Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2019:3089
HistoryOct 16, 2019 - 7:42 a.m.

(RHSA-2019:3089) Important: kernel-rt security and bug fix update

2019-10-1607:42:15
access.redhat.com
92

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.017 Low

EPSS

Percentile

87.6%

JSON

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

  • kernel: Use-after-free in __blk_drain_queue() function in block/blk-core.c (CVE-2018-20856)

  • kernel: Heap overflow in mwifiex_update_bss_desc_with_ie function in marvell/mwifiex/scan.c (CVE-2019-3846)

  • hardware: bluetooth: BR/EDR encryption key negotiation attacks (KNOB) (CVE-2019-9506)

  • kernel: Heap overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/marvell/mwifiex/ie.c (CVE-2019-10126)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • kernel-rt: update to the RHEL7.7.z batch#2 source tree (BZ#1748570)
OSVersionArchitecturePackageVersionFilename
RedHat7x86_64kernel-rt-debug-devel< 3.10.0-1062.4.1.rt56.1027.el7kernel-rt-debug-devel-3.10.0-1062.4.1.rt56.1027.el7.x86_64.rpm
RedHat7x86_64kernel-rt-debug-debuginfo< 3.10.0-1062.4.1.rt56.1027.el7kernel-rt-debug-debuginfo-3.10.0-1062.4.1.rt56.1027.el7.x86_64.rpm
RedHat7x86_64kernel-rt-devel< 3.10.0-1062.4.1.rt56.1027.el7kernel-rt-devel-3.10.0-1062.4.1.rt56.1027.el7.x86_64.rpm
RedHat7x86_64kernel-rt-debug-kvm< 3.10.0-1062.4.1.rt56.1027.el7kernel-rt-debug-kvm-3.10.0-1062.4.1.rt56.1027.el7.x86_64.rpm
RedHat7x86_64kernel-rt-trace-kvm< 3.10.0-1062.4.1.rt56.1027.el7kernel-rt-trace-kvm-3.10.0-1062.4.1.rt56.1027.el7.x86_64.rpm
RedHat7x86_64kernel-rt< 3.10.0-1062.4.1.rt56.1027.el7kernel-rt-3.10.0-1062.4.1.rt56.1027.el7.x86_64.rpm
RedHat7x86_64kernel-rt-trace-debuginfo< 3.10.0-1062.4.1.rt56.1027.el7kernel-rt-trace-debuginfo-3.10.0-1062.4.1.rt56.1027.el7.x86_64.rpm
RedHat7x86_64kernel-rt-debuginfo< 3.10.0-1062.4.1.rt56.1027.el7kernel-rt-debuginfo-3.10.0-1062.4.1.rt56.1027.el7.x86_64.rpm
RedHat7x86_64kernel-rt-debug< 3.10.0-1062.4.1.rt56.1027.el7kernel-rt-debug-3.10.0-1062.4.1.rt56.1027.el7.x86_64.rpm
RedHat7x86_64kernel-rt-trace-devel< 3.10.0-1062.4.1.rt56.1027.el7kernel-rt-trace-devel-3.10.0-1062.4.1.rt56.1027.el7.x86_64.rpm
Rows per page:
1-10 of 171

Related

nessus 74
redhat 21
openvas 22
centos 1
oraclelinux 2
redhatcve 4
veracode 4
prion 4
cve 4
debiancve 4
githubexploit 1
cert 1
mscve 1
f5 4
ubuntucve 4
symantec 1
hp 1
thn 1
cisco 1
huawei 1
malwarebytes 1
fortinet 1
ibm 2
slackware 2
virtuozzo 1
ubuntu 6
lenovo 2
osv 3
debian 4
threatpost 3
cloudfoundry 2
amazon 1
suse 4
mageia 1
androidsecurity 1
fedora 8
photon 1
nessus
nessus
Oracle Linux 7 : kernel (ELSA-2019-3055)
2019-10-18 00:00:00
RHEL 7 : kpatch-patch (RHSA-2019:3076)
2019-10-16 00:00:00
RHEL 7 : kernel (RHSA-2019:3055)
2019-10-16 00:00:00
redhat
redhat
(RHSA-2019:3055) Important: kernel security and bug fix update
2019-10-15 15:47:02
(RHSA-2019:3076) Important: kpatch-patch security update
2019-10-15 15:48:39
(RHSA-2020:0698) Important: kpatch-patch security update
2020-03-03 15:42:56
openvas
openvas
CentOS Update for bpftool CESA-2019:3055 centos7
2019-10-22 00:00:00
Ubuntu Update for linux USN-4093-1
2019-08-14 00:00:00
Ubuntu Update for linux USN-4095-1
2019-08-14 00:00:00
centos
centos
bpftool, kernel, perf, python security update
2019-10-21 17:31:04
oraclelinux
oraclelinux
kernel security and bug fix update
2019-10-16 00:00:00
kernel security, bug fix, and enhancement update
2019-11-14 00:00:00
redhatcve
redhatcve
CVE-2018-20856
2020-04-07 16:59:02
CVE-2019-10126
2020-04-09 07:20:45
CVE-2019-9506
2020-01-07 15:44:45
veracode
veracode
Denial Of Service (DoS)
2019-10-16 00:21:15
Use-after-Free
2019-10-16 00:21:14
Brute-force Attack
2019-10-09 00:22:32
prion
prion
Design/Logic Flaw
2019-07-26 05:15:00
Code injection
2019-08-14 17:15:00
Heap overflow
2019-06-14 14:29:00
cve
cve
CVE-2018-20856
2019-07-26 05:15:00
CVE-2019-10126
2019-06-14 14:29:00
CVE-2019-9506
2019-08-14 17:15:00
debiancve
debiancve
CVE-2018-20856
2019-07-26 05:15:00
CVE-2019-10126
2019-06-14 14:29:00
CVE-2019-9506
2019-08-14 17:15:00
githubexploit
githubexploit
Exploit for Use of a Broken or Risky Cryptographic Algorithm in Google Android
2019-08-15 11:54:21
cert
cert
Bluetooth BR/EDR supported devices are vulnerable to key negotiation attacks
2019-08-14 00:00:00
mscve
mscve
Encryption Key Negotiation of Bluetooth Vulnerability
2019-08-13 07:00:00
f5
f5
K14673240 : Linux kernel vulnerability CVE-2018-20856
2019-10-15 00:00:00
K95593121 : Linux kernel vulnerability CVE-2019-10126
2019-07-04 00:00:00
K51813353 : Linux Kernel vulnerability CVE-2019-9506
2022-07-21 00:00:00
ubuntucve
ubuntucve
CVE-2018-20856
2019-07-26 00:00:00
CVE-2019-10126
2019-06-14 00:00:00
CVE-2019-9506
2019-08-13 00:00:00
symantec
symantec
Microsoft Windows Bluetooth CVE-2019-9506 Remote Security Vulnerability
2019-08-13 00:00:00
hp
hp
HPSBPI03634 rev. 1 - HP OfficeJet Mobile and Sprocket Printers KNOB Vulnerability
2019-12-04 00:00:00
thn
thn
New Bluetooth Vulnerability Lets Attackers Spy On Encrypted Connections
2019-08-14 16:47:00
cisco
cisco
Key Negotiation of Bluetooth Vulnerability
2019-08-13 17:00:00
huawei
huawei
Security Advisory - Key Negotiation of Bluetooth (KNOB) Vulnerability
2019-08-28 00:00:00
malwarebytes
malwarebytes
Bluetooth vulnerability can be exploited in Key Negotiation of Bluetooth (KNOB) attacks
2019-08-21 15:56:45
fortinet
fortinet
CVE-2019-9506 Encryption Key Negotiation of Bluetooth (KNOB) Vulnerability
2020-04-23 00:00:00
ibm
ibm
Security Bulletin: IBM Security Guardium is affected by a kernel vulnerability
2020-10-07 16:13:17
Security Bulletin: IBM Security Guardium is affected by a kernel vulnerability
2020-10-07 16:14:07
slackware
slackware
[slackware-security] Slackware 14.2 kernel
2019-07-22 04:08:19
[slackware-security] Slackware 14.2 kernel
2019-08-14 06:12:49
virtuozzo
virtuozzo
Important kernel security update: Virtuozzo ReadyKernel patch 89.2 for Virtuozzo 7.0 and Virtuozzo Infrastructure Platform 2.5, 3.0
2019-10-16 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2019-08-13 00:00:00
Linux kernel (Xenial HWE) vulnerabilities
2019-08-13 00:00:00
Linux kernel vulnerabilities
2019-08-13 00:00:00
lenovo
lenovo
Encryption Key Negotiation of Bluetooth Vulnerability - Lenovo Support US
2019-08-13 15:18:05
Encryption Key Negotiation of Bluetooth Vulnerability - Lenovo Support US
2019-08-13 15:18:05
osv
osv
linux - security update
2019-06-17 00:00:00
linux-4.9 - security update
2019-06-17 00:00:00
linux - security update
2019-06-17 00:00:00
debian
debian
[SECURITY] [DLA 1823-1] linux security update
2019-06-17 23:42:52
[SECURITY] [DLA 1824-1] linux-4.9 security update
2019-06-18 10:23:55
[SECURITY] [DSA 4465-1] linux security update
2019-06-17 18:00:31
threatpost
threatpost
Lenovo Warns of ThinkPad Bugs, One Unpatched
2019-08-14 17:56:01
Cisco Patches Six Critical Bugs in UCS Gear and Switches
2019-08-21 17:38:24
Shades of BlueKeep: Wormable Remote Desktop Bugs Top August Patch Tuesday List
2019-08-13 20:29:10
cloudfoundry
cloudfoundry
USN-4095-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2019-08-29 00:00:00
USN-4094-1: Linux kernel vulnerabilities | Cloud Foundry
2019-09-30 00:00:00
amazon
amazon
Important: kernel
2018-10-03 02:57:00
suse
suse
Security update for the Linux Kernel (important)
2019-10-10 00:00:00
Security update for the Linux Kernel (important)
2019-10-10 00:00:00
Security update for the Linux Kernel (important)
2019-07-19 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2019-08-13 00:08:18
androidsecurity
androidsecurity
Pixel Update Bulletin—August 2019
2019-08-05 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: kernel-headers-5.1.6-200.fc29
2019-06-06 02:36:24
[SECURITY] Fedora 29 Update: kernel-tools-5.1.6-200.fc29
2019-06-06 02:36:24
[SECURITY] Fedora 30 Update: kernel-headers-5.1.7-300.fc30
2019-06-10 00:53:26
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0175
2019-09-10 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.017 Low

EPSS

Percentile

87.6%

JSON
Related for RHSA-2019:3089
nessus74redhat21openvas22centos1oraclelinux2redhatcve4veracode4prion4cve4debiancve4githubexploit1cert1mscve1f54ubuntucve4symantec1hp1thn1cisco1huawei1malwarebytes1fortinet1ibm2slackware2virtuozzo1ubuntu6lenovo2osv3debian4threatpost3cloudfoundry2amazon1suse4mageia1androidsecurity1fedora8photon1