[RHSA-2020:0839] kernel-rt security and bug fix update
Severity
Important
Affected Packages
10
CVEs
3
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
kernel: Count overflow in FUSE request leading to use-after-free issues. (CVE-2019-11487)
kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow (CVE-2019-17666)
Kernel: KVM: export MSR_IA32_TSX_CTRL to guest - incomplete fix for TAA (CVE-2019-11135) (CVE-2019-19338)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
- kernel-rt: update to the RHEL7.7.z batch#5 source tree (BZ#1794131)
| Package | Affected Version |
|---|---|
 pkg:rpm/redhat/kernel-rt?arch=x86_64&distro=redhat-7
|
< 3.10.0-1062.18.1.rt56.1044.el7 |
|
pkg:rpm/redhat/kernel-rt-trace?arch=x86_64&distro=redhat-7
|
< 3.10.0-1062.18.1.rt56.1044.el7 |
|
pkg:rpm/redhat/kernel-rt-trace-kvm?arch=x86_64&distro=redhat-7
|
< 3.10.0-1062.18.1.rt56.1044.el7 |
|
pkg:rpm/redhat/kernel-rt-trace-devel?arch=x86_64&distro=redhat-7
|
< 3.10.0-1062.18.1.rt56.1044.el7 |
|
pkg:rpm/redhat/kernel-rt-kvm?arch=x86_64&distro=redhat-7
|
< 3.10.0-1062.18.1.rt56.1044.el7 |
|
pkg:rpm/redhat/kernel-rt-doc?distro=redhat-7
|
< 3.10.0-1062.18.1.rt56.1044.el7 |
|
pkg:rpm/redhat/kernel-rt-devel?arch=x86_64&distro=redhat-7
|
< 3.10.0-1062.18.1.rt56.1044.el7 |
|
pkg:rpm/redhat/kernel-rt-debug?arch=x86_64&distro=redhat-7
|
< 3.10.0-1062.18.1.rt56.1044.el7 |
|
pkg:rpm/redhat/kernel-rt-debug-kvm?arch=x86_64&distro=redhat-7
|
< 3.10.0-1062.18.1.rt56.1044.el7 |
|
pkg:rpm/redhat/kernel-rt-debug-devel?arch=x86_64&distro=redhat-7
|
< 3.10.0-1062.18.1.rt56.1044.el7 |
- ID
- RHSA-2020:0839
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2020:0839
- Published
-
2020-03-17T00:00:00
(4 years ago) - Modified
-
2020-03-17T00:00:00
(4 years ago) - Rights
- Copyright 2020 Red Hat, Inc.
- Other Advisories
-
-
ASA-201911-10
-
ASA-201911-11
-
ASA-201911-12
-
ASA-201911-9
-
ELSA-2019-2703
-
ELSA-2020-0339
-
ELSA-2020-0834
-
ELSA-2020-1524
-
ELSA-2020-4182
-
ELSA-2020-5533
-
ELSA-2020-5535
-
ELSA-2020-5845
-
ELSA-2020-5866
-
FEDORA-2019-021c968423
-
FEDORA-2019-124a241044
-
FEDORA-2019-1689d3fe07
-
FEDORA-2019-6a67ff8793
-
FEDORA-2019-7a3fc17778
-
FEDORA-2019-8846a1a5a2
-
FEDORA-2020-2a5cdd665c
-
FEDORA-2020-c2d89d14d0
-
FEDORA-2020-fe00e12580
-
MS:CVE-2019-19338
-
openSUSE-SU-2019:1571-1
-
openSUSE-SU-2019:1579-1
-
openSUSE-SU-2019:2392-1
-
openSUSE-SU-2019:2444-1
-
openSUSE-SU-2020:0336-1
-
RHSA-2019:2703
-
RHSA-2019:2741
-
RHSA-2020:0328
-
RHSA-2020:0339
-
RHSA-2020:0834
-
RHSA-2020:1524
-
RHSA-2020:4182
-
SSA:2020-008-01
-
SSA:2020-086-01
-
SUSE-SU-2019:1529-1
-
SUSE-SU-2019:1530-1
-
SUSE-SU-2019:1535-1
-
SUSE-SU-2019:1536-1
-
SUSE-SU-2019:1550-1
-
SUSE-SU-2019:1581-1
-
SUSE-SU-2019:1588-1
-
SUSE-SU-2019:1668-1
-
SUSE-SU-2019:1671-1
-
SUSE-SU-2019:1674-1
-
SUSE-SU-2019:1767-1
-
SUSE-SU-2019:1768-1
-
SUSE-SU-2019:1823-1
-
SUSE-SU-2019:1823-2
-
SUSE-SU-2019:1852-1
-
SUSE-SU-2019:1870-1
-
SUSE-SU-2019:2430-1
-
SUSE-SU-2019:2821-1
-
SUSE-SU-2019:2879-1
-
SUSE-SU-2019:2946-1
-
SUSE-SU-2019:2947-1
-
SUSE-SU-2019:2949-1
-
SUSE-SU-2019:2951-1
-
SUSE-SU-2019:2952-1
-
SUSE-SU-2019:2953-1
-
SUSE-SU-2019:2984-1
-
SUSE-SU-2019:3200-1
-
SUSE-SU-2019:3294-1
-
SUSE-SU-2019:3295-1
-
SUSE-SU-2019:3316-1
-
SUSE-SU-2019:3379-1
-
SUSE-SU-2019:3381-1
-
SUSE-SU-2019:3389-1
-
SUSE-SU-2020:0093-1
-
SUSE-SU-2020:0511-1
-
SUSE-SU-2020:0560-1
-
SUSE-SU-2020:0584-1
-
SUSE-SU-2020:0599-1
-
SUSE-SU-2020:0613-1
-
USN-4069-1
-
USN-4069-2
-
USN-4115-1
-
USN-4118-1
-
USN-4145-1
-
USN-4183-1
-
USN-4184-1
-
USN-4185-1
-
USN-4186-1
-
USN-4186-2
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Bugzilla | 1703063 |
|
|
| Bugzilla | 1763690 |
|
|
| Bugzilla | 1781514 |
|
|
| RHSA | RHSA-2020:0839 |
|
|
| CVE | CVE-2019-11487 |
|
|
| CVE | CVE-2019-17666 |
|
|
| CVE | CVE-2019-19338 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/redhat/kernel-rt?arch=x86_64&distro=redhat-7 | redhat |
kernel-rt
|
< 3.10.0-1062.18.1.rt56.1044.el7 | redhat-7 | x86_64 | |
| Affected | pkg:rpm/redhat/kernel-rt-trace?arch=x86_64&distro=redhat-7 | redhat |
kernel-rt-trace
|
< 3.10.0-1062.18.1.rt56.1044.el7 | redhat-7 | x86_64 | |
| Affected | pkg:rpm/redhat/kernel-rt-trace-kvm?arch=x86_64&distro=redhat-7 | redhat |
kernel-rt-trace-kvm
|
< 3.10.0-1062.18.1.rt56.1044.el7 | redhat-7 | x86_64 | |
| Affected | pkg:rpm/redhat/kernel-rt-trace-devel?arch=x86_64&distro=redhat-7 | redhat |
kernel-rt-trace-devel
|
< 3.10.0-1062.18.1.rt56.1044.el7 | redhat-7 | x86_64 | |
| Affected | pkg:rpm/redhat/kernel-rt-kvm?arch=x86_64&distro=redhat-7 | redhat |
kernel-rt-kvm
|
< 3.10.0-1062.18.1.rt56.1044.el7 | redhat-7 | x86_64 | |
| Affected | pkg:rpm/redhat/kernel-rt-doc?distro=redhat-7 | redhat |
kernel-rt-doc
|
< 3.10.0-1062.18.1.rt56.1044.el7 | redhat-7 | ||
| Affected | pkg:rpm/redhat/kernel-rt-devel?arch=x86_64&distro=redhat-7 | redhat |
kernel-rt-devel
|
< 3.10.0-1062.18.1.rt56.1044.el7 | redhat-7 | x86_64 | |
| Affected | pkg:rpm/redhat/kernel-rt-debug?arch=x86_64&distro=redhat-7 | redhat |
kernel-rt-debug
|
< 3.10.0-1062.18.1.rt56.1044.el7 | redhat-7 | x86_64 | |
| Affected | pkg:rpm/redhat/kernel-rt-debug-kvm?arch=x86_64&distro=redhat-7 | redhat |
kernel-rt-debug-kvm
|
< 3.10.0-1062.18.1.rt56.1044.el7 | redhat-7 | x86_64 | |
| Affected | pkg:rpm/redhat/kernel-rt-debug-devel?arch=x86_64&distro=redhat-7 | redhat |
kernel-rt-debug-devel
|
< 3.10.0-1062.18.1.rt56.1044.el7 | redhat-7 | x86_64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |