(RHSA-2020:2430) Moderate: kernel security and bug fix update

2020-06-0918:50:15

access.redhat.com

102

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

18.0%

JSON

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: NULL pointer dereference due to KEYCTL_READ on negative key (CVE-2017-12192)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

kernel: hw: provide reporting and microcode mitigation toggle for CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1827185)
Bonding not failing over in mode=1 under 2.6.32-754.28.1 (…27.1 works OK) (BZ#1828604)

OSVersionArchitecturePackageVersionFilename
RedHat6x86_64kernel-debug-debuginfo< 2.6.32-754.30.2.el6kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
RedHat6s390xkernel-kdump< 2.6.32-754.30.2.el6kernel-kdump-2.6.32-754.30.2.el6.s390x.rpm
RedHat6s390xperf-debuginfo< 2.6.32-754.30.2.el6perf-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
RedHat6s390xpython-perf< 2.6.32-754.30.2.el6python-perf-2.6.32-754.30.2.el6.s390x.rpm
RedHat6x86_64kernel-debug-devel< 2.6.32-754.30.2.el6kernel-debug-devel-2.6.32-754.30.2.el6.x86_64.rpm
RedHat6s390xkernel-kdump-debuginfo< 2.6.32-754.30.2.el6kernel-kdump-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
RedHat6x86_64kernel< 2.6.32-754.30.2.el6kernel-2.6.32-754.30.2.el6.x86_64.rpm
RedHat6i686kernel-debug< 2.6.32-754.30.2.el6kernel-debug-2.6.32-754.30.2.el6.i686.rpm
RedHat6i686perf-debuginfo< 2.6.32-754.30.2.el6perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
RedHat6ppc64kernel-debuginfo-common-ppc64< 2.6.32-754.30.2.el6kernel-debuginfo-common-ppc64-2.6.32-754.30.2.el6.ppc64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	6	x86_64	kernel-debug-debuginfo	< 2.6.32-754.30.2.el6	kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
RedHat	6	s390x	kernel-kdump	< 2.6.32-754.30.2.el6	kernel-kdump-2.6.32-754.30.2.el6.s390x.rpm
RedHat	6	s390x	perf-debuginfo	< 2.6.32-754.30.2.el6	perf-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
RedHat	6	s390x	python-perf	< 2.6.32-754.30.2.el6	python-perf-2.6.32-754.30.2.el6.s390x.rpm
RedHat	6	x86_64	kernel-debug-devel	< 2.6.32-754.30.2.el6	kernel-debug-devel-2.6.32-754.30.2.el6.x86_64.rpm
RedHat	6	s390x	kernel-kdump-debuginfo	< 2.6.32-754.30.2.el6	kernel-kdump-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
RedHat	6	x86_64	kernel	< 2.6.32-754.30.2.el6	kernel-2.6.32-754.30.2.el6.x86_64.rpm
RedHat	6	i686	kernel-debug	< 2.6.32-754.30.2.el6	kernel-debug-2.6.32-754.30.2.el6.i686.rpm
RedHat	6	i686	perf-debuginfo	< 2.6.32-754.30.2.el6	perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
RedHat	6	ppc64	kernel-debuginfo-common-ppc64	< 2.6.32-754.30.2.el6	kernel-debuginfo-common-ppc64-2.6.32-754.30.2.el6.ppc64.rpm