7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.01 Low
EPSS
Percentile
83.2%
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
kernel: double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c (CVE-2017-18595)
kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c (CVE-2019-19768)
Kernel: NetLabel: null pointer dereference while receiving CIPSO packet with null category may cause kernel panic (CVE-2020-10711)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
Delay in RT task scheduled. Incorrect nr_scheduled value. (BZ#1796262)
ixgbevf interface goes down on hypervisor and causes outage (BZ#1796799)
kernel: UAF in cdev_put() when a PTP device is removed while its chardev is open (BZ#1798396)
[HPEMC RHEL 7.7 RHEL 7.8 REGRESSION] kernel not populating numa_nod in /sys/devices… for PMEM (BZ#1801699)
Unable to exclude files from auditing (BZ#1806430)
DNAT’d packet is not unmangled upon reply on openshift node (BZ#1806447)
top shows super high loads when tuned profile realtime-virtual-host is applied (BZ#1808030)
[RHEL 7.9] mdraid devices do not autocorrect read errors on parity blocks (BZ#1810062)
Observed a memory leak while using dm-multipath (BZ#1812937)
RHEL7.8: megaraid_sas: MSIx allocation fails in resume path (BZ#1813249)
Backport: Guest microcode version mismatch on secondary processors (BZ#1814003)
dm-multipath high load backport incorrect (BZ#1814537)
qla2xxx: Urgent driver fix needed. Initiator does not relogin to target after receiving an explicit logout (BZ#1815596)
Potential deadlock in iscsi_if_rx func (BZ#1817497)
High iSCSI read latency resolved by ‘tcp: implement coalescing on backlog queue’ (BZ#1817499)
kdump: crashkernel=xM,low is likely to fail when x is big enough (BZ#1817502)
[RHEL7.8][Azure]Commits to resolve high network latency (BZ#1817935)
net_sched: remove a bogus warning in hfsc (BZ#1821262)
NETDEV WATCHDOG: enp3s0 (r8169): transmit queue 0 timed out (BZ#1822548)
BUG: unable to handle kernel NULL pointer dereference at fl_dump (BZ#1824548)
[ Marvell 7.9] update qla2xxx driver with critical bug fixes (BZ#1827274)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 7 | ppc64le | python-perf-debuginfo | < 3.10.0-1127.8.2.el7 | python-perf-debuginfo-3.10.0-1127.8.2.el7.ppc64le.rpm |
RedHat | 7 | ppc64 | kernel-debuginfo | < 3.10.0-1127.8.2.el7 | kernel-debuginfo-3.10.0-1127.8.2.el7.ppc64.rpm |
RedHat | 7 | ppc64 | kernel-headers | < 3.10.0-1127.8.2.el7 | kernel-headers-3.10.0-1127.8.2.el7.ppc64.rpm |
RedHat | 7 | ppc64 | kernel | < 3.10.0-1127.8.2.el7 | kernel-3.10.0-1127.8.2.el7.ppc64.rpm |
RedHat | 7 | ppc64 | kernel-debug-devel | < 3.10.0-1127.8.2.el7 | kernel-debug-devel-3.10.0-1127.8.2.el7.ppc64.rpm |
RedHat | 7 | x86_64 | kernel-debug | < 3.10.0-1127.8.2.el7 | kernel-debug-3.10.0-1127.8.2.el7.x86_64.rpm |
RedHat | 7 | s390x | kernel-debuginfo | < 3.10.0-1127.8.2.el7 | kernel-debuginfo-3.10.0-1127.8.2.el7.s390x.rpm |
RedHat | 7 | noarch | kernel-doc | < 3.10.0-1127.8.2.el7 | kernel-doc-3.10.0-1127.8.2.el7.noarch.rpm |
RedHat | 7 | ppc64le | kernel-bootwrapper | < 3.10.0-1127.8.2.el7 | kernel-bootwrapper-3.10.0-1127.8.2.el7.ppc64le.rpm |
RedHat | 7 | ppc64le | kernel-tools-libs | < 3.10.0-1127.8.2.el7 | kernel-tools-libs-3.10.0-1127.8.2.el7.ppc64le.rpm |
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.01 Low
EPSS
Percentile
83.2%