Security Fix(es):

• kernel: bpf: Incorrect verifier pruning leads to unsafe code paths being incorrectly marked as safe (CVE-2023-2163)
• kernel: tun: bugs for oversize packet when napi frags enabled in tun_napi_alloc_frags (CVE-2023-3812)
• kernel: use after free in nvmet_tcp_free_crypto in NVMe (CVE-2023-5178)
• kernel: use-after-free due to race condition occurring in dvb_register_device() (CVE-2022-45884)
• kernel: use-after-free due to race condition occurring in dvb_net.c (CVE-2022-45886)
• kernel: use-after-free due to race condition occurring in dvb_ca_en50221.c (CVE-2022-45919)
• kernel: use-after-free in smb2_is_status_io_timeout() (CVE-2023-1192)

Bug Fix(es):

• Random delay receiving packets after bringing up VLAN on top of VF with vf-vlan-pruning enabled (BZ#2240750)
• bpf_jit_limit hit again (BZ#2243011)
• HPE Edgeline 920t resets during kdump context when ice driver is loaded and when system is booted with intel_iommu=on iommu=pt (BZ#2244625)

https://access.redhat.com/errata/product/479/ver=/rhel---8/x86_64/RHSA-2023:7549