9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.3 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:C/I:C/A:C
0.017 Low
EPSS
Percentile
87.6%
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
kernel: double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c (CVE-2017-18595)
kernel: Heap overflow in mwifiex_update_bss_desc_with_ie function in marvell/mwifiex/scan.c (CVE-2019-3846)
kernel: Heap overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/marvell/mwifiex/ie.c (CVE-2019-10126)
kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c (CVE-2019-19768)
Kernel: NetLabel: null pointer dereference while receiving CIPSO packet with null category may cause kernel panic (CVE-2020-10711)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
Observed a memory leak while using dm-multipath (BZ#1812935)
Backport: Guest microcode version mismatch on secondary processors (BZ#1814001)
dm-multipath high load backport incorrect (BZ#1814533)
ixgbe reports “Detected Tx Unit Hang” with adapter reset on RHEL 7 (BZ#1816990)
RHEL7: block mq hang of a blk_mq_freeze_queue_wait(), which waits for a zero of a q_usage_counter, which never happens (BZ#1824543)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 7 | x86_64 | python-perf-debuginfo | < 3.10.0-957.54.1.el7 | python-perf-debuginfo-3.10.0-957.54.1.el7.x86_64.rpm |
RedHat | 7 | ppc64le | kernel-tools-libs | < 3.10.0-957.54.1.el7 | kernel-tools-libs-3.10.0-957.54.1.el7.ppc64le.rpm |
RedHat | 7 | ppc64le | kernel-debug | < 3.10.0-957.54.1.el7 | kernel-debug-3.10.0-957.54.1.el7.ppc64le.rpm |
RedHat | 7 | ppc64 | kernel-bootwrapper | < 3.10.0-957.54.1.el7 | kernel-bootwrapper-3.10.0-957.54.1.el7.ppc64.rpm |
RedHat | 7 | ppc64 | perf | < 3.10.0-957.54.1.el7 | perf-3.10.0-957.54.1.el7.ppc64.rpm |
RedHat | 7 | s390x | kernel-devel | < 3.10.0-957.54.1.el7 | kernel-devel-3.10.0-957.54.1.el7.s390x.rpm |
RedHat | 7 | ppc64 | kernel-headers | < 3.10.0-957.54.1.el7 | kernel-headers-3.10.0-957.54.1.el7.ppc64.rpm |
RedHat | 7 | ppc64le | python-perf-debuginfo | < 3.10.0-957.54.1.el7 | python-perf-debuginfo-3.10.0-957.54.1.el7.ppc64le.rpm |
RedHat | 7 | ppc64 | kernel-devel | < 3.10.0-957.54.1.el7 | kernel-devel-3.10.0-957.54.1.el7.ppc64.rpm |
RedHat | 7 | s390x | kernel-kdump-debuginfo | < 3.10.0-957.54.1.el7 | kernel-kdump-debuginfo-3.10.0-957.54.1.el7.s390x.rpm |
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.3 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:C/I:C/A:C
0.017 Low
EPSS
Percentile
87.6%