@sns
I understand that you have a RHEL 9.3 VM in Azure and want to understand which updates are needed to make sure that you are not impacted by RHEL CVE-2023-1998.
Information about this vulnerability and the patches needed are included in the link I provided. RHEL 9.3 has a newer kernel version (5.14.0-362.8.1) that is already patched for CVE-2023-1998. This vulnerability was fixed in kernel version 5.14.0-284.25.1. Therefore, any kernel version higher than that should be safe from this vulnerability. You can check your kernel version by running the command uname -r
in the terminal.
Microsoft Azure also has deployed mitigation across all of our servers. You can read more about this here: Guidance for mitigating silicon based micro-architectural and speculative execution side-channel vulnerabilities.
Hope this answers your questions. Let me know if you have any more questions or concerns.
If you still have questions, please let us know in the "comments" and we would be happy to help you. Comment is the fastest way of notifying the experts.
If the answer has been helpful, we appreciate hearing from you and would love to help others who may have the same question. Accepting answers helps increase visibility of this question for other members of the Microsoft Q&A community.
Thank you for helping to improve Microsoft Q&A!