Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2019:3076
HistoryOct 15, 2019 - 3:48 p.m.

(RHSA-2019:3076) Important: kpatch-patch security update

2019-10-1515:48:39
access.redhat.com
84

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.017 Low

EPSS

Percentile

87.6%

JSON

This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.

Security Fix(es):

  • kernel: Use-after-free in __blk_drain_queue() function in block/blk-core.c (CVE-2018-20856)

  • kernel: Heap overflow in mwifiex_update_bss_desc_with_ie function in marvell/mwifiex/scan.c (CVE-2019-3846)

  • hardware: bluetooth: BR/EDR encryption key negotiation attacks (KNOB) (CVE-2019-9506)

  • kernel: Heap overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/marvell/mwifiex/ie.c (CVE-2019-10126)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat7ppc64lekpatch-patch-3_10_0-1062-debuginfo< 1-5.el7kpatch-patch-3_10_0-1062-debuginfo-1-5.el7.ppc64le.rpm
RedHat7x86_64kpatch-patch-3_10_0-1062< 1-5.el7kpatch-patch-3_10_0-1062-1-5.el7.x86_64.rpm
RedHat7ppc64lekpatch-patch-3_10_0-1062_1_1-debuginfo< 1-4.el7kpatch-patch-3_10_0-1062_1_1-debuginfo-1-4.el7.ppc64le.rpm
RedHat7ppc64lekpatch-patch-3_10_0-1062< 1-5.el7kpatch-patch-3_10_0-1062-1-5.el7.ppc64le.rpm
RedHat7ppc64lekpatch-patch-3_10_0-1062_1_1< 1-4.el7kpatch-patch-3_10_0-1062_1_1-1-4.el7.ppc64le.rpm
RedHat7x86_64kpatch-patch-3_10_0-1062_1_1-debuginfo< 1-4.el7kpatch-patch-3_10_0-1062_1_1-debuginfo-1-4.el7.x86_64.rpm
RedHat7x86_64kpatch-patch-3_10_0-1062_1_2-debuginfo< 1-3.el7kpatch-patch-3_10_0-1062_1_2-debuginfo-1-3.el7.x86_64.rpm
RedHat7ppc64lekpatch-patch-3_10_0-1062_1_2< 1-3.el7kpatch-patch-3_10_0-1062_1_2-1-3.el7.ppc64le.rpm
RedHat7x86_64kpatch-patch-3_10_0-1062_1_2< 1-3.el7kpatch-patch-3_10_0-1062_1_2-1-3.el7.x86_64.rpm
RedHat7x86_64kpatch-patch-3_10_0-1062_1_1< 1-4.el7kpatch-patch-3_10_0-1062_1_1-1-4.el7.x86_64.rpm
Rows per page:
1-10 of 121

Related

nessus 65
redhat 20
centos 1
openvas 37
oraclelinux 2
redhatcve 4
veracode 4
prion 4
mscve 1
cert 1
githubexploit 1
f5 4
ubuntucve 4
cve 4
debiancve 4
hp 1
thn 1
cisco 1
huawei 1
malwarebytes 1
fortinet 1
symantec 1
ibm 2
slackware 2
virtuozzo 1
ubuntu 6
lenovo 2
threatpost 1
osv 3
debian 4
cloudfoundry 2
amazon 1
suse 4
mageia 1
androidsecurity 1
fedora 5
photon 1
nessus
nessus
RHEL 7 : kernel-rt (RHSA-2019:3089)
2019-10-17 00:00:00
Scientific Linux Security Update : kernel on SL7.x x86_64 (20191016)
2019-10-21 00:00:00
Oracle Linux 7 : kernel (ELSA-2019-3055)
2019-10-18 00:00:00
redhat
redhat
(RHSA-2019:3055) Important: kernel security and bug fix update
2019-10-15 15:47:02
(RHSA-2019:3089) Important: kernel-rt security and bug fix update
2019-10-16 07:42:15
(RHSA-2020:0698) Important: kpatch-patch security update
2020-03-03 15:42:56
centos
centos
bpftool, kernel, perf, python security update
2019-10-21 17:31:04
openvas
openvas
CentOS Update for bpftool CESA-2019:3055 centos7
2019-10-22 00:00:00
Slackware: Security Advisory (SSA:2019-202-01)
2022-04-21 00:00:00
Ubuntu: Security Advisory (USN-4095-2)
2022-08-26 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2019-10-16 00:00:00
kernel security, bug fix, and enhancement update
2019-11-14 00:00:00
redhatcve
redhatcve
CVE-2018-20856
2020-04-07 16:59:02
CVE-2019-10126
2020-04-09 07:20:45
CVE-2019-9506
2020-01-07 15:44:45
veracode
veracode
Denial Of Service (DoS)
2019-10-16 00:21:15
Use-after-Free
2019-10-16 00:21:14
Brute-force Attack
2019-10-09 00:22:32
prion
prion
Code injection
2019-08-14 17:15:00
Design/Logic Flaw
2019-07-26 05:15:00
Heap overflow
2019-06-14 14:29:00
mscve
mscve
Encryption Key Negotiation of Bluetooth Vulnerability
2019-08-13 07:00:00
cert
cert
Bluetooth BR/EDR supported devices are vulnerable to key negotiation attacks
2019-08-14 00:00:00
githubexploit
githubexploit
Exploit for Use of a Broken or Risky Cryptographic Algorithm in Google Android
2019-08-15 11:54:21
f5
f5
K14673240 : Linux kernel vulnerability CVE-2018-20856
2019-10-15 00:00:00
K95593121 : Linux kernel vulnerability CVE-2019-10126
2019-07-04 00:00:00
K51813353 : Linux Kernel vulnerability CVE-2019-9506
2022-07-21 00:00:00
ubuntucve
ubuntucve
CVE-2018-20856
2019-07-26 00:00:00
CVE-2019-10126
2019-06-14 00:00:00
CVE-2019-9506
2019-08-13 00:00:00
cve
cve
CVE-2018-20856
2019-07-26 05:15:00
CVE-2019-10126
2019-06-14 14:29:00
CVE-2019-9506
2019-08-14 17:15:00
debiancve
debiancve
CVE-2018-20856
2019-07-26 05:15:00
CVE-2019-10126
2019-06-14 14:29:00
CVE-2019-9506
2019-08-14 17:15:00
hp
hp
HPSBPI03634 rev. 1 - HP OfficeJet Mobile and Sprocket Printers KNOB Vulnerability
2019-12-04 00:00:00
thn
thn
New Bluetooth Vulnerability Lets Attackers Spy On Encrypted Connections
2019-08-14 16:47:00
cisco
cisco
Key Negotiation of Bluetooth Vulnerability
2019-08-13 17:00:00
huawei
huawei
Security Advisory - Key Negotiation of Bluetooth (KNOB) Vulnerability
2019-08-28 00:00:00
malwarebytes
malwarebytes
Bluetooth vulnerability can be exploited in Key Negotiation of Bluetooth (KNOB) attacks
2019-08-21 15:56:45
fortinet
fortinet
CVE-2019-9506 Encryption Key Negotiation of Bluetooth (KNOB) Vulnerability
2020-04-23 00:00:00
symantec
symantec
Microsoft Windows Bluetooth CVE-2019-9506 Remote Security Vulnerability
2019-08-13 00:00:00
ibm
ibm
Security Bulletin: IBM Security Guardium is affected by a kernel vulnerability
2020-10-07 16:13:17
Security Bulletin: IBM Security Guardium is affected by a kernel vulnerability
2020-10-07 16:14:07
slackware
slackware
[slackware-security] Slackware 14.2 kernel
2019-07-22 04:08:19
[slackware-security] Slackware 14.2 kernel
2019-08-14 06:12:49
virtuozzo
virtuozzo
Important kernel security update: Virtuozzo ReadyKernel patch 89.2 for Virtuozzo 7.0 and Virtuozzo Infrastructure Platform 2.5, 3.0
2019-10-16 00:00:00
ubuntu
ubuntu
Linux kernel (Xenial HWE) vulnerabilities
2019-08-13 00:00:00
Linux kernel vulnerabilities
2019-08-13 00:00:00
Linux kernel vulnerabilities
2019-08-13 00:00:00
lenovo
lenovo
Encryption Key Negotiation of Bluetooth Vulnerability - Lenovo Support US
2019-08-13 15:18:05
Encryption Key Negotiation of Bluetooth Vulnerability - Lenovo Support US
2019-08-13 15:18:05
threatpost
threatpost
Lenovo Warns of ThinkPad Bugs, One Unpatched
2019-08-14 17:56:01
osv
osv
linux - security update
2019-06-17 00:00:00
linux-4.9 - security update
2019-06-17 00:00:00
linux - security update
2019-06-17 00:00:00
debian
debian
[SECURITY] [DLA 1823-1] linux security update
2019-06-17 23:42:52
[SECURITY] [DLA 1824-1] linux-4.9 security update
2019-06-18 10:23:55
[SECURITY] [DSA 4465-1] linux security update
2019-06-17 18:00:31
cloudfoundry
cloudfoundry
USN-4095-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2019-08-29 00:00:00
USN-4094-1: Linux kernel vulnerabilities | Cloud Foundry
2019-09-30 00:00:00
amazon
amazon
Important: kernel
2018-10-03 02:57:00
suse
suse
Security update for the Linux Kernel (important)
2019-10-10 00:00:00
Security update for the Linux Kernel (important)
2019-10-10 00:00:00
Security update for the Linux Kernel (important)
2019-07-19 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2019-08-13 00:08:18
androidsecurity
androidsecurity
Pixel Update Bulletin—August 2019
2019-08-05 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: kernel-headers-5.1.6-200.fc29
2019-06-06 02:36:24
[SECURITY] Fedora 29 Update: kernel-tools-5.1.6-200.fc29
2019-06-06 02:36:24
[SECURITY] Fedora 30 Update: kernel-5.1.15-300.fc30
2019-06-28 16:34:57
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0175
2019-09-10 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.017 Low

EPSS

Percentile

87.6%

JSON
Related for RHSA-2019:3076
nessus65redhat20centos1openvas37oraclelinux2redhatcve4veracode4prion4mscve1cert1githubexploit1f54ubuntucve4cve4debiancve4hp1thn1cisco1huawei1malwarebytes1fortinet1symantec1ibm2slackware2virtuozzo1ubuntu6lenovo2threatpost1osv3debian4cloudfoundry2amazon1suse4mageia1androidsecurity1fedora5photon1