RHSA-2020:0339

Description

Red Hat Security Advisory: kernel security and bug fix update

CVSS Metrics

• v3.0•HIGH•Score: 8.8CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•bpftool

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•bpftool-debuginfo

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-abi-whitelists

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-core

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-cross-headers

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-debug

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-debug-core

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-debug-debuginfo

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-debug-devel

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-debug-modules

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-debug-modules-extra

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-debuginfo

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-debuginfo-common-aarch64

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-debuginfo-common-ppc64le

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-debuginfo-common-s390x

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-debuginfo-common-x86_64

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-devel

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-doc

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-headers

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-modules

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-modules-extra

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-tools

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-tools-debuginfo

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-tools-libs

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-tools-libs-devel

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-zfcpdump

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-zfcpdump-core

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-zfcpdump-debuginfo

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-zfcpdump-devel

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-zfcpdump-modules

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•kernel-zfcpdump-modules-extra

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•perf

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•perf-debuginfo

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•python3-perf

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

• redhat•python3-perf-debuginfo

  < 0:4.18.0-147.5.1.el8_1 | < 0:4.18.0-147.5.1.el8_1

References (45)

• https://access.redhat.com/errata/RHSA-2020:0339
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=1744130
• https://bugzilla.redhat.com/show_bug.cgi?id=1744137
• https://bugzilla.redhat.com/show_bug.cgi?id=1744149
• https://bugzilla.redhat.com/show_bug.cgi?id=1763690
• https://bugzilla.redhat.com/show_bug.cgi?id=1773519
• https://bugzilla.redhat.com/show_bug.cgi?id=1774671
• https://bugzilla.redhat.com/show_bug.cgi?id=1774870
• https://bugzilla.redhat.com/show_bug.cgi?id=1781514
• https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0339.json
• https://access.redhat.com/security/cve/CVE-2019-14814
• https://www.cve.org/CVERecord?id=CVE-2019-14814
• https://nvd.nist.gov/vuln/detail/CVE-2019-14814
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7caac62ed598a196d6ddf8d9c121e12e082cac3a
• https://access.redhat.com/security/cve/CVE-2019-14815
• https://www.cve.org/CVERecord?id=CVE-2019-14815
• https://nvd.nist.gov/vuln/detail/CVE-2019-14815
• https://access.redhat.com/security/cve/CVE-2019-14816
• https://www.cve.org/CVERecord?id=CVE-2019-14816
• https://nvd.nist.gov/vuln/detail/CVE-2019-14816
• https://access.redhat.com/security/cve/CVE-2019-14895
• https://www.cve.org/CVERecord?id=CVE-2019-14895
• https://nvd.nist.gov/vuln/detail/CVE-2019-14895
• https://www.openwall.com/lists/oss-security/2019/11/22/2
• https://access.redhat.com/security/cve/CVE-2019-14898
• https://www.cve.org/CVERecord?id=CVE-2019-14898
• https://nvd.nist.gov/vuln/detail/CVE-2019-14898
• https://bugs.chromium.org/p/project-zero/issues/detail?id=1790
• https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.114
• https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.37
• https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.10
• https://access.redhat.com/security/cve/CVE-2019-14901
• https://www.cve.org/CVERecord?id=CVE-2019-14901
• https://nvd.nist.gov/vuln/detail/CVE-2019-14901
• https://access.redhat.com/security/cve/CVE-2019-17666
• https://www.cve.org/CVERecord?id=CVE-2019-17666
• https://nvd.nist.gov/vuln/detail/CVE-2019-17666
• https://arstechnica.com/information-technology/2019/10/unpatched-linux-flaw-may-let-attackers-crash-or-compromise-nearby-devices/
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8c55dedb795be8ec0cf488f98c03a1c2176f7fb1
• https://access.redhat.com/security/cve/CVE-2019-19338
• https://www.cve.org/CVERecord?id=CVE-2019-19338
• https://nvd.nist.gov/vuln/detail/CVE-2019-19338
• https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort
• https://www.openwall.com/lists/oss-security/2019/12/10/3