(RHSA-2021:4871) Important: kernel security and bug fix update

2021-11-3015:16:09

access.redhat.com

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

46.8%

JSON

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: use-after-free in drivers/infiniband/core/ucma.c ctx use-after-free (CVE-2020-36385)
kernel: timer tree corruption leads to missing wakeup and system freeze (CVE-2021-20317)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

[IBM 8.4] [P10] P10 hardware counter (performance counters/perf:) support (BZ#1994075)
RHEL8.1 Snapshot1 - [4.18.0-128.el8.ppc64le] [ Brazos 31TB/192 Core ] While running upstream kernel selftest case system crashed ™ (BZ#1996057)
[kernel-debug] WARNING: possible circular locking dependency detected (module_mutex & text_mutex) (BZ#2013777)

OSVersionArchitecturePackageVersionFilename
RedHat8x86_64kernel-tools-debuginfo< 4.18.0-193.70.1.el8_2kernel-tools-debuginfo-4.18.0-193.70.1.el8_2.x86_64.rpm
RedHat8ppc64lekernel-tools< 4.18.0-193.70.1.el8_2kernel-tools-4.18.0-193.70.1.el8_2.ppc64le.rpm
RedHat8s390xkernel-cross-headers< 4.18.0-193.70.1.el8_2kernel-cross-headers-4.18.0-193.70.1.el8_2.s390x.rpm
RedHat8ppc64lebpftool< 4.18.0-193.70.1.el8_2bpftool-4.18.0-193.70.1.el8_2.ppc64le.rpm
RedHat8ppc64lebpftool-debuginfo< 4.18.0-193.70.1.el8_2bpftool-debuginfo-4.18.0-193.70.1.el8_2.ppc64le.rpm
RedHat8s390xkernel-zfcpdump-core< 4.18.0-193.70.1.el8_2kernel-zfcpdump-core-4.18.0-193.70.1.el8_2.s390x.rpm
RedHat8aarch64kernel-core< 4.18.0-193.70.1.el8_2kernel-core-4.18.0-193.70.1.el8_2.aarch64.rpm
RedHat8aarch64kernel-tools< 4.18.0-193.70.1.el8_2kernel-tools-4.18.0-193.70.1.el8_2.aarch64.rpm
RedHat8x86_64kernel-modules-extra< 4.18.0-193.70.1.el8_2kernel-modules-extra-4.18.0-193.70.1.el8_2.x86_64.rpm
RedHat8s390xbpftool-debuginfo< 4.18.0-193.70.1.el8_2bpftool-debuginfo-4.18.0-193.70.1.el8_2.s390x.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	x86_64	kernel-tools-debuginfo	< 4.18.0-193.70.1.el8_2	kernel-tools-debuginfo-4.18.0-193.70.1.el8_2.x86_64.rpm
RedHat	8	ppc64le	kernel-tools	< 4.18.0-193.70.1.el8_2	kernel-tools-4.18.0-193.70.1.el8_2.ppc64le.rpm
RedHat	8	s390x	kernel-cross-headers	< 4.18.0-193.70.1.el8_2	kernel-cross-headers-4.18.0-193.70.1.el8_2.s390x.rpm
RedHat	8	ppc64le	bpftool	< 4.18.0-193.70.1.el8_2	bpftool-4.18.0-193.70.1.el8_2.ppc64le.rpm
RedHat	8	ppc64le	bpftool-debuginfo	< 4.18.0-193.70.1.el8_2	bpftool-debuginfo-4.18.0-193.70.1.el8_2.ppc64le.rpm
RedHat	8	s390x	kernel-zfcpdump-core	< 4.18.0-193.70.1.el8_2	kernel-zfcpdump-core-4.18.0-193.70.1.el8_2.s390x.rpm
RedHat	8	aarch64	kernel-core	< 4.18.0-193.70.1.el8_2	kernel-core-4.18.0-193.70.1.el8_2.aarch64.rpm
RedHat	8	aarch64	kernel-tools	< 4.18.0-193.70.1.el8_2	kernel-tools-4.18.0-193.70.1.el8_2.aarch64.rpm
RedHat	8	x86_64	kernel-modules-extra	< 4.18.0-193.70.1.el8_2	kernel-modules-extra-4.18.0-193.70.1.el8_2.x86_64.rpm
RedHat	8	s390x	bpftool-debuginfo	< 4.18.0-193.70.1.el8_2	bpftool-debuginfo-4.18.0-193.70.1.el8_2.s390x.rpm