Threat Intelligence Database

A security update for the Red Hat kernel-rt package addresses a low severity vulnerability identified as CVE-2024-38564. The issue involves the BPF subsystem, specifically adding enforcement for the BPF_PROG_TYPE_CGROUP_SKB attach type in BPF_LINK_CREATE. This update is relevant for Red Hat Enterprise Linux 9.2 Extended Update Support and Extended Life Cycle versions. The update requires a system reboot to take effect.

A security update for the Red Hat kernel-rt package addresses a vulnerability identified as CVE-2024-40989. This issue involves the KVM subsystem on arm64 architectures, specifically the disassociation of virtual CPUs from the redistributor region during teardown. The update is rated with a moderate security impact by Red Hat and affects Red Hat Enterprise Linux 9.2 Extended Update Support versions. The update requires a system reboot to take effect.

This advisory addresses multiple security vulnerabilities in the Red Hat kernel-rt packages, which provide the Real Time Linux Kernel for systems requiring high determinism. The fixed issues include a use-after-free vulnerability in TIPC message reassembly (CVE-2024-36886), a reference leak in sysfs_break_active_protection() (CVE-2024-26993), and an out-of-bounds array indexing issue in the mac80211 WiFi subsystem (CVE-2024-41071). These vulnerabilities could lead to remote code execution, resource leaks, or memory corruption. Red Hat has released updated kernel-rt packages for Red Hat Enterprise Linux 8.4 variants to address these issues. A system reboot is required after applying the update for the fixes to take effect.

This security advisory from Red Hat addresses multiple vulnerabilities in the kernel-rt packages, which provide the Real Time Linux Kernel for systems requiring high determinism. The update fixes a use-after-free vulnerability in the GPIO library (CVE-2024-36899), an out-of-bounds array indexing issue in the mac80211 WiFi component (CVE-2024-41071), and improper handling in the ice network driver (CVE-2024-42139). These vulnerabilities are rated as important by Red Hat and affect Red Hat Enterprise Linux 9.2 Extended Update Support. A reboot is required after applying the update for the fixes to take effect.

Red Hat has issued a moderate severity security advisory (RHSA-2024:7490) for the kernel-rt packages in Red Hat Enterprise Linux 9.2 Extended Update Support. The update addresses four vulnerabilities related to the Linux kernel's networking components, including netfilter bridge multicast packet handling, VLAN use-after-free, Open vSwitch tuple overwriting for ICMPv6, and tproxy behavior when IP is disabled on a device. These vulnerabilities could potentially impact system stability or security in environments requiring real-time kernel performance. The advisory recommends applying the update and rebooting the system for the fixes to take effect.

Red Hat has issued a security advisory for kernel-rt packages in Red Hat Enterprise Linux 8, addressing two vulnerabilities: CVE-2025-68741 and CVE-2026-23191. These vulnerabilities affect the Real Time Linux Kernel, which is used for systems requiring high determinism. The first vulnerability involves improper freeing of a purex item in the qla2xxx SCSI driver, and the second involves a race condition in the ALSA aloop PCM trigger. An update is available that fixes these issues, and a system reboot is required to apply the update.