-6.el7
3_10_0-1160_11_1-debuginfo-1-6.el7
redhat/kpatch-patch<3_10_0-1160_15_2-1-6.el7
3_10_0-1160_15_2-1-6.el7
redhat/kpatch-patch<3_10_0-1160_15_2-debuginfo-1-6.el7
3_10_0-1160_15_2-debuginfo-1-6.el7
redhat/kpatch-patch<3_10_0-1160_21_1-1-4.el7
3_10_0-1160_21_1-1-4.el7
redhat/kpatch-patch<3_10_0-1160_21_1-debuginfo-1-4.el7
3_10_0-1160_21_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1160_24_1-1-2.el7
3_10_0-1160_24_1-1-2.el7
redhat/kpatch-patch<3_10_0-1160_24_1-debuginfo-1-2.el7
3_10_0-1160_24_1-debuginfo-1-2.el7
redhat/kpatch-patch<3_10_0-1160_25_1-1-2.el7
3_10_0-1160_25_1-1-2.el7
redhat/kpatch-patch<3_10_0-1160_25_1-debuginfo-1-2.el7
3_10_0-1160_25_1-debuginfo-1-2.el7
redhat/kpatch-patch<3_10_0-1160_2_1-1-7.el7
3_10_0-1160_2_1-1-7.el7
redhat/kpatch-patch<3_10_0-1160_2_1-debuginfo-1-7.el7
3_10_0-1160_2_1-debuginfo-1-7.el7
redhat/kpatch-patch<3_10_0-1160_2_2-1-7.el7
3_10_0-1160_2_2-1-7.el7
redhat/kpatch-patch<3_10_0-1160_2_2-debuginfo-1-7.el7
3_10_0-1160_2_2-debuginfo-1-7.el7
redhat/kpatch-patch<3_10_0-1160_31_1-1-1.el7
3_10_0-1160_31_1-1-1.el7
redhat/kpatch-patch<3_10_0-1160_31_1-debuginfo-1-1.el7
3_10_0-1160_31_1-debuginfo-1-1.el7
redhat/kpatch-patch<3_10_0-1160_6_1-1-7.el7
3_10_0-1160_6_1-1-7.el7
redhat/kpatch-patch<3_10_0-1160_6_1-debuginfo-1-7.el7
3_10_0-1160_6_1-debuginfo-1-7.el7
Remediation
Event History
Feb 15, 2025
Advisory Published
via Red Hat·03:31 AM
Frequently Asked Questions
1
What is the severity of RHSA-2021:2727?
The severity of RHSA-2021:2727 is classified as important.
2
How do I fix RHSA-2021:2727?
To fix RHSA-2021:2727, you should update the kpatch-patch package to the latest available version.
3
What vulnerabilities are addressed in RHSA-2021:2727?
RHSA-2021:2727 addresses a size_t-to-int conversion vulnerability and use-after-free vulnerabilities in the kernel.
4
Which versions of kpatch-patch are affected by RHSA-2021:2727?
Affected versions include kpatch-patch versions prior to 3_10_0-1160-1-7.el7.
5
Is there a need for immediate action regarding RHSA-2021:2727?
Yes, immediate action is recommended to mitigate potential security risks associated with this vulnerability.