RHSA-2021:2729: Important: kpatch-patch security update
Published Jul 20, 2021
·Updated
This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.<br>Security Fix(es):<br><li> kernel: sizet-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909)</li> <li> kernel: use-after-free in net/bluetooth/hcievent.c when destroying an hcichan (CVE-2021-33034)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software
58 affected componentsFixes available
redhat/kpatch-patch<3_10_0-1062_30_1-1-4.el7
3_10_0-1062_30_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_31_2-1-4.el7
3_10_0-1062_31_2-1-4.el7
redhat/kpatch-patch<3_10_0-1062_31_3-1-4.el7
3_10_0-1062_31_3-1-4.el7
redhat/kpatch-patch<3_10_0-1062_33_1-1-4.el7
3_10_0-1062_33_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_36_1-1-4.el7
3_10_0-1062_36_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_37_1-1-4.el7
3_10_0-1062_37_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_40_1-1-4.el7
3_10_0-1062_40_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_43_1-1-4.el7
3_10_0-1062_43_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_45_1-1-4.el7
3_10_0-1062_45_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_46_1-1-3.el7
3_10_0-1062_46_1-1-3.el7
redhat/kpatch-patch<3_10_0-1062_49_1-1-1.el7
3_10_0-1062_49_1-1-1.el7
redhat/kpatch-patch<3_10_0-1062_51_1-1-1.el7
3_10_0-1062_51_1-1-1.el7
redhat/kpatch-patch<3_10_0-1062_30_1-1-4.el7
3_10_0-1062_30_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_30_1-debuginfo-1-4.el7
3_10_0-1062_30_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_31_2-1-4.el7
3_10_0-1062_31_2-1-4.el7
redhat/kpatch-patch<3_10_0-1062_31_2-debuginfo-1-4.el7
3_10_0-1062_31_2-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_31_3-1-4.el7
3_10_0-1062_31_3-1-4.el7
redhat/kpatch-patch<3_10_0-1062_31_3-debuginfo-1-4.el7
3_10_0-1062_31_3-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_33_1-1-4.el7
3_10_0-1062_33_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_33_1-debuginfo-1-4.el7
3_10_0-1062_33_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_36_1-1-4.el7
3_10_0-1062_36_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_36_1-debuginfo-1-4.el7
3_10_0-1062_36_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_37_1-1-4.el7
3_10_0-1062_37_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_37_1-debuginfo-1-4.el7
3_10_0-1062_37_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_40_1-1-4.el7
3_10_0-1062_40_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_40_1-debuginfo-1-4.el7
3_10_0-1062_40_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_43_1-1-4.el7
3_10_0-1062_43_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_45_1-1-4.el7
3_10_0-1062_45_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_45_1-debuginfo-1-4.el7
3_10_0-1062_45_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_46_1-1-3.el7
3_10_0-1062_46_1-1-3.el7
redhat/kpatch-patch<3_10_0-1062_46_1-debuginfo-1-3.el7
3_10_0-1062_46_1-debuginfo-1-3.el7
redhat/kpatch-patch<3_10_0-1062_49_1-1-1.el7
3_10_0-1062_49_1-1-1.el7
redhat/kpatch-patch<3_10_0-1062_49_1-debuginfo-1-1.el7
3_10_0-1062_49_1-debuginfo-1-1.el7
redhat/kpatch-patch<3_10_0-1062_51_1-1-1.el7
3_10_0-1062_51_1-1-1.el7
redhat/kpatch-patch<3_10_0-1062_51_1-debuginfo-1-1.el7
3_10_0-1062_51_1-debuginfo-1-1.el7
redhat/kpatch-patch<3_10_0-1062_30_1-1-4.el7
3_10_0-1062_30_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_30_1-debuginfo-1-4.el7
3_10_0-1062_30_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_31_2-1-4.el7
3_10_0-1062_31_2-1-4.el7
redhat/kpatch-patch<3_10_0-1062_31_2-debuginfo-1-4.el7
3_10_0-1062_31_2-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_31_3-1-4.el7
3_10_0-1062_31_3-1-4.el7
redhat/kpatch-patch<3_10_0-1062_31_3-debuginfo-1-4.el7
3_10_0-1062_31_3-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_33_1-1-4.el7
3_10_0-1062_33_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_33_1-debuginfo-1-4.el7
3_10_0-1062_33_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_36_1-1-4.el7
3_10_0-1062_36_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_36_1-debuginfo-1-4.el7
3_10_0-1062_36_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_37_1-1-4.el7
3_10_0-1062_37_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_37_1-debuginfo-1-4.el7
3_10_0-1062_37_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_40_1-1-4.el7
3_10_0-1062_40_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_40_1-debuginfo-1-4.el7
3_10_0-1062_40_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_43_1-1-4.el7
3_10_0-1062_43_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_45_1-1-4.el7
3_10_0-1062_45_1-1-4.el7
redhat/kpatch-patch<3_10_0-1062_45_1-debuginfo-1-4.el7
3_10_0-1062_45_1-debuginfo-1-4.el7
redhat/kpatch-patch<3_10_0-1062_46_1-1-3.el7
3_10_0-1062_46_1-1-3.el7
redhat/kpatch-patch<3_10_0-1062_46_1-debuginfo-1-3.el7
3_10_0-1062_46_1-debuginfo-1-3.el7
redhat/kpatch-patch<3_10_0-1062_49_1-1-1.el7
3_10_0-1062_49_1-1-1.el7
redhat/kpatch-patch<3_10_0-1062_49_1-debuginfo-1-1.el7
3_10_0-1062_49_1-debuginfo-1-1.el7
redhat/kpatch-patch<3_10_0-1062_51_1-1-1.el7
3_10_0-1062_51_1-1-1.el7
redhat/kpatch-patch<3_10_0-1062_51_1-debuginfo-1-1.el7
3_10_0-1062_51_1-debuginfo-1-1.el7
Remediation
Event History
Jun 20, 2024
Advisory Published
via Red Hat·01:30 AM
Frequently Asked Questions
1
What is the severity of RHSA-2021:2729?
The severity of RHSA-2021:2729 is classified as moderate.
2
How do I fix RHSA-2021:2729?
To fix RHSA-2021:2729, you need to update the kpatch-patch package to a version specified in the advisory.
3
What vulnerabilities are addressed in RHSA-2021:2729?
RHSA-2021:2729 addresses vulnerabilities such as CVE-2021-33909, a size_t-to-int conversion vulnerability in the filesystem layer.
4
Which versions are affected by RHSA-2021:2729?
RHSA-2021:2729 affects various versions of the kpatch-patch package including 3_10_0-1062_30_1-1-4.el7 and others in the same series.
5
Are there associated security risks with not applying RHSA-2021:2729?
Not applying RHSA-2021:2729 may expose your system to potential exploitation of the identified vulnerabilities.