Lucene search

K
redhatRedHatRHSA-2020:1465
HistoryApr 14, 2020 - 2:34 p.m.

(RHSA-2020:1465) Important: kernel security, bug fix, and enhancement update

2020-04-1414:34:17
access.redhat.com
82

8.8 High

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

50.7%

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow (CVE-2019-17666)

  • Kernel: KVM: export MSR_IA32_TSX_CTRL to guest - incomplete fix for TAA (CVE-2019-11135) (CVE-2019-19338)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • Slow console output with ast (Aspeed) graphics driver (BZ#1780146)

  • VFS: Busy inodes after unmount of loop0 when encountering duplicate directory inodes (BZ#1781158)

  • RHEL 7.7 long I/O stalls with bnx2fc from not masking off scope bits of retry delay value (BZ#1795648)

  • System Crash on vport creation (NPIV on FCoE) (BZ#1796363)

  • A directory on a gfs2 filesystem appears corrupt on nodeB after nodeA renames the directory (BZ#1796430)

  • [GSS] Can’t access the mount point due to possible blocking of i/o on rbd (BZ#1796434)

  • [xfstests]: copy_file_range cause corruption on rhel-7 (BZ#1797966)

  • port show-kabi to python3 (BZ#1806928)

  • top shows super high loads when tuned profile realtime-virtual-host is applied (BZ#1808028)

Enhancement(s):

  • scsi: qla2xxx: Fix panic in qla_dfs_tgt_counters_show’ (BZ#1791594)

  • [Cavium 7.7 Feat] qla2xxx: Update to latest upstream. (BZ#1797503)

8.8 High

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

50.7%