Lucene search

K
redhatRedHatRHSA-2020:5418
HistoryDec 15, 2020 - 8:07 a.m.

(RHSA-2020:5418) Moderate: kernel security and bug fix update

2020-12-1508:07:48
access.redhat.com
83

3.7 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

58.3%

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: information exposure in drivers/char/random.c and kernel/time/timer.c (CVE-2020-16166)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • [RHEL-8.3][arm64] CN99xx: DIMM errors not populated in EDAC sysfs (BZ#1857754)

  • sctp: backports from upstream, 2nd phase (BZ#1878308)

  • Backport upstream OVS performance patch fix (BZ#1879936)

  • avoid flush_backlog IPI for isolated CPUs by configuring RPS cpumask (BZ#1883315)

  • Unexpected fragmentation needed error, OpenShift 4, OVS, VXLAN, GSO, Azure (BZ#1885767)

  • XFS: reflinked file data corruption (BZ#1886896)

  • Scheduler: rq->tmp_alone_branch != &rq->leaf_cfs_rq_list (BZ#1890123)

  • geneve: add transport ports in route lookup for geneve (BZ#1891819)

  • BUG: using smp_processor_id() in preemptible [00000000] code: handler106/3082 (BZ#1893282)

  • HRTICK not armed in specific cases with SCHED_DEADLINE (BZ#1894074)

  • RHEL8.1 - ibmveth is producing TX errors over VXLAN when large send (TSO) is enabled (-> related to Red Hat bug 1816254 - OCP 4.3 - Authentication clusteroperator is in unknown state on POWER 9 servers") (BZ#1896300)

  • RHEL8.2 - mm/gup: fix gup_fast with dynamic page table folding (BZ#1896352)

  • block layer: update to upstream v5.8 (BZ#1896788)

  • [Regression] RHEL8.2 zstream - Undetected Data corruption in MPI workloads that use VSX for reductions on POWER9 DD2.1 systems (BZ#1897279)

  • ARO: excessive pod memory allocation causes node lockup (BZ#1901549)

3.7 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

58.3%