Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2023:4819-1 Issue Date: 2023-08-30 CVE Numbers: CVE-2023-35788 CVE-2023-20593 -- Security Fix(es): * kernel: cls_flower: out-of-bounds write in fl_set_geneve_opt() (CVE-2023-35788) * hw: amd: Cross-Process Information Leak (CVE-2023-20593) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE Bug Fix(es): * nf_conntrack causing nfs to stall * Request to backport upstream commit 5e2d2cc2588b, 26a8b12747c9, and e98fa02c4f2e for SL 7.9.z * Fix soft lockup happens in gfs2_dir_get_hash_table() -- SL7 x86_64 bpftool-3.10.0-1160.99.1.el7.x86_64.rpm bpftool-debuginfo-3.10.0-1160.99.1.el7.x86_64.rpm kernel-3.10.0-1160.99.1.el7.x86_64.rpm kernel-debug-3.10.0-1160.99.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.99.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-1160.99.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.99.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.99.1.el7.x86_64.rpm kernel-devel-3.10.0-1160.99.1.el7.x86_64.rpm kernel-headers-3.10.0-1160.99.1.el7.x86_64.rpm kernel-tools-3.10.0-1160.99.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.99.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-1160.99.1.el7.x86_64.rpm perf-3.10.0-1160.99.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.99.1.el7.x86_64.rpm python-perf-3.10.0-1160.99.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.99.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-1160.99.1.el7.x86_64.rpm noarch kernel-abi-whitelists-3.10.0-1160.99.1.el7.noarch.rpm kernel-doc-3.10.0-1160.99.1.el7.noarch.rpm - Scientific Linux Development Team