(RHSA-2019:2169) Important: linux-firmware security, bug fix, and enhancement update

2019-08-0608:09:24

access.redhat.com

170

6.8 Medium

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

4.3 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:M/Au:N/C:P/I:P/A:N

0.002 Low

EPSS

Percentile

61.6%

JSON

The linux-firmware packages contain all of the firmware files that are required by various devices to operate.

Security Fix(es):

kernel: Bluetooth implementations may not sufficiently validate elliptic curve parameters during Diffie-Hellman key exchange (CVE-2018-5383)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.7 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat7noarchiwl3160-firmware< 22.0.7.0-72.el7iwl3160-firmware-22.0.7.0-72.el7.noarch.rpm
RedHat7noarchiwl7260-firmware< 22.0.7.0-72.el7iwl7260-firmware-22.0.7.0-72.el7.noarch.rpm
RedHat7noarchlinux-firmware< 20190429-72.gitddde598.el7linux-firmware-20190429-72.gitddde598.el7.noarch.rpm
RedHat7noarchiwl100-firmware< 39.31.5.1-72.el7iwl100-firmware-39.31.5.1-72.el7.noarch.rpm
RedHat7noarchiwl3945-firmware< 15.32.2.9-72.el7iwl3945-firmware-15.32.2.9-72.el7.noarch.rpm
RedHat7noarchiwl4965-firmware< 228.61.2.24-72.el7iwl4965-firmware-228.61.2.24-72.el7.noarch.rpm
RedHat7noarchiwl6000-firmware< 9.221.4.1-72.el7iwl6000-firmware-9.221.4.1-72.el7.noarch.rpm
RedHat7noarchiwl2030-firmware< 18.168.6.1-72.el7iwl2030-firmware-18.168.6.1-72.el7.noarch.rpm
RedHat7noarchiwl135-firmware< 18.168.6.1-72.el7iwl135-firmware-18.168.6.1-72.el7.noarch.rpm
RedHat7noarchiwl2000-firmware< 18.168.6.1-72.el7iwl2000-firmware-18.168.6.1-72.el7.noarch.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	noarch	iwl3160-firmware	< 22.0.7.0-72.el7	iwl3160-firmware-22.0.7.0-72.el7.noarch.rpm
RedHat	7	noarch	iwl7260-firmware	< 22.0.7.0-72.el7	iwl7260-firmware-22.0.7.0-72.el7.noarch.rpm
RedHat	7	noarch	linux-firmware	< 20190429-72.gitddde598.el7	linux-firmware-20190429-72.gitddde598.el7.noarch.rpm
RedHat	7	noarch	iwl100-firmware	< 39.31.5.1-72.el7	iwl100-firmware-39.31.5.1-72.el7.noarch.rpm
RedHat	7	noarch	iwl3945-firmware	< 15.32.2.9-72.el7	iwl3945-firmware-15.32.2.9-72.el7.noarch.rpm
RedHat	7	noarch	iwl4965-firmware	< 228.61.2.24-72.el7	iwl4965-firmware-228.61.2.24-72.el7.noarch.rpm
RedHat	7	noarch	iwl6000-firmware	< 9.221.4.1-72.el7	iwl6000-firmware-9.221.4.1-72.el7.noarch.rpm
RedHat	7	noarch	iwl2030-firmware	< 18.168.6.1-72.el7	iwl2030-firmware-18.168.6.1-72.el7.noarch.rpm
RedHat	7	noarch	iwl135-firmware	< 18.168.6.1-72.el7	iwl135-firmware-18.168.6.1-72.el7.noarch.rpm
RedHat	7	noarch	iwl2000-firmware	< 18.168.6.1-72.el7	iwl2000-firmware-18.168.6.1-72.el7.noarch.rpm