{"id":"RLSA-2023:3350","summary":"Important: kernel-rt security and bug fix update","details":"The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation (CVE-2023-32233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* smpboot: Scheduler frequency invariance went wobbly, disabling! (BZ#2188316)\n\n* Crash: kernel BUG at kernel/locking/rtmutex.c:1338! (BZ#2188722)\n\n* kernel-rt: update RT source tree to the Rocky Linux-8.8.z0 source tree. (BZ#2196667)","modified":"2026-03-11T06:21:11.222878Z","published":"2023-06-13T19:54:33.297987Z","upstream":["CVE-2023-32233"],"references":[{"type":"ADVISORY","url":"https://errata.rockylinux.org/RLSA-2023:3350"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196105"}],"affected":[{"package":{"name":"kernel-rt","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/kernel-rt?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-477.13.1.rt7.276.el8_8"}],"database_specific":{"yum_repository":"NFV"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2023:3350.json"}}],"schema_version":"1.7.5","credits":[{"name":"Rocky Enterprise Software Foundation"},{"name":"Red Hat"}]}