Red Hat Security Advisory: kernel-rt security update
A security update for the Red Hat Enterprise Linux Real Time kernel (kernel-rt) addresses multiple vulnerabilities including permission bypass, potential underflow, race conditions, kernel info leaks, and crashes. These issues affect various kernel components such as SELinux/Smack, networking, block request quality of service, ARM64 probes, and virtual socket initialization. The update is rated as having moderate security impact and requires a system reboot to take effect.
AI Analysis
Technical Summary
The Red Hat kernel-rt security advisory (RHSA-2024:10944) fixes nine vulnerabilities in the Real Time Linux Kernel used in Red Hat Enterprise Linux 8. These include CVE-2024-46695 (SELinux/Smack permissions bypass in inode_setsecctx hook), CVE-2024-49949 (potential underflow in qdisc_pkt_len_init with UFO), CVE-2024-50082 (crash due to race condition in blk-rq-qos), CVE-2024-50099 (removal of broken ARM64 LDR uprobe support), CVE-2024-50110 (kernel info leak in xfrm algo dumping), CVE-2024-50142 (validation of SA prefix length in xfrm), CVE-2024-50192 (prevention of VMOVP on dying VPE in irqchip/gic-v4), CVE-2024-50256 (potential crash in nf_reject_ipv6), and CVE-2024-50264 (dangling pointer initialization in vsock/virtio). The advisory provides updated kernel-rt packages for Red Hat Enterprise Linux 8 Real Time variants. The system must be rebooted after applying the update for changes to take effect.
Potential Impact
These vulnerabilities collectively could lead to permission bypass, kernel crashes, information leaks, and potential denial of service conditions in systems running the affected kernel-rt packages. The issues affect critical kernel components related to security contexts, networking, block device request handling, ARM64 architecture probes, and virtual socket communication. The overall security impact is rated as moderate by Red Hat.
Mitigation Recommendations
Red Hat has released updated kernel-rt packages addressing these vulnerabilities. Users should apply the security update RHSA-2024:10944 promptly and reboot affected systems to ensure the fixes take effect. For detailed update instructions, refer to https://access.redhat.com/articles/11258. No additional mitigations are specified beyond applying the official update and rebooting.
Red Hat Security Advisory: kernel-rt security update
Description
A security update for the Red Hat Enterprise Linux Real Time kernel (kernel-rt) addresses multiple vulnerabilities including permission bypass, potential underflow, race conditions, kernel info leaks, and crashes. These issues affect various kernel components such as SELinux/Smack, networking, block request quality of service, ARM64 probes, and virtual socket initialization. The update is rated as having moderate security impact and requires a system reboot to take effect.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The Red Hat kernel-rt security advisory (RHSA-2024:10944) fixes nine vulnerabilities in the Real Time Linux Kernel used in Red Hat Enterprise Linux 8. These include CVE-2024-46695 (SELinux/Smack permissions bypass in inode_setsecctx hook), CVE-2024-49949 (potential underflow in qdisc_pkt_len_init with UFO), CVE-2024-50082 (crash due to race condition in blk-rq-qos), CVE-2024-50099 (removal of broken ARM64 LDR uprobe support), CVE-2024-50110 (kernel info leak in xfrm algo dumping), CVE-2024-50142 (validation of SA prefix length in xfrm), CVE-2024-50192 (prevention of VMOVP on dying VPE in irqchip/gic-v4), CVE-2024-50256 (potential crash in nf_reject_ipv6), and CVE-2024-50264 (dangling pointer initialization in vsock/virtio). The advisory provides updated kernel-rt packages for Red Hat Enterprise Linux 8 Real Time variants. The system must be rebooted after applying the update for changes to take effect.
Potential Impact
These vulnerabilities collectively could lead to permission bypass, kernel crashes, information leaks, and potential denial of service conditions in systems running the affected kernel-rt packages. The issues affect critical kernel components related to security contexts, networking, block device request handling, ARM64 architecture probes, and virtual socket communication. The overall security impact is rated as moderate by Red Hat.
Mitigation Recommendations
Red Hat has released updated kernel-rt packages addressing these vulnerabilities. Users should apply the security update RHSA-2024:10944 promptly and reboot affected systems to ensure the fixes take effect. For detailed update instructions, refer to https://access.redhat.com/articles/11258. No additional mitigations are specified beyond applying the official update and rebooting.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2024:10944
- Cve Count
- 9
- Additional Cves
- ["CVE-2024-49949","CVE-2024-50082","CVE-2024-50099","CVE-2024-50110","CVE-2024-50142","CVE-2024-50192","CVE-2024-50256","CVE-2024-50264"]
- Cvss Version
- null
Threat ID: 6a3da2004853345fc1836c8c
Added to database: 06/25/2026, 21:47:44 UTC
Last enriched: 06/25/2026, 22:54:37 UTC
Last updated: 06/25/2026, 23:01:00 UTC
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.