Lucene search

K
redhatRedHatRHSA-2020:0834
HistoryMar 17, 2020 - 1:09 p.m.

(RHSA-2020:0834) Important: kernel security, bug fix, and enhancement update

2020-03-1713:09:43
access.redhat.com
111

CVSS2

8.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

52.6%

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: Count overflow in FUSE request leading to use-after-free issues. (CVE-2019-11487)

  • kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow (CVE-2019-17666)

  • Kernel: KVM: export MSR_IA32_TSX_CTRL to guest - incomplete fix for TAA (CVE-2019-11135) (CVE-2019-19338)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • RHEL7.7 - default idle mishandles lazy irq state (BZ#1767620)

  • Sanitize MM backported code for RHEL7 (BZ#1768386)

  • A bio with a flush and write to an md device can be lost and never complete by the md layer (BZ#1773482)

  • [FJ7.7 Bug]: [REG] Read from /proc/net/if_inet6 never stop. (BZ#1778084)

  • RHEL7.7 - zfcp: fix reaction on bit error threshold notification (BZ#1778691)

  • RHEL7.7 Snapshot3 - Kernel Panic when running LTP mm test on s390x (BZ#1780035)

  • Leak in cachefiles driver (BZ#1780149)

  • VFS: Busy inodes after unmount of loop0 when encountering duplicate directory inodes (BZ#1781159)

  • Allocation failure in md’s r10buf_pool_alloc function leads to a crash from accessing uninitialized pointers (BZ#1781584)

  • [Hyper-V][RHEL7.6]Hyper-V guest waiting indefinitely for RCU callback when removing a mem cgroup (BZ#1783177)

  • A bnx2fc abort attempt doesn’t timeout from miscalculation causing a huge timeout value (BZ#1784824)

  • scsi: libiscsi: fall back to sendmsg for slab pages (BZ#1784826)

  • RHEL7.7 - kernel: avoid cpu yield in SMT environment (BZ#1787558)

  • RHEL7.6 - kernel: jump label transformation performance (BZ#1787559)

  • drm radeon power management warning on VERDE cards (BZ#1789744)

  • Duplicate enum value in include/linux/blk_types.h (BZ#1791781)

  • [HPE 7.7 Bug] hpsa: bug fix for reset issue (BZ#1791782)

  • System Crash on vport creation (NPIV on FCoE) (BZ#1791825)

  • [Hyper-V][RHEL 7.8] Four Mellanox Patches needed for kernels that have that have SRIOV (BZ#1792371)

  • WARNING: CPU: 7 PID: 2049 at mm/slub.c:2296 ___slab_alloc+0x508/0x520 (BZ#1793086)

  • fio with ioengine=pmemblk on fsdax failed (BZ#1793088)

  • [HPE 7.7 Bug] hpsa: bug fixes (BZ#1793579)

  • perf top -p PID does not show anything (BZ#1793581)

  • Delay in RT task scheduled. Incorrect nr_scheduled value. (BZ#1796261)

  • A directory on a gfs2 filesystem appears corrupt on nodeB after nodeA renames the directory (BZ#1796431)

  • ixgbevf interface goes down on hypervisor and causes outage (BZ#1796798)

  • Can’t enable virt-ssbd on some AMD hosts (BZ#1797511)

  • [HPEMC 7.8 BUG] x86/boot/64: Avoid mapping reserved ranges in early page tables (BZ#1798163)

Enhancement(s):

  • scsi: qla2xxx: Fix panic in qla_dfs_tgt_counters_show’ (BZ#1791595)

CVSS2

8.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

52.6%