(RHSA-2020:2831) Important: kernel security and bug fix update

2020-07-0708:14:43

access.redhat.com

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

18.1%

JSON

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

Kernel: vfio: access to disabled MMIO space of some devices may lead to DoS scenario (CVE-2020-12888)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

kernel: hw: provide reporting and microcode mitigation toggle for CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1840674)

OSVersionArchitecturePackageVersionFilename
RedHat7x86_64kernel-tools-libs-devel< 3.10.0-327.89.1.el7kernel-tools-libs-devel-3.10.0-327.89.1.el7.x86_64.rpm
RedHat7x86_64kernel-headers< 3.10.0-327.89.1.el7kernel-headers-3.10.0-327.89.1.el7.x86_64.rpm
RedHat7x86_64kernel-debuginfo-common-x86_64< 3.10.0-327.89.1.el7kernel-debuginfo-common-x86_64-3.10.0-327.89.1.el7.x86_64.rpm
RedHat7noarchkernel-abi-whitelists< 3.10.0-327.89.1.el7kernel-abi-whitelists-3.10.0-327.89.1.el7.noarch.rpm
RedHat7x86_64kernel< 3.10.0-327.89.1.el7kernel-3.10.0-327.89.1.el7.x86_64.rpm
RedHat7x86_64kernel-debug-debuginfo< 3.10.0-327.89.1.el7kernel-debug-debuginfo-3.10.0-327.89.1.el7.x86_64.rpm
RedHat7x86_64python-perf-debuginfo< 3.10.0-327.89.1.el7python-perf-debuginfo-3.10.0-327.89.1.el7.x86_64.rpm
RedHat7x86_64perf-debuginfo< 3.10.0-327.89.1.el7perf-debuginfo-3.10.0-327.89.1.el7.x86_64.rpm
RedHat7x86_64kernel-debug< 3.10.0-327.89.1.el7kernel-debug-3.10.0-327.89.1.el7.x86_64.rpm
RedHat7x86_64perf< 3.10.0-327.89.1.el7perf-3.10.0-327.89.1.el7.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	x86_64	kernel-tools-libs-devel	< 3.10.0-327.89.1.el7	kernel-tools-libs-devel-3.10.0-327.89.1.el7.x86_64.rpm
RedHat	7	x86_64	kernel-headers	< 3.10.0-327.89.1.el7	kernel-headers-3.10.0-327.89.1.el7.x86_64.rpm
RedHat	7	x86_64	kernel-debuginfo-common-x86_64	< 3.10.0-327.89.1.el7	kernel-debuginfo-common-x86_64-3.10.0-327.89.1.el7.x86_64.rpm
RedHat	7	noarch	kernel-abi-whitelists	< 3.10.0-327.89.1.el7	kernel-abi-whitelists-3.10.0-327.89.1.el7.noarch.rpm
RedHat	7	x86_64	kernel	< 3.10.0-327.89.1.el7	kernel-3.10.0-327.89.1.el7.x86_64.rpm
RedHat	7	x86_64	kernel-debug-debuginfo	< 3.10.0-327.89.1.el7	kernel-debug-debuginfo-3.10.0-327.89.1.el7.x86_64.rpm
RedHat	7	x86_64	python-perf-debuginfo	< 3.10.0-327.89.1.el7	python-perf-debuginfo-3.10.0-327.89.1.el7.x86_64.rpm
RedHat	7	x86_64	perf-debuginfo	< 3.10.0-327.89.1.el7	perf-debuginfo-3.10.0-327.89.1.el7.x86_64.rpm
RedHat	7	x86_64	kernel-debug	< 3.10.0-327.89.1.el7	kernel-debug-3.10.0-327.89.1.el7.x86_64.rpm
RedHat	7	x86_64	perf	< 3.10.0-327.89.1.el7	perf-3.10.0-327.89.1.el7.x86_64.rpm