8.3 High
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
7.9 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:M/Au:N/C:C/I:C/A:C
0.012 Low
EPSS
Percentile
85.3%
The kernel-alt packages provide the Linux kernel version 4.x.
Security Fix(es):
kernel: MIDI driver race condition leads to a double-free (CVE-2018-10902)
kernel: Use-after-free in __blk_drain_queue() function in block/blk-core.c (CVE-2018-20856)
kernel: brcmfmac heap buffer overflow in brcmf_wowl_nd_results (CVE-2019-9500)
hardware: bluetooth: BR/EDR encryption key negotiation attacks (KNOB) (CVE-2019-9506)
kernel: a NULL pointer dereference in drivers/scsi/megaraid/megaraid_sas_base.c leading to DoS (CVE-2019-11810)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
kernel modules pkey and paes_s390 are not available (BZ#1719192)
pkey: Indicate old mkvp only if old and curr. mkvp are different (BZ#1720621)
System dropped into Mon running softboots Exception: 501 (Hardware Interrupt) at c00000000000a814 replay_interrupt_return+0x0/0x4 (ipmi) (BZ#1737563)
kernel: jump label transformation performance (BZ#1739143)
Backport i40e MDD detection removal for PFs (BZ#1747618)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 7 | s390x | kernel-debug-debuginfo | < 4.14.0-115.14.1.el7a | kernel-debug-debuginfo-4.14.0-115.14.1.el7a.s390x.rpm |
RedHat | 7 | aarch64 | perf | < 4.14.0-115.14.1.el7a | perf-4.14.0-115.14.1.el7a.aarch64.rpm |
RedHat | 7 | s390x | perf | < 4.14.0-115.14.1.el7a | perf-4.14.0-115.14.1.el7a.s390x.rpm |
RedHat | 7 | ppc64le | kernel-devel | < 4.14.0-115.14.1.el7a | kernel-devel-4.14.0-115.14.1.el7a.ppc64le.rpm |
RedHat | 7 | s390x | kernel-kdump | < 4.14.0-115.14.1.el7a | kernel-kdump-4.14.0-115.14.1.el7a.s390x.rpm |
RedHat | 7 | ppc64le | kernel-tools-libs-devel | < 4.14.0-115.14.1.el7a | kernel-tools-libs-devel-4.14.0-115.14.1.el7a.ppc64le.rpm |
RedHat | 7 | s390x | perf-debuginfo | < 4.14.0-115.14.1.el7a | perf-debuginfo-4.14.0-115.14.1.el7a.s390x.rpm |
RedHat | 7 | s390x | kernel-kdump-devel | < 4.14.0-115.14.1.el7a | kernel-kdump-devel-4.14.0-115.14.1.el7a.s390x.rpm |
RedHat | 7 | aarch64 | python-perf-debuginfo | < 4.14.0-115.14.1.el7a | python-perf-debuginfo-4.14.0-115.14.1.el7a.aarch64.rpm |
RedHat | 7 | aarch64 | kernel | < 4.14.0-115.14.1.el7a | kernel-4.14.0-115.14.1.el7a.aarch64.rpm |
8.3 High
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
7.9 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:M/Au:N/C:C/I:C/A:C
0.012 Low
EPSS
Percentile
85.3%