8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
54.6%
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
kernel: buffer overflow in mwifiex_cmd_append_vsie_tlv function in drivers/net/wireless/marvell/mwifiex/scan.c (CVE-2020-12653)
kernel: heap-based buffer overflow in mwifiex_ret_wmm_get_status function in drivers/net/wireless/marvell/mwifiex/wmm.c (CVE-2020-12654)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
kernel: provide infrastructure to support dual-signing of the kernel (foundation to help address CVE-2020-10713) (BZ#1837428)
RHEL7.7 - Request: retrofit kernel commit f82b4b6 to RHEL 7.7/7.8 3.10 kernels. (BZ#1838601)
Possible race condition updating the cfg structure in __assign_irq_vector. (BZ#1854553)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 7 | s390x | python-perf-debuginfo | < 3.10.0-1062.31.2.el7 | python-perf-debuginfo-3.10.0-1062.31.2.el7.s390x.rpm |
RedHat | 7 | s390x | perf | < 3.10.0-1062.31.2.el7 | perf-3.10.0-1062.31.2.el7.s390x.rpm |
RedHat | 7 | ppc64 | kernel-debug-devel | < 3.10.0-1062.31.2.el7 | kernel-debug-devel-3.10.0-1062.31.2.el7.ppc64.rpm |
RedHat | 7 | ppc64 | kernel-debuginfo-common-ppc64 | < 3.10.0-1062.31.2.el7 | kernel-debuginfo-common-ppc64-3.10.0-1062.31.2.el7.ppc64.rpm |
RedHat | 7 | x86_64 | kernel-devel | < 3.10.0-1062.31.2.el7 | kernel-devel-3.10.0-1062.31.2.el7.x86_64.rpm |
RedHat | 7 | ppc64 | kernel-debug | < 3.10.0-1062.31.2.el7 | kernel-debug-3.10.0-1062.31.2.el7.ppc64.rpm |
RedHat | 7 | s390x | kernel | < 3.10.0-1062.31.2.el7 | kernel-3.10.0-1062.31.2.el7.s390x.rpm |
RedHat | 7 | s390x | kernel-kdump | < 3.10.0-1062.31.2.el7 | kernel-kdump-3.10.0-1062.31.2.el7.s390x.rpm |
RedHat | 7 | ppc64 | perf | < 3.10.0-1062.31.2.el7 | perf-3.10.0-1062.31.2.el7.ppc64.rpm |
RedHat | 7 | x86_64 | kernel-debuginfo-common-x86_64 | < 3.10.0-1062.31.2.el7 | kernel-debuginfo-common-x86_64-3.10.0-1062.31.2.el7.x86_64.rpm |
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
54.6%