FortiClient VulnerabilitySecurity Vulnerabilities fixed in kernel-rt RHSA-2021:4646
Description
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix(es): kernel: Insufficient validation of user-supplied sizes for the MSG_CRYPTO message type (CVE-2021-43267) kernel: timer tree corruption leads to missing wakeup and system freeze (CVE-2021-20317) kernel: Insufficient validation of user-supplied sizes for the MSG_CRYPTO message type (CVE-2021-43267) kernel: timer tree corruption leads to missing wakeup and system freeze (CVE-2021-20317) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): kernel-rt: update RT source tree to the RHEL-8.5.z source tree (BZ#2020036) SolutionFor details on how to apply this update, which includes the changes described in this advisory, refer to:https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect.
Affected Applications
kernel-rt
Other References
https://access.redhat.com/errata/RHSA-2021:4646| ID | 69718 |
| Created | Nov 20, 2021 |
| Description Updated |
Dec 20, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Linux |
| Vendor | RedHat |
| Patch | auto |
| Application | kernel-rt |