Lucene search

K
redhatRedHatRHSA-2020:0592
HistoryFeb 25, 2020 - 11:32 a.m.

(RHSA-2020:0592) Important: kernel security, bug fix, and enhancement update

2020-02-2511:32:29
access.redhat.com
45

0.012 Low

EPSS

Percentile

85.2%

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: use-after-free in fs/xfs/xfs_super.c (CVE-2018-20976)

  • kernel: insufficient input validation in kernel mode driver in Intel i915 graphics leads to privilege escalation (CVE-2019-11085)

  • kernel: heap-based buffer overflow in mwifiex_process_country_ie() function in drivers/net/wireless/marvell/mwifiex/sta_ioctl.c (CVE-2019-14895)

  • kernel: buffer overflow in cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c (CVE-2019-17133)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • core: backports from upstream (BZ#1794372)

Enhancement(s):

  • Selective backport: perf: Sync with upstream v4.16 (BZ#1782750)