RedHatRHSA-2019:1350(RHSA-2019:1350) Low: kernel-alt security and bug fix update
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
54.4%
The kernel-alt packages provide the Linux kernel version 4.x.
Security Fix(es):
- kernel: NULL pointer dereference in fs/xfs/libxfs/xfs_inode_buf.c (CVE-2018-13095)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
-
[rhel-alt] Could not remove the function from /sys/kernel/debug/tracing/kprobe_events (BZ#1677171)
-
RHEL-ALT-7.6z: usage of stale vma in do_fault() can lead to a crash (BZ#1679243)
-
RHEL-Alt-7.6 - Backport support for software count cache flush Spectre v2 mitigation (BZ#1692682)
-
RHEL-Alt-7.6 - [LTC Test][SR-IOV]: Guest with VF pass-through crashes during reboot operation in a loop. (kvm) (libvirt/kernel) (BZ#1693146)
-
RHEL-Alt-7.6 - Tolerate new s390x crypto hardware for migration (BZ#1695643)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | ppc64le | kernel-tools-libs-devel | < 4.14.0-115.8.1.el7a | kernel-tools-libs-devel-4.14.0-115.8.1.el7a.ppc64le.rpm |
| RedHat | 7 | ppc64le | kernel-tools-libs | < 4.14.0-115.8.1.el7a | kernel-tools-libs-4.14.0-115.8.1.el7a.ppc64le.rpm |
| RedHat | 7 | ppc64le | kernel-tools | < 4.14.0-115.8.1.el7a | kernel-tools-4.14.0-115.8.1.el7a.ppc64le.rpm |
| RedHat | 7 | s390x | kernel-kdump | < 4.14.0-115.8.1.el7a | kernel-kdump-4.14.0-115.8.1.el7a.s390x.rpm |
| RedHat | 7 | s390x | kernel-headers | < 4.14.0-115.8.1.el7a | kernel-headers-4.14.0-115.8.1.el7a.s390x.rpm |
| RedHat | 7 | s390x | kernel-debug-devel | < 4.14.0-115.8.1.el7a | kernel-debug-devel-4.14.0-115.8.1.el7a.s390x.rpm |
| RedHat | 7 | ppc64le | kernel-debug | < 4.14.0-115.8.1.el7a | kernel-debug-4.14.0-115.8.1.el7a.ppc64le.rpm |
| RedHat | 7 | aarch64 | python-perf | < 4.14.0-115.8.1.el7a | python-perf-4.14.0-115.8.1.el7a.aarch64.rpm |
| RedHat | 7 | ppc64le | kernel | < 4.14.0-115.8.1.el7a | kernel-4.14.0-115.8.1.el7a.ppc64le.rpm |
| RedHat | 7 | aarch64 | kernel-headers | < 4.14.0-115.8.1.el7a | kernel-headers-4.14.0-115.8.1.el7a.aarch64.rpm |
Related
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
54.4%