Amazon Linux 2 Security Advisory: ALASLIVEPATCH-2022-077
Advisory Release Date: 2022-06-06 17:50 Pacific
Advisory Updated Date: 2022-06-09 19:17 Pacific
Severity:
Medium
Issue Overview:
io_uring: always use original task when preparing req identity (CVE-2022-1786)
Affected Packages:
kernel-livepatch-5.10.102-99.473, kernel-livepatch-5.10.106-102.504, kernel-livepatch-5.10.109-104.500, kernel-livepatch-5.10.112-108.499
Issue Correction:
Please ensure you have live patching enabled.
Run yum update kernel-livepatch-5.10.102-99.473 to update your system.
Run yum update kernel-livepatch-5.10.106-102.504 to update your system.
Run yum update kernel-livepatch-5.10.109-104.500 to update your system.
Run yum update kernel-livepatch-5.10.112-108.499 to update your system.
New Packages:
aarch64:
kernel-livepatch-5.10.102-99.473-1.0-2.amzn2.aarch64
kernel-livepatch-5.10.102-99.473-debuginfo-1.0-2.amzn2.aarch64
kernel-livepatch-5.10.106-102.504-1.0-2.amzn2.aarch64
kernel-livepatch-5.10.106-102.504-debuginfo-1.0-2.amzn2.aarch64
kernel-livepatch-5.10.109-104.500-1.0-2.amzn2.aarch64
kernel-livepatch-5.10.109-104.500-debuginfo-1.0-2.amzn2.aarch64
kernel-livepatch-5.10.112-108.499-1.0-2.amzn2.aarch64
kernel-livepatch-5.10.112-108.499-debuginfo-1.0-2.amzn2.aarch64
src:
kernel-livepatch-5.10.102-99.473-1.0-2.amzn2.src
kernel-livepatch-5.10.106-102.504-1.0-2.amzn2.src
kernel-livepatch-5.10.109-104.500-1.0-2.amzn2.src
kernel-livepatch-5.10.112-108.499-1.0-2.amzn2.src
x86_64:
kernel-livepatch-5.10.102-99.473-1.0-2.amzn2.x86_64
kernel-livepatch-5.10.102-99.473-debuginfo-1.0-2.amzn2.x86_64
kernel-livepatch-5.10.106-102.504-1.0-2.amzn2.x86_64
kernel-livepatch-5.10.106-102.504-debuginfo-1.0-2.amzn2.x86_64
kernel-livepatch-5.10.109-104.500-1.0-2.amzn2.x86_64
kernel-livepatch-5.10.109-104.500-debuginfo-1.0-2.amzn2.x86_64
kernel-livepatch-5.10.112-108.499-1.0-2.amzn2.x86_64
kernel-livepatch-5.10.112-108.499-debuginfo-1.0-2.amzn2.x86_64