Lucene search

K
redhatRedHatRHSA-2020:1372
HistoryApr 07, 2020 - 10:57 a.m.

(RHSA-2020:1372) Moderate: kernel security and bug fix update

2020-04-0710:57:14
access.redhat.com
61

0.002 Low

EPSS

Percentile

56.6%

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: powerpc: local user can read vector registers of other users’ processes via a Facility Unavailable exception (CVE-2019-15030)

  • kernel: powerpc: local user can read vector registers of other users’ processes via an interrupt (CVE-2019-15031)

  • kernel: powerpc: incomplete Spectre-RSB mitigation leads to information exposure (CVE-2019-18660)

  • kernel: use-after-free caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver (CVE-2019-19527)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • [FJ8.1 Bug]: fs/devpts: always delete dcache dentry-s in dput() (BZ#1783959)

  • qla2xxx: call dma_free_coherent with correct size in all cases in qla24xx_sp_unmap (BZ#1788206)

  • qla2xxxx: Firmware update for Gen7 adapter could result in an unusable adapter (BZ#1790350)

  • s390/sclp: Fix bit checked for has_sipl (BZ#1791408)

  • RHEL8.1 - Error output for CPU-MF auxtrace data in perf: (BZ#1792198)

  • [FJ8.0 Bug]: [kernel]: using “kexec -e” to reboot A64FX system causes system panic during the boot of the 2nd kernel (BZ#1792200)

  • Fixup tlbie vs store ordering issue on POWER9 (BZ#1794058)

  • RHEL8.1 - qeth: add safeguards to RX data path (BZ#1794059)

  • RHEL8.1 - STC940:ZZ:Fleet:RHEL:LPM failed with no rmc connection during 6th iteration (ibmvnic) (BZ#1794060)

  • RHEL8.1 - disable trace-imc feature (perf:) (BZ#1794061)

  • [Broadcom RHEL8.2 FEAT]: megaraid_sas driver update request (BZ#1795335)

  • RHEL8.1 pre-Beta - [ FW940 ] [ zz P9 ] kdump fails when XIVE is enabled and dump is trigged from HMC. (BZ#1795337)

  • T10 DIF: OOM observed while running I/O (BZ#1795338)

  • backport fix for potential deadlock relative to snapshot COW throttling (BZ#1796490)

  • Neoverse n1 errata 1542419 “Core may fetch stale instructions from memory and violate ordering” (BZ#1797518)

  • [HPE 8.1 Bug] hpsa: bug fix for reset issue (BZ#1797519)

  • [HPE 8.0 BUG] System crash when reading /sys/block/<dm>/mq/0/cpu_list file (BZ#1797960)

  • kernel: T10 CRC not using hardware-accelerated version from crct10dif_pclmul (BZ#1797961)

  • [FJ8.1 Bug]: Dirty pages remain when write() returns ENOSPC. (BZ#1797962)

  • RHEL 8 - NVMe/FC Fabric Broadcom Autoconnect Script Fails to Reconnect after Controller Reset (BZ#1798381)

  • [RHEL8.2]: Chelsio crypto co-processor Driver (chcr) bugfixes (BZ#1798527)

  • [RHEL8.1][Snapshot-1]LUN discovery says unrecognized (BZ#1801216)

  • 8.2 snap2 kernel incorrectly signed in brew (BZ#1807231)