Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-18805 (GCVE-0-2019-18805)
Vulnerability from cvelistv5 – Published: 2019-11-07 13:08 – Updated: 2024-08-05 02:02
VLAI
EPSS
Summary
An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
6 references
| URL | Tags |
|---|---|
| https://cdn.kernel.org/pub/linux/kernel/v5.x/Chan… | x_refsource_MISC |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | x_refsource_MISC |
| http://lists.opensuse.org/opensuse-security-annou… | vendor-advisoryx_refsource_SUSE |
| http://lists.opensuse.org/opensuse-security-annou… | vendor-advisoryx_refsource_SUSE |
| https://security.netapp.com/advisory/ntap-2019120… | x_refsource_CONFIRM |
| https://access.redhat.com/errata/RHSA-2020:0740 | vendor-advisoryx_refsource_REDHAT |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T02:02:39.538Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78"
},
{
"name": "openSUSE-SU-2019:2503",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html"
},
{
"name": "openSUSE-SU-2019:2507",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00039.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20191205-0001/"
},
{
"name": "RHSA-2020:0740",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-03-11T11:06:08.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78"
},
{
"name": "openSUSE-SU-2019:2503",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html"
},
{
"name": "openSUSE-SU-2019:2507",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00039.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20191205-0001/"
},
{
"name": "RHSA-2020:0740",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-18805",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11",
"refsource": "MISC",
"url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11"
},
{
"name": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78",
"refsource": "MISC",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78"
},
{
"name": "openSUSE-SU-2019:2503",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html"
},
{
"name": "openSUSE-SU-2019:2507",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00039.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20191205-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20191205-0001/"
},
{
"name": "RHSA-2020:0740",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-18805",
"datePublished": "2019-11-07T13:08:05.000Z",
"dateReserved": "2019-11-07T00:00:00.000Z",
"dateUpdated": "2024-08-05T02:02:39.538Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2019-18805",
"date": "2026-05-27",
"epss": "0.0057",
"percentile": "0.68827"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2019-18805\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2019-11-07T14:15:11.067\",\"lastModified\":\"2024-11-21T04:33:36.167\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6.\"},{\"lang\":\"es\",\"value\":\"Se detect\u00f3 un problema en el archivo net/ipv4/sysctl_net_ipv4.c en el kernel de Linux versiones anteriores a 5.0.11. Se presenta un desbordamiento de enteros firmado del archivo net/ipv4/tcp_input.c en la funci\u00f3n tcp_ack_update_rtt() cuando el espacio de usuario escribe un entero muy grande en /proc/sys/net/ipv4/tcp_min_rtt_wlen, lo que conlleva a una denegaci\u00f3n de servicio o posiblemente a otro impacto no especificado, tambi\u00e9n se conoce como CID -19fad20d15a6.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-190\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.4\",\"versionEndExcluding\":\"4.4.180\",\"matchCriteriaId\":\"49884052-E8FD-49E4-A9F3-D0964EB0AC31\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.9\",\"versionEndExcluding\":\"4.9.172\",\"matchCriteriaId\":\"DF6AB36D-D9AC-4381-88AF-CC4FDA5EC98E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.14\",\"versionEndExcluding\":\"4.14.115\",\"matchCriteriaId\":\"B3562ABD-4F11-4BD1-9BBD-417B7BC9BCF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.19\",\"versionEndExcluding\":\"4.19.38\",\"matchCriteriaId\":\"48FBE002-61C1-4569-B850-E15BD2DBA143\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.0\",\"versionEndExcluding\":\"5.0.11\",\"matchCriteriaId\":\"C23FEFDF-76B5-46C0-9481-CE70EBDB7BFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.1:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"2258D313-BAF7-482D-98E0-79F2A448287B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.1:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"1578A37C-C7CC-4B36-8668-6A1AED63B0A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.1:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"49BD6839-AB64-48DA-9D1D-18B4508AF652\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.1:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1E5129A-F85C-432A-988D-6C3ED03EC04D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.1:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"0669A9F1-3BFF-4E5A-BEF7-9F2A627CEF03\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.1:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"9CC18FCC-3F69-4A7E-9F29-4C4504E83B4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.1:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"12A5D914-5CEB-4D3F-A903-6F1FAD82A125\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1E78106-58E6-4D59-990F-75DA575BFAD9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B620311B-34A3-48A6-82DF-6F078D7A4493\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"142AD0DD-4CF3-4D74-9442-459CE3347E3A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*\",\"matchCriteriaId\":\"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:data_availability_services:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EF46487-B64A-454E-AECC-D74B83170ACD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.0.0\",\"versionEndIncluding\":\"11.60.3\",\"matchCriteriaId\":\"BD1E9594-C46F-40D1-8BC2-6B16635B55C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3C19813-E823-456A-B1CE-EC0684CE1953\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E94F7F59-1785-493F-91A7-5F5EA5E87E4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD7447BC-F315-4298-A822-549942FC118B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:netapp:hci_storage_node:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02DEB4FB-A21D-4CB1-B522-EEE5093E8521\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:broadcom:fabric_operating_system:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"046FB51E-B768-44D3-AEB5-D857145CA840\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:aff_a700s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"952F55C9-7E7C-4539-9D08-E736B3488569\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:aff_a700s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FED1B0D-F901-413A-85D9-05D4C427570D\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:fas8300_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89706810-031B-49F0-B353-FD27FD7B2776\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:fas8300:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03BCC59D-C782-4149-B6DC-5DDAFAB48F2D\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:fas8700_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FDD1E822-1EA6-4E62-A58B-2378149D20DC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:fas8700:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E07EAE5F-B1B5-4FDA-9B50-8CB1D2AFC5A0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:aff_a400_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56FD9B9A-BBE5-4CA5-B9F9-B16E1FE738C8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:aff_a400:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3E70A56-DBA8-45C7-8C49-1A036501156F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h610s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD7CFE0E-9D1E-4495-B302-89C3096FC0DF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h610s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F63A3FA7-AAED-4A9D-9FDE-6195302DA0F6\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00039.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0740\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20191205-0001/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00039.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0740\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20191205-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
CERTFR-2020-AVI-243
Vulnerability from certfr_avis - Published: 2020-04-28 - Updated: 2020-04-28
De multiples vulnérabilités ont été découvertes dans le noyau Linux de Red Hat. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une atteinte à l'intégrité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux | Red Hat Enterprise Linux for Real Time 8 x86_64 | ||
| Red Hat | Red Hat Enterprise Linux | Red Hat Enterprise Linux for Real Time for NFV 8 x86_64 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Red Hat Enterprise Linux for Real Time 8 x86_64",
"product": {
"name": "Red Hat Enterprise Linux",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat Enterprise Linux for Real Time for NFV 8 x86_64",
"product": {
"name": "Red Hat Enterprise Linux",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-15221",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15221"
},
{
"name": "CVE-2019-8980",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8980"
},
{
"name": "CVE-2019-15099",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15099"
},
{
"name": "CVE-2019-19073",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19073"
},
{
"name": "CVE-2018-16871",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16871"
},
{
"name": "CVE-2019-19922",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19922"
},
{
"name": "CVE-2019-18805",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18805"
},
{
"name": "CVE-2020-1749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1749"
},
{
"name": "CVE-2019-10639",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10639"
},
{
"name": "CVE-2019-19057",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19057"
},
{
"name": "CVE-2019-19534",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19534"
},
{
"name": "CVE-2019-15090",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15090"
},
{
"name": "CVE-2019-17055",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17055"
},
{
"name": "CVE-2019-19074",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19074"
},
{
"name": "CVE-2019-17053",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17053"
},
{
"name": "CVE-2019-19768",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19768"
}
],
"initial_release_date": "2020-04-28T00:00:00",
"last_revision_date": "2020-04-28T00:00:00",
"links": [],
"reference": "CERTFR-2020-AVI-243",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2020-04-28T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de\nRed Hat. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nun d\u00e9ni de service \u00e0 distance, un contournement de la politique de\ns\u00e9curit\u00e9 et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Red Hat",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Red Hat RHSA-2020:1567 du 27 avril 2020",
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
}
]
}
CERTFR-2025-AVI-1102
Vulnerability from certfr_avis - Published: 2025-12-12 - Updated: 2025-12-12
De multiples vulnérabilités ont été découvertes dans les produits NetApp. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| NetApp | N/A | HCI Compute Node (Bootstrap OS) toutes versions | ||
| NetApp | N/A | FAS/AFF Baseboard Management Controller (BMC) - 8300/8700/A400/C400 versions antérieures à 13.2 | ||
| NetApp | N/A | E-Series SANtricity OS Controller software versions 11.x antérieures à 11.60.2 | ||
| NetApp | N/A | HCI Baseboard Management Controller (BMC) - H610S versions antérieures à 2.27 | ||
| NetApp | N/A | SolidFire & HCI Storage Node (Element Software) versions antérieures à 12.8 | ||
| NetApp | N/A | SolidFire & HCI Management Node sans le dernier correctif de sécurité | ||
| NetApp | N/A | Cloud Backup toutes versions | ||
| NetApp | N/A | SolidFire Baseboard Management Controller (BMC) sans le dernier correctif de sécurité | ||
| NetApp | N/A | AFF Baseboard Management Controller (BMC) - A700s versions antérieures à 18.1 |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "HCI Compute Node (Bootstrap OS) toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "NetApp",
"scada": false
}
}
},
{
"description": "FAS/AFF Baseboard Management Controller (BMC) - 8300/8700/A400/C400 versions ant\u00e9rieures \u00e0 13.2\n",
"product": {
"name": "N/A",
"vendor": {
"name": "NetApp",
"scada": false
}
}
},
{
"description": "E-Series SANtricity OS Controller software versions 11.x ant\u00e9rieures \u00e0 11.60.2",
"product": {
"name": "N/A",
"vendor": {
"name": "NetApp",
"scada": false
}
}
},
{
"description": "HCI Baseboard Management Controller (BMC) - H610S versions ant\u00e9rieures \u00e0 2.27\n",
"product": {
"name": "N/A",
"vendor": {
"name": "NetApp",
"scada": false
}
}
},
{
"description": "SolidFire \u0026 HCI Storage Node (Element Software) versions ant\u00e9rieures \u00e0 12.8\n",
"product": {
"name": "N/A",
"vendor": {
"name": "NetApp",
"scada": false
}
}
},
{
"description": "SolidFire \u0026 HCI Management Node sans le dernier correctif de s\u00e9curit\u00e9\n",
"product": {
"name": "N/A",
"vendor": {
"name": "NetApp",
"scada": false
}
}
},
{
"description": "Cloud Backup toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "NetApp",
"scada": false
}
}
},
{
"description": "SolidFire Baseboard Management Controller (BMC) sans le dernier correctif de s\u00e9curit\u00e9\n",
"product": {
"name": "N/A",
"vendor": {
"name": "NetApp",
"scada": false
}
}
},
{
"description": "AFF Baseboard Management Controller (BMC) - A700s versions ant\u00e9rieures \u00e0 18.1",
"product": {
"name": "N/A",
"vendor": {
"name": "NetApp",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2019-18812",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18812"
},
{
"name": "CVE-2019-19082",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19082"
},
{
"name": "CVE-2019-18811",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18811"
},
{
"name": "CVE-2019-19053",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19053"
},
{
"name": "CVE-2019-18809",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18809"
},
{
"name": "CVE-2019-19036",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19036"
},
{
"name": "CVE-2019-19037",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19037"
},
{
"name": "CVE-2019-19079",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19079"
},
{
"name": "CVE-2019-19061",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19061"
},
{
"name": "CVE-2019-19073",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19073"
},
{
"name": "CVE-2019-19047",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19047"
},
{
"name": "CVE-2019-18680",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18680"
},
{
"name": "CVE-2019-19060",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19060"
},
{
"name": "CVE-2019-19462",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19462"
},
{
"name": "CVE-2019-19072",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19072"
},
{
"name": "CVE-2019-18810",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18810"
},
{
"name": "CVE-2019-19044",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19044"
},
{
"name": "CVE-2019-19071",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19071"
},
{
"name": "CVE-2019-19062",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19062"
},
{
"name": "CVE-2019-18683",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18683"
},
{
"name": "CVE-2019-19063",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19063"
},
{
"name": "CVE-2019-19078",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19078"
},
{
"name": "CVE-2019-19050",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19050"
},
{
"name": "CVE-2019-19069",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19069"
},
{
"name": "CVE-2019-18805",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18805"
},
{
"name": "CVE-2019-18813",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18813"
},
{
"name": "CVE-2019-19083",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19083"
},
{
"name": "CVE-2019-19052",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19052"
},
{
"name": "CVE-2019-19045",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19045"
},
{
"name": "CVE-2019-18885",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18885"
},
{
"name": "CVE-2019-19077",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19077"
},
{
"name": "CVE-2019-19080",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19080"
},
{
"name": "CVE-2019-19057",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19057"
},
{
"name": "CVE-2019-19048",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19048"
},
{
"name": "CVE-2019-18808",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18808"
},
{
"name": "CVE-2019-19056",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19056"
},
{
"name": "CVE-2019-19058",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19058"
},
{
"name": "CVE-2019-19075",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19075"
},
{
"name": "CVE-2019-19051",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19051"
},
{
"name": "CVE-2019-19076",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19076"
},
{
"name": "CVE-2019-19068",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19068"
},
{
"name": "CVE-2019-19081",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19081"
},
{
"name": "CVE-2019-19066",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19066"
},
{
"name": "CVE-2019-19054",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19054"
},
{
"name": "CVE-2019-19059",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19059"
},
{
"name": "CVE-2019-18814",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18814"
},
{
"name": "CVE-2019-19065",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19065"
},
{
"name": "CVE-2019-18807",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18807"
},
{
"name": "CVE-2019-19074",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19074"
},
{
"name": "CVE-2019-19043",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19043"
}
],
"initial_release_date": "2025-12-12T00:00:00",
"last_revision_date": "2025-12-12T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-1102",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-12-12T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits NetApp. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits NetApp",
"vendor_advisories": [
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 NetApp NTAP-20210129-0004",
"url": "https://security.netapp.com/advisory/NTAP-20210129-0004"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 NetApp NTAP-20191205-0001",
"url": "https://security.netapp.com/advisory/NTAP-20191205-0001"
}
]
}
CNVD-2019-40470
Vulnerability from cnvd - Published: 2019-11-13
VLAI
Title
Linux kernel输入验证错误漏洞(CNVD-2019-40470)
Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。
Linux kernel 5.0.11之前版本中的net/ipv4/sysctl_net_ipv4.c文件存在输入验证错误漏洞,该漏洞源于网络系统或产品未对输入的数据进行正确的验证,攻击者可利用该漏洞对系统进行非法操作。
Severity
高
Patch Name
Linux kernel输入验证错误漏洞(CNVD-2019-40470)
Patch Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。
Linux kernel 5.0.11之前版本中的net/ipv4/sysctl_net_ipv4.c文件存在输入验证错误漏洞,该漏洞源于网络系统或产品未对输入的数据进行正确的验证,攻击者可利用该漏洞对系统进行非法操作。
Formal description
厂商已发布了漏洞修复程序,请及时关注更新: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78
Reference
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11
Impacted products
| Name | Linux Linux kernel <5.0.11 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2019-18805",
"cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2019-18805"
}
},
"description": "Linux kernel\u662f\u7f8e\u56fdLinux\u57fa\u91d1\u4f1a\u53d1\u5e03\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edfLinux\u6240\u4f7f\u7528\u7684\u5185\u6838\u3002\n\nLinux kernel 5.0.11\u4e4b\u524d\u7248\u672c\u4e2d\u7684net/ipv4/sysctl_net_ipv4.c\u6587\u4ef6\u5b58\u5728\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7f51\u7edc\u7cfb\u7edf\u6216\u4ea7\u54c1\u672a\u5bf9\u8f93\u5165\u7684\u6570\u636e\u8fdb\u884c\u6b63\u786e\u7684\u9a8c\u8bc1\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bf9\u7cfb\u7edf\u8fdb\u884c\u975e\u6cd5\u64cd\u4f5c\u3002",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2019-40470",
"openTime": "2019-11-13",
"patchDescription": "Linux kernel\u662f\u7f8e\u56fdLinux\u57fa\u91d1\u4f1a\u53d1\u5e03\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edfLinux\u6240\u4f7f\u7528\u7684\u5185\u6838\u3002\n\nLinux kernel 5.0.11\u4e4b\u524d\u7248\u672c\u4e2d\u7684net/ipv4/sysctl_net_ipv4.c\u6587\u4ef6\u5b58\u5728\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7f51\u7edc\u7cfb\u7edf\u6216\u4ea7\u54c1\u672a\u5bf9\u8f93\u5165\u7684\u6570\u636e\u8fdb\u884c\u6b63\u786e\u7684\u9a8c\u8bc1\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bf9\u7cfb\u7edf\u8fdb\u884c\u975e\u6cd5\u64cd\u4f5c\u3002",
"patchName": "Linux kernel\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e\uff08CNVD-2019-40470\uff09",
"products": {
"product": "Linux Linux kernel \u003c5.0.11"
},
"referenceLink": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11",
"serverity": "\u9ad8",
"submitTime": "2019-11-09",
"title": "Linux kernel\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e\uff08CNVD-2019-40470\uff09"
}
FKIE_CVE-2019-18805
Vulnerability from fkie_nvd - Published: 2019-11-07 14:15 - Updated: 2024-11-21 04:33
Severity
Summary
An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| linux | linux_kernel | * | |
| linux | linux_kernel | * | |
| linux | linux_kernel | * | |
| linux | linux_kernel | * | |
| linux | linux_kernel | * | |
| linux | linux_kernel | 5.1 | |
| linux | linux_kernel | 5.1 | |
| linux | linux_kernel | 5.1 | |
| linux | linux_kernel | 5.1 | |
| linux | linux_kernel | 5.1 | |
| linux | linux_kernel | 5.1 | |
| linux | linux_kernel | 5.1 | |
| opensuse | leap | 15.0 | |
| opensuse | leap | 15.1 | |
| redhat | enterprise_linux | 7.0 | |
| netapp | active_iq_unified_manager | - | |
| netapp | data_availability_services | - | |
| netapp | e-series_santricity_os_controller | * | |
| netapp | hci_management_node | - | |
| netapp | solidfire | - | |
| netapp | steelstore_cloud_integrated_storage | - | |
| netapp | hci_compute_node | - | |
| netapp | hci_storage_node | - | |
| broadcom | fabric_operating_system | - | |
| netapp | aff_a700s_firmware | - | |
| netapp | aff_a700s | - | |
| netapp | fas8300_firmware | - | |
| netapp | fas8300 | - | |
| netapp | fas8700_firmware | - | |
| netapp | fas8700 | - | |
| netapp | aff_a400_firmware | - | |
| netapp | aff_a400 | - | |
| netapp | h610s_firmware | - | |
| netapp | h610s | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "49884052-E8FD-49E4-A9F3-D0964EB0AC31",
"versionEndExcluding": "4.4.180",
"versionStartIncluding": "4.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DF6AB36D-D9AC-4381-88AF-CC4FDA5EC98E",
"versionEndExcluding": "4.9.172",
"versionStartIncluding": "4.9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B3562ABD-4F11-4BD1-9BBD-417B7BC9BCF3",
"versionEndExcluding": "4.14.115",
"versionStartIncluding": "4.14",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "48FBE002-61C1-4569-B850-E15BD2DBA143",
"versionEndExcluding": "4.19.38",
"versionStartIncluding": "4.19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C23FEFDF-76B5-46C0-9481-CE70EBDB7BFE",
"versionEndExcluding": "5.0.11",
"versionStartIncluding": "5.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.1:rc1:*:*:*:*:*:*",
"matchCriteriaId": "2258D313-BAF7-482D-98E0-79F2A448287B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.1:rc2:*:*:*:*:*:*",
"matchCriteriaId": "1578A37C-C7CC-4B36-8668-6A1AED63B0A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.1:rc3:*:*:*:*:*:*",
"matchCriteriaId": "49BD6839-AB64-48DA-9D1D-18B4508AF652",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.1:rc4:*:*:*:*:*:*",
"matchCriteriaId": "A1E5129A-F85C-432A-988D-6C3ED03EC04D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.1:rc5:*:*:*:*:*:*",
"matchCriteriaId": "0669A9F1-3BFF-4E5A-BEF7-9F2A627CEF03",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.1:rc6:*:*:*:*:*:*",
"matchCriteriaId": "9CC18FCC-3F69-4A7E-9F29-4C4504E83B4D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.1:rc7:*:*:*:*:*:*",
"matchCriteriaId": "12A5D914-5CEB-4D3F-A903-6F1FAD82A125",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B620311B-34A3-48A6-82DF-6F078D7A4493",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*",
"matchCriteriaId": "3A756737-1CC4-42C2-A4DF-E1C893B4E2D5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:data_availability_services:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0EF46487-B64A-454E-AECC-D74B83170ACD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BD1E9594-C46F-40D1-8BC2-6B16635B55C4",
"versionEndIncluding": "11.60.3",
"versionStartIncluding": "11.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A3C19813-E823-456A-B1CE-EC0684CE1953",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E94F7F59-1785-493F-91A7-5F5EA5E87E4D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AD7447BC-F315-4298-A822-549942FC118B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:netapp:hci_storage_node:-:*:*:*:*:*:*:*",
"matchCriteriaId": "02DEB4FB-A21D-4CB1-B522-EEE5093E8521",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:broadcom:fabric_operating_system:-:*:*:*:*:*:*:*",
"matchCriteriaId": "046FB51E-B768-44D3-AEB5-D857145CA840",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:aff_a700s_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "952F55C9-7E7C-4539-9D08-E736B3488569",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:aff_a700s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9FED1B0D-F901-413A-85D9-05D4C427570D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:fas8300_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "89706810-031B-49F0-B353-FD27FD7B2776",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:fas8300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "03BCC59D-C782-4149-B6DC-5DDAFAB48F2D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:fas8700_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FDD1E822-1EA6-4E62-A58B-2378149D20DC",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:fas8700:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E07EAE5F-B1B5-4FDA-9B50-8CB1D2AFC5A0",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:aff_a400_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "56FD9B9A-BBE5-4CA5-B9F9-B16E1FE738C8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:aff_a400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F3E70A56-DBA8-45C7-8C49-1A036501156F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:h610s_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FD7CFE0E-9D1E-4495-B302-89C3096FC0DF",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:h610s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F63A3FA7-AAED-4A9D-9FDE-6195302DA0F6",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6."
},
{
"lang": "es",
"value": "Se detect\u00f3 un problema en el archivo net/ipv4/sysctl_net_ipv4.c en el kernel de Linux versiones anteriores a 5.0.11. Se presenta un desbordamiento de enteros firmado del archivo net/ipv4/tcp_input.c en la funci\u00f3n tcp_ack_update_rtt() cuando el espacio de usuario escribe un entero muy grande en /proc/sys/net/ipv4/tcp_min_rtt_wlen, lo que conlleva a una denegaci\u00f3n de servicio o posiblemente a otro impacto no especificado, tambi\u00e9n se conoce como CID -19fad20d15a6."
}
],
"id": "CVE-2019-18805",
"lastModified": "2024-11-21T04:33:36.167",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-11-07T14:15:11.067",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00039.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20191205-0001/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00039.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20191205-0001/"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-190"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-WGJ3-WXRF-QQG3
Vulnerability from github – Published: 2022-05-24 22:01 – Updated: 2022-05-24 22:01
VLAI
Details
An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6.
{
"affected": [],
"aliases": [
"CVE-2019-18805"
],
"database_specific": {
"cwe_ids": [
"CWE-190"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2019-11-07T14:15:00Z",
"severity": "HIGH"
},
"details": "An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6.",
"id": "GHSA-wgj3-wxrf-qqg3",
"modified": "2022-05-24T22:01:05Z",
"published": "2022-05-24T22:01:05Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18805"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
},
{
"type": "WEB",
"url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11"
},
{
"type": "WEB",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20191205-0001"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00039.html"
}
],
"schema_version": "1.4.0",
"severity": []
}
GSD-2019-18805
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2019-18805",
"description": "An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6.",
"id": "GSD-2019-18805",
"references": [
"https://www.suse.com/security/cve/CVE-2019-18805.html",
"https://access.redhat.com/errata/RHSA-2020:1769",
"https://access.redhat.com/errata/RHSA-2020:1567",
"https://access.redhat.com/errata/RHSA-2020:0740",
"https://linux.oracle.com/cve/CVE-2019-18805.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2019-18805"
],
"details": "An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6.",
"id": "GSD-2019-18805",
"modified": "2023-12-13T01:23:50.248745Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-18805",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11",
"refsource": "MISC",
"url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11"
},
{
"name": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78",
"refsource": "MISC",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78"
},
{
"name": "openSUSE-SU-2019:2503",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html"
},
{
"name": "openSUSE-SU-2019:2507",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00039.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20191205-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20191205-0001/"
},
{
"name": "RHSA-2020:0740",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.4.180",
"versionStartIncluding": "4.4",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.9.172",
"versionStartIncluding": "4.9",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.14.115",
"versionStartIncluding": "4.14",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.19.38",
"versionStartIncluding": "4.19",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "5.0.11",
"versionStartIncluding": "5.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:5.1:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:5.1:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:5.1:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:5.1:rc4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:5.1:rc5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:5.1:rc6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:5.1:rc7:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:data_availability_services:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "11.60.3",
"versionStartIncluding": "11.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:netapp:hci_storage_node:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:broadcom:fabric_operating_system:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:aff_a700s_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:aff_a700s:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:fas8300_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:fas8300:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:fas8700_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:fas8700:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:aff_a400_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:aff_a400:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:h610s_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:h610s:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-18805"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-190"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11",
"refsource": "MISC",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11"
},
{
"name": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78",
"refsource": "MISC",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78"
},
{
"name": "openSUSE-SU-2019:2503",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html"
},
{
"name": "openSUSE-SU-2019:2507",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00039.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20191205-0001/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20191205-0001/"
},
{
"name": "RHSA-2020:0740",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
},
"lastModifiedDate": "2021-06-22T14:47Z",
"publishedDate": "2019-11-07T14:15Z"
}
}
}
OPENSUSE-SU-2019:2503-1
Vulnerability from csaf_opensuse - Published: 2019-11-14 05:53 - Updated: 2019-11-14 05:53Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The openSUSE Leap 15.0 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2019-0154: An unprotected read access to i915 registers has been fixed that could have been abused to facilitate a local denial-of-service attack. (bsc#1135966)
- CVE-2019-0155: A privilege escalation vulnerability has been fixed in the i915 module that allowed batch buffers from user mode to gain super user privileges. (bsc#1135967)
- CVE-2019-16231: drivers/net/fjes/fjes_main.c did not check the alloc_workqueue return value, leading to a NULL pointer dereference (bnc#1150466).
- CVE-2019-18805: There was a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6 (bnc#1156187).
- CVE-2019-17055: base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module did not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21 (bnc#1152782).
- CVE-2019-16995: A memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c, if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d (bnc#1152685).
- CVE-2019-11135: Aborting an asynchronous TSX operation on Intel CPUs with Transactional Memory support could be used to facilitate sidechannel information leaks out of microarchitectural buffers, similar to the previously described 'Microarchitectural Data Sampling' attack.
The Linux kernel was supplemented with the option to disable TSX operation altogether (requiring CPU Microcode updates on older systems) and better flushing of microarchitectural buffers (VERW).
The set of options available is described in our TID at https://www.suse.com/support/kb/doc/?id=7024251
- CVE-2019-16233: drivers/scsi/qla2xxx/qla_os.c did not check the alloc_workqueue return value, leading to a NULL pointer dereference (bnc#1150457).
- CVE-2018-12207: Untrusted virtual machines on Intel CPUs could exploit a race condition in the Instruction Fetch Unit of the Intel CPU to cause a Machine Exception during Page Size Change, causing the CPU core to be non-functional.
The Linux Kernel kvm hypervisor was adjusted to avoid page size changes in executable pages by splitting / merging huge pages into small pages as needed.
More information can be found on https://www.suse.com/support/kb/doc/?id=7023735
- CVE-2019-10220: Added sanity checks on the pathnames passed to the user space. (bsc#1144903).
The following non-security bugs were fixed:
- ALSA: bebob: Fix prototype of helper function to return negative value (bsc#1051510).
- ALSA: bebob: fix to detect configured source of sampling clock for Focusrite Saffire Pro i/o series (git-fixes).
- ALSA: hda: Add Elkhart Lake PCI ID (bsc#1051510).
- ALSA: hda: Add Tigerlake/Jasperlake PCI ID (bsc#1051510).
- ALSA: hda/ca0132 - Fix possible workqueue stall (bsc#1155836).
- ALSA: hda/realtek - Add support for ALC623 (bsc#1051510).
- ALSA: hda/realtek - Add support for ALC711 (bsc#1051510).
- ALSA: hda/realtek - Fix 2 front mics of codec 0x623 (bsc#1051510).
- ALSA: timer: Fix incorrectly assigned timer instance (git-fixes).
- ALSA: timer: Fix mutex deadlock at releasing card (bsc#1051510).
- arcnet: provide a buffer big enough to actually receive packets (networking-stable-19_09_30).
- ASoc: rockchip: i2s: Fix RPM imbalance (bsc#1051510).
- ASoC: rsnd: Reinitialize bit clock inversion flag for every format setting (bsc#1051510).
- bpf: fix use after free in prog symbol exposure (bsc#1083647).
- btrfs: block-group: Fix a memory leak due to missing btrfs_put_block_group() (bsc#1155178).
- btrfs: qgroup: Always free PREALLOC META reserve in btrfs_delalloc_release_extents() (bsc#1155179).
- btrfs: tracepoints: Fix bad entry members of qgroup events (bsc#1155186).
- btrfs: tracepoints: Fix wrong parameter order for qgroup events (bsc#1155184).
- can: dev: call netif_carrier_off() in register_candev() (bsc#1051510).
- crypto: af_alg - consolidation of duplicate code (bsc#1154737).
- crypto: af_alg - fix race accessing cipher request (bsc#1154737).
- crypto: af_alg - Fix race around ctx->rcvused by making it atomic_t (bsc#1154737).
- crypto: af_alg - Initialize sg_num_bytes in error code path (bsc#1051510).
- crypto: af_alg - remove locking in async callback (bsc#1154737).
- crypto: af_alg - update correct dst SGL entry (bsc#1051510).
- crypto: af_alg - wait for data at beginning of recvmsg (bsc#1154737).
- crypto: algif_aead - copy AAD from src to dst (bsc#1154737).
- crypto: algif_aead - fix reference counting of null skcipher (bsc#1154737).
- crypto: algif_aead - overhaul memory management (bsc#1154737).
- crypto: algif_aead - skip SGL entries with NULL page (bsc#1154737).
- crypto: algif - return error code when no data was processed (bsc#1154737).
- crypto: algif_skcipher - overhaul memory management (bsc#1154737).
- cxgb4:Fix out-of-bounds MSI-X info array access (networking-stable-19_10_05).
- dmaengine: bcm2835: Print error in case setting DMA mask fails (bsc#1051510).
- dmaengine: imx-sdma: fix size check for sdma script_number (bsc#1051510).
- drm/edid: Add 6 bpc quirk for SDC panel in Lenovo G50 (bsc#1051510).
- drm/i915: Add gen9 BCS cmdparsing (bsc#1135967)
- drm/i915: Add support for mandatory cmdparsing (bsc#1135967)
- drm/i915: Allow parsing of unsized batches (bsc#1135967)
- drm/i915/cmdparser: Add support for backward jumps (bsc#1135967)
- drm/i915/cmdparser: Ignore Length operands during command matching (bsc#1135967)
- drm/i915/cmdparser: Use explicit goto for error paths (bsc#1135967)
- drm/i915: Disable Secure Batches for gen6+
- drm/i915/gen8+: Add RC6 CTX corruption WA (bsc#1135967)
- drm/i915/gtt: Add read only pages to gen8_pte_encode (bsc#1135967)
- drm/i915/gtt: Disable read-only support under GVT (bsc#1135967)
- drm/i915/gtt: Read-only pages for insert_entries on bdw (bsc#1135967)
- drm/i915: Lower RM timeout to avoid DSI hard hangs (bsc#1135967)
- drm/i915: Prevent writing into a read-only object via a GGTT mmap (bsc#1135967)
- drm/i915: Remove Master tables from cmdparser
- drm/i915: Rename gen7 cmdparser tables (bsc#1135967)
- drm/i915: Support ro ppgtt mapped cmdparser shadow buffers (bsc#1135967)
- efi: cper: print AER info of PCIe fatal error (bsc#1051510).
- efi/memattr: Do not bail on zero VA if it equals the region's PA (bsc#1051510).
- efivar/ssdt: Do not iterate over EFI vars if no SSDT override was specified (bsc#1051510).
- HID: fix error message in hid_open_report() (bsc#1051510).
- HID: logitech-hidpp: do all FF cleanup in hidpp_ff_destroy() (bsc#1051510).
- hso: fix NULL-deref on tty open (bsc#1051510).
- hyperv: set nvme msi interrupts to unmanaged (jsc#SLE-8953, jsc#SLE-9221, jsc#SLE-4941, bsc#1119461, bsc#1119465, bsc#1138190, bsc#1154905).
- IB/core: Add mitigation for Spectre V1 (bsc#1155671)
- ieee802154: ca8210: prevent memory leak (bsc#1051510).
- input: synaptics-rmi4 - avoid processing unknown IRQs (bsc#1051510).
- integrity: prevent deadlock during digsig verification (bsc#1090631).
- ipv6: drop incoming packets having a v4mapped source address (networking-stable-19_10_05).
- ipv6: Handle missing host route in __ipv6_ifa_notify (networking-stable-19_10_05).
- iwlwifi: do not panic in error path on non-msix systems (bsc#1155692).
- iwlwifi: exclude GEO SAR support for 3168 (git-fixes).
- kABI workaround for crypto/af_alg changes (bsc#1154737).
- kABI workaround for drm_vma_offset_node readonly field addition (bsc#1135967)
- ksm: cleanup stable_node chain collapse case (bnc#1144338).
- ksm: fix use after free with merge_across_nodes = 0 (bnc#1144338).
- ksm: introduce ksm_max_page_sharing per page deduplication limit (bnc#1144338).
- ksm: optimize refile of stable_node_dup at the head of the chain (bnc#1144338).
- ksm: swap the two output parameters of chain/chain_prune (bnc#1144338).
- KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is active (bsc#1117665).
- mac80211: fix txq null pointer dereference (bsc#1051510).
- mac80211: Reject malformed SSID elements (bsc#1051510).
- md/raid0: avoid RAID0 data corruption due to layout confusion (bsc#1140090).
- md/raid0: fix warning message for parameter default_layout (bsc#1140090).
- Move upstreamed CA0132 fix into sorted section
- netfilter: nf_nat: do not bug when mapping already exists (bsc#1146612).
- net: openvswitch: free vport unless register_netdevice() succeeds (git-fixes).
- net/phy: fix DP83865 10 Mbps HDX loopback disable function (networking-stable-19_09_30).
- net: qlogic: Fix memory leak in ql_alloc_large_buffers (networking-stable-19_10_05).
- net: qrtr: Stop rx_worker before freeing node (networking-stable-19_09_30).
- net/rds: Fix error handling in rds_ib_add_one() (networking-stable-19_10_05).
- net/rds: fix warn in rds_message_alloc_sgs (bsc#1154848).
- net/rds: remove user triggered WARN_ON in rds_sendmsg (bsc#1154848).
- net: Replace NF_CT_ASSERT() with WARN_ON() (bsc#1146612).
- net/sched: act_sample: do not push mac header on ip6gre ingress (networking-stable-19_09_30).
- net_sched: add policy validation for action attributes (networking-stable-19_09_30).
- net_sched: fix backward compatibility for TCA_ACT_KIND (git-fixes).
- net: Unpublish sk from sk_reuseport_cb before call_rcu (networking-stable-19_10_05).
- NFSv4.1 - backchannel request should hold ref on xprt (bsc#1152624).
- nl80211: fix null pointer dereference (bsc#1051510).
- openvswitch: change type of UPCALL_PID attribute to NLA_UNSPEC (networking-stable-19_09_30).
- power: supply: max14656: fix potential use-after-free (bsc#1051510).
- qmi_wwan: add support for Cinterion CLS8 devices (networking-stable-19_10_05).
- r8152: Set macpassthru in reset_resume callback (bsc#1051510).
- rds: Fix warning (bsc#1154848).
- Revert 'ALSA: hda: Flush interrupts on disabling' (bsc#1051510).
- Revert 'drm/radeon: Fix EEH during kexec' (bsc#1051510).
- Revert synaptics-rmi4 patch due to regression (bsc#1155982) Also blacklisting it
- rpm/kernel-subpackage-spec: Mention debuginfo in the subpackage description (bsc#1149119).
- s390/cmf: set_schib_wait add timeout (bsc#1153509, bsc#1153476).
- s390/cpumsf: Check for CPU Measurement sampling (bsc#1153681 LTC#181855).
- sc16is7xx: Fix for 'Unexpected interrupt: 8' (bsc#1051510).
- sch_cbq: validate TCA_CBQ_WRROPT to avoid crash (networking-stable-19_10_05).
- sch_dsmark: fix potential NULL deref in dsmark_init() (networking-stable-19_10_05).
- sched/fair: Avoid divide by zero when rebalancing domains (bsc#1096254).
- sch_netem: fix a divide by zero in tabledist() (networking-stable-19_09_30).
- scsi: lpfc: Fix devices that do not return after devloss followed by rediscovery (bsc#1137040).
- scsi: lpfc: Limit xri count for kdump environment (bsc#1154124).
- scsi: qla2xxx: Add error handling for PLOGI ELS passthrough (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Capture FW dump on MPI heartbeat stop event (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Check for MB timeout while capturing ISP27/28xx FW dump (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Do command completion on abort timeout (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: do not use zero for FC4_PRIORITY_NVME (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Dual FCP-NVMe target port support (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Fix a dma_pool_free() call (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Fix device connect issues in P2P configuration (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Fix double scsi_done for abort path (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Fix driver unload hang (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Fix memory leak when sending I/O fails (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Fix N2N link reset (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Fix N2N link up fail (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Fix partial flash write of MBI (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Fix SRB leak on switch command timeout (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Fix stale mem access on driver unload (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Fix unbound sleep in fcport delete path (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: fixup incorrect usage of host_byte (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Fix wait condition in loop (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Improve logging for scan thread (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Initialized mailbox to prevent driver load failure (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: initialize fc4_type_priority (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Optimize NPIV tear down process (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Remove an include directive (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: remove redundant assignment to pointer host (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Retry PLOGI on FC-NVMe PRLI failure (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Set remove flag for all VP (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Silence fwdump template message (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: stop timer in shutdown path (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Update driver version to 10.01.00.20-k (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Update driver version to 10.01.00.21-k (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: sd: Ignore a failure to sync cache due to lack of authorization (git-fixes).
- scsi: storvsc: Add ability to change scsi queue depth (bsc#1155021).
- scsi: zfcp: fix reaction on bit error threshold notification (bsc#1154956 LTC#182054).
- serial: fix kernel-doc warning in comments (bsc#1051510).
- serial: mctrl_gpio: Check for NULL pointer (bsc#1051510).
- serial: uartlite: fix exit path null pointer (bsc#1051510).
- skge: fix checksum byte order (networking-stable-19_09_30).
- staging: rtl8188eu: fix null dereference when kzalloc fails (bsc#1051510).
- staging: wlan-ng: fix exit return when sme->key_idx >= NUM_WEPKEYS (bsc#1051510).
- supporte.conf: add efivarfs to kernel-default-base (bsc#1154858).
- tipc: fix unlimited bundling of small messages (networking-stable-19_10_05).
- tracing: Get trace_array reference for available_tracers files (bsc#1156429).
- usb: gadget: Reject endpoints with 0 maxpacket value (bsc#1051510).
- usb: gadget: udc: atmel: Fix interrupt storm in FIFO mode (bsc#1051510).
- usb: handle warm-reset port requests on hub resume (bsc#1051510).
- usb: ldusb: fix control-message timeout (bsc#1051510).
- usb: ldusb: fix memleak on disconnect (bsc#1051510).
- usb: ldusb: fix NULL-derefs on driver unbind (bsc#1051510).
- usb: ldusb: fix read info leaks (bsc#1051510).
- usb: ldusb: fix ring-buffer locking (bsc#1051510).
- usb: legousbtower: fix a signedness bug in tower_probe() (bsc#1051510).
- usb: legousbtower: fix memleak on disconnect (bsc#1051510).
- usb: serial: ti_usb_3410_5052: fix port-close races (bsc#1051510).
- usb: serial: whiteheat: fix line-speed endianness (bsc#1051510).
- usb: serial: whiteheat: fix potential slab corruption (bsc#1051510).
- usb-storage: Revert commit 747668dbc061 ('usb-storage: Set virt_boundary_mask to avoid SG overflows') (bsc#1051510).
- usb: udc: lpc32xx: fix bad bit shift operation (bsc#1051510).
- usb: usblp: fix use-after-free on disconnect (bsc#1051510).
- vsock: Fix a lockdep warning in __vsock_release() (networking-stable-19_10_05).
- x86/boot/64: Make level2_kernel_pgt pages invalid outside kernel area (bnc#1153969).
- x86/boot/64: Round memory hole size up to next PMD page (bnc#1153969).
Patchnames: openSUSE-2019-2503
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.2 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
References
98 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe openSUSE Leap 15.0 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2019-0154: An unprotected read access to i915 registers has been fixed that could have been abused to facilitate a local denial-of-service attack. (bsc#1135966)\n- CVE-2019-0155: A privilege escalation vulnerability has been fixed in the i915 module that allowed batch buffers from user mode to gain super user privileges. (bsc#1135967)\n- CVE-2019-16231: drivers/net/fjes/fjes_main.c did not check the alloc_workqueue return value, leading to a NULL pointer dereference (bnc#1150466).\n- CVE-2019-18805: There was a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6 (bnc#1156187).\n- CVE-2019-17055: base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module did not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21 (bnc#1152782).\n- CVE-2019-16995: A memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c, if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d (bnc#1152685).\n- CVE-2019-11135: Aborting an asynchronous TSX operation on Intel CPUs with Transactional Memory support could be used to facilitate sidechannel information leaks out of microarchitectural buffers, similar to the previously described \u0027Microarchitectural Data Sampling\u0027 attack.\n\n The Linux kernel was supplemented with the option to disable TSX operation altogether (requiring CPU Microcode updates on older systems) and better flushing of microarchitectural buffers (VERW).\n\n The set of options available is described in our TID at https://www.suse.com/support/kb/doc/?id=7024251\n\n- CVE-2019-16233: drivers/scsi/qla2xxx/qla_os.c did not check the alloc_workqueue return value, leading to a NULL pointer dereference (bnc#1150457).\n- CVE-2018-12207: Untrusted virtual machines on Intel CPUs could exploit a race condition in the Instruction Fetch Unit of the Intel CPU to cause a Machine Exception during Page Size Change, causing the CPU core to be non-functional.\n\n The Linux Kernel kvm hypervisor was adjusted to avoid page size changes in executable pages by splitting / merging huge pages into small pages as needed.\n\n More information can be found on https://www.suse.com/support/kb/doc/?id=7023735\n\n- CVE-2019-10220: Added sanity checks on the pathnames passed to the user space. (bsc#1144903).\n\nThe following non-security bugs were fixed:\n\n- ALSA: bebob: Fix prototype of helper function to return negative value (bsc#1051510).\n- ALSA: bebob: fix to detect configured source of sampling clock for Focusrite Saffire Pro i/o series (git-fixes).\n- ALSA: hda: Add Elkhart Lake PCI ID (bsc#1051510).\n- ALSA: hda: Add Tigerlake/Jasperlake PCI ID (bsc#1051510).\n- ALSA: hda/ca0132 - Fix possible workqueue stall (bsc#1155836).\n- ALSA: hda/realtek - Add support for ALC623 (bsc#1051510).\n- ALSA: hda/realtek - Add support for ALC711 (bsc#1051510).\n- ALSA: hda/realtek - Fix 2 front mics of codec 0x623 (bsc#1051510).\n- ALSA: timer: Fix incorrectly assigned timer instance (git-fixes).\n- ALSA: timer: Fix mutex deadlock at releasing card (bsc#1051510).\n- arcnet: provide a buffer big enough to actually receive packets (networking-stable-19_09_30).\n- ASoc: rockchip: i2s: Fix RPM imbalance (bsc#1051510).\n- ASoC: rsnd: Reinitialize bit clock inversion flag for every format setting (bsc#1051510).\n- bpf: fix use after free in prog symbol exposure (bsc#1083647).\n- btrfs: block-group: Fix a memory leak due to missing btrfs_put_block_group() (bsc#1155178).\n- btrfs: qgroup: Always free PREALLOC META reserve in btrfs_delalloc_release_extents() (bsc#1155179).\n- btrfs: tracepoints: Fix bad entry members of qgroup events (bsc#1155186).\n- btrfs: tracepoints: Fix wrong parameter order for qgroup events (bsc#1155184).\n- can: dev: call netif_carrier_off() in register_candev() (bsc#1051510).\n- crypto: af_alg - consolidation of duplicate code (bsc#1154737).\n- crypto: af_alg - fix race accessing cipher request (bsc#1154737).\n- crypto: af_alg - Fix race around ctx-\u003ercvused by making it atomic_t (bsc#1154737).\n- crypto: af_alg - Initialize sg_num_bytes in error code path (bsc#1051510).\n- crypto: af_alg - remove locking in async callback (bsc#1154737).\n- crypto: af_alg - update correct dst SGL entry (bsc#1051510).\n- crypto: af_alg - wait for data at beginning of recvmsg (bsc#1154737).\n- crypto: algif_aead - copy AAD from src to dst (bsc#1154737).\n- crypto: algif_aead - fix reference counting of null skcipher (bsc#1154737).\n- crypto: algif_aead - overhaul memory management (bsc#1154737).\n- crypto: algif_aead - skip SGL entries with NULL page (bsc#1154737).\n- crypto: algif - return error code when no data was processed (bsc#1154737).\n- crypto: algif_skcipher - overhaul memory management (bsc#1154737).\n- cxgb4:Fix out-of-bounds MSI-X info array access (networking-stable-19_10_05).\n- dmaengine: bcm2835: Print error in case setting DMA mask fails (bsc#1051510).\n- dmaengine: imx-sdma: fix size check for sdma script_number (bsc#1051510).\n- drm/edid: Add 6 bpc quirk for SDC panel in Lenovo G50 (bsc#1051510).\n- drm/i915: Add gen9 BCS cmdparsing (bsc#1135967)\n- drm/i915: Add support for mandatory cmdparsing (bsc#1135967)\n- drm/i915: Allow parsing of unsized batches (bsc#1135967)\n- drm/i915/cmdparser: Add support for backward jumps (bsc#1135967)\n- drm/i915/cmdparser: Ignore Length operands during command matching (bsc#1135967)\n- drm/i915/cmdparser: Use explicit goto for error paths (bsc#1135967)\n- drm/i915: Disable Secure Batches for gen6+\n- drm/i915/gen8+: Add RC6 CTX corruption WA (bsc#1135967)\n- drm/i915/gtt: Add read only pages to gen8_pte_encode (bsc#1135967)\n- drm/i915/gtt: Disable read-only support under GVT (bsc#1135967)\n- drm/i915/gtt: Read-only pages for insert_entries on bdw (bsc#1135967)\n- drm/i915: Lower RM timeout to avoid DSI hard hangs (bsc#1135967)\n- drm/i915: Prevent writing into a read-only object via a GGTT mmap (bsc#1135967)\n- drm/i915: Remove Master tables from cmdparser\n- drm/i915: Rename gen7 cmdparser tables (bsc#1135967)\n- drm/i915: Support ro ppgtt mapped cmdparser shadow buffers (bsc#1135967)\n- efi: cper: print AER info of PCIe fatal error (bsc#1051510).\n- efi/memattr: Do not bail on zero VA if it equals the region\u0027s PA (bsc#1051510).\n- efivar/ssdt: Do not iterate over EFI vars if no SSDT override was specified (bsc#1051510).\n- HID: fix error message in hid_open_report() (bsc#1051510).\n- HID: logitech-hidpp: do all FF cleanup in hidpp_ff_destroy() (bsc#1051510).\n- hso: fix NULL-deref on tty open (bsc#1051510).\n- hyperv: set nvme msi interrupts to unmanaged (jsc#SLE-8953, jsc#SLE-9221, jsc#SLE-4941, bsc#1119461, bsc#1119465, bsc#1138190, bsc#1154905).\n- IB/core: Add mitigation for Spectre V1 (bsc#1155671)\n- ieee802154: ca8210: prevent memory leak (bsc#1051510).\n- input: synaptics-rmi4 - avoid processing unknown IRQs (bsc#1051510).\n- integrity: prevent deadlock during digsig verification (bsc#1090631).\n- ipv6: drop incoming packets having a v4mapped source address (networking-stable-19_10_05).\n- ipv6: Handle missing host route in __ipv6_ifa_notify (networking-stable-19_10_05).\n- iwlwifi: do not panic in error path on non-msix systems (bsc#1155692).\n- iwlwifi: exclude GEO SAR support for 3168 (git-fixes).\n- kABI workaround for crypto/af_alg changes (bsc#1154737).\n- kABI workaround for drm_vma_offset_node readonly field addition (bsc#1135967)\n- ksm: cleanup stable_node chain collapse case (bnc#1144338).\n- ksm: fix use after free with merge_across_nodes = 0 (bnc#1144338).\n- ksm: introduce ksm_max_page_sharing per page deduplication limit (bnc#1144338).\n- ksm: optimize refile of stable_node_dup at the head of the chain (bnc#1144338).\n- ksm: swap the two output parameters of chain/chain_prune (bnc#1144338).\n- KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is active (bsc#1117665).\n- mac80211: fix txq null pointer dereference (bsc#1051510).\n- mac80211: Reject malformed SSID elements (bsc#1051510).\n- md/raid0: avoid RAID0 data corruption due to layout confusion (bsc#1140090).\n- md/raid0: fix warning message for parameter default_layout (bsc#1140090).\n- Move upstreamed CA0132 fix into sorted section\n- netfilter: nf_nat: do not bug when mapping already exists (bsc#1146612).\n- net: openvswitch: free vport unless register_netdevice() succeeds (git-fixes).\n- net/phy: fix DP83865 10 Mbps HDX loopback disable function (networking-stable-19_09_30).\n- net: qlogic: Fix memory leak in ql_alloc_large_buffers (networking-stable-19_10_05).\n- net: qrtr: Stop rx_worker before freeing node (networking-stable-19_09_30).\n- net/rds: Fix error handling in rds_ib_add_one() (networking-stable-19_10_05).\n- net/rds: fix warn in rds_message_alloc_sgs (bsc#1154848).\n- net/rds: remove user triggered WARN_ON in rds_sendmsg (bsc#1154848).\n- net: Replace NF_CT_ASSERT() with WARN_ON() (bsc#1146612).\n- net/sched: act_sample: do not push mac header on ip6gre ingress (networking-stable-19_09_30).\n- net_sched: add policy validation for action attributes (networking-stable-19_09_30).\n- net_sched: fix backward compatibility for TCA_ACT_KIND (git-fixes).\n- net: Unpublish sk from sk_reuseport_cb before call_rcu (networking-stable-19_10_05).\n- NFSv4.1 - backchannel request should hold ref on xprt (bsc#1152624).\n- nl80211: fix null pointer dereference (bsc#1051510).\n- openvswitch: change type of UPCALL_PID attribute to NLA_UNSPEC (networking-stable-19_09_30).\n- power: supply: max14656: fix potential use-after-free (bsc#1051510).\n- qmi_wwan: add support for Cinterion CLS8 devices (networking-stable-19_10_05).\n- r8152: Set macpassthru in reset_resume callback (bsc#1051510).\n- rds: Fix warning (bsc#1154848).\n- Revert \u0027ALSA: hda: Flush interrupts on disabling\u0027 (bsc#1051510).\n- Revert \u0027drm/radeon: Fix EEH during kexec\u0027 (bsc#1051510).\n- Revert synaptics-rmi4 patch due to regression (bsc#1155982) Also blacklisting it\n- rpm/kernel-subpackage-spec: Mention debuginfo in the subpackage description (bsc#1149119).\n- s390/cmf: set_schib_wait add timeout (bsc#1153509, bsc#1153476).\n- s390/cpumsf: Check for CPU Measurement sampling (bsc#1153681 LTC#181855).\n- sc16is7xx: Fix for \u0027Unexpected interrupt: 8\u0027 (bsc#1051510).\n- sch_cbq: validate TCA_CBQ_WRROPT to avoid crash (networking-stable-19_10_05).\n- sch_dsmark: fix potential NULL deref in dsmark_init() (networking-stable-19_10_05).\n- sched/fair: Avoid divide by zero when rebalancing domains (bsc#1096254).\n- sch_netem: fix a divide by zero in tabledist() (networking-stable-19_09_30).\n- scsi: lpfc: Fix devices that do not return after devloss followed by rediscovery (bsc#1137040).\n- scsi: lpfc: Limit xri count for kdump environment (bsc#1154124).\n- scsi: qla2xxx: Add error handling for PLOGI ELS passthrough (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Capture FW dump on MPI heartbeat stop event (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Check for MB timeout while capturing ISP27/28xx FW dump (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Do command completion on abort timeout (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: do not use zero for FC4_PRIORITY_NVME (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Dual FCP-NVMe target port support (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Fix a dma_pool_free() call (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Fix device connect issues in P2P configuration (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Fix double scsi_done for abort path (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Fix driver unload hang (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Fix memory leak when sending I/O fails (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Fix N2N link reset (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Fix N2N link up fail (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Fix partial flash write of MBI (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Fix SRB leak on switch command timeout (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Fix stale mem access on driver unload (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Fix unbound sleep in fcport delete path (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: fixup incorrect usage of host_byte (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Fix wait condition in loop (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Improve logging for scan thread (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Initialized mailbox to prevent driver load failure (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: initialize fc4_type_priority (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Optimize NPIV tear down process (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Remove an include directive (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: remove redundant assignment to pointer host (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Retry PLOGI on FC-NVMe PRLI failure (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Set remove flag for all VP (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Silence fwdump template message (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: stop timer in shutdown path (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Update driver version to 10.01.00.20-k (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Update driver version to 10.01.00.21-k (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: sd: Ignore a failure to sync cache due to lack of authorization (git-fixes).\n- scsi: storvsc: Add ability to change scsi queue depth (bsc#1155021).\n- scsi: zfcp: fix reaction on bit error threshold notification (bsc#1154956 LTC#182054).\n- serial: fix kernel-doc warning in comments (bsc#1051510).\n- serial: mctrl_gpio: Check for NULL pointer (bsc#1051510).\n- serial: uartlite: fix exit path null pointer (bsc#1051510).\n- skge: fix checksum byte order (networking-stable-19_09_30).\n- staging: rtl8188eu: fix null dereference when kzalloc fails (bsc#1051510).\n- staging: wlan-ng: fix exit return when sme-\u003ekey_idx \u003e= NUM_WEPKEYS (bsc#1051510).\n- supporte.conf: add efivarfs to kernel-default-base (bsc#1154858).\n- tipc: fix unlimited bundling of small messages (networking-stable-19_10_05).\n- tracing: Get trace_array reference for available_tracers files (bsc#1156429).\n- usb: gadget: Reject endpoints with 0 maxpacket value (bsc#1051510).\n- usb: gadget: udc: atmel: Fix interrupt storm in FIFO mode (bsc#1051510).\n- usb: handle warm-reset port requests on hub resume (bsc#1051510).\n- usb: ldusb: fix control-message timeout (bsc#1051510).\n- usb: ldusb: fix memleak on disconnect (bsc#1051510).\n- usb: ldusb: fix NULL-derefs on driver unbind (bsc#1051510).\n- usb: ldusb: fix read info leaks (bsc#1051510).\n- usb: ldusb: fix ring-buffer locking (bsc#1051510).\n- usb: legousbtower: fix a signedness bug in tower_probe() (bsc#1051510).\n- usb: legousbtower: fix memleak on disconnect (bsc#1051510).\n- usb: serial: ti_usb_3410_5052: fix port-close races (bsc#1051510).\n- usb: serial: whiteheat: fix line-speed endianness (bsc#1051510).\n- usb: serial: whiteheat: fix potential slab corruption (bsc#1051510).\n- usb-storage: Revert commit 747668dbc061 (\u0027usb-storage: Set virt_boundary_mask to avoid SG overflows\u0027) (bsc#1051510).\n- usb: udc: lpc32xx: fix bad bit shift operation (bsc#1051510).\n- usb: usblp: fix use-after-free on disconnect (bsc#1051510).\n- vsock: Fix a lockdep warning in __vsock_release() (networking-stable-19_10_05).\n- x86/boot/64: Make level2_kernel_pgt pages invalid outside kernel area (bnc#1153969).\n- x86/boot/64: Round memory hole size up to next PMD page (bnc#1153969).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-2503",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_2503-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:2503-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GT2JTOAOVM6XT2DFUS6CAXI4NAAVMRVR/#GT2JTOAOVM6XT2DFUS6CAXI4NAAVMRVR"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:2503-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GT2JTOAOVM6XT2DFUS6CAXI4NAAVMRVR/#GT2JTOAOVM6XT2DFUS6CAXI4NAAVMRVR"
},
{
"category": "self",
"summary": "SUSE Bug 1048942",
"url": "https://bugzilla.suse.com/1048942"
},
{
"category": "self",
"summary": "SUSE Bug 1051510",
"url": "https://bugzilla.suse.com/1051510"
},
{
"category": "self",
"summary": "SUSE Bug 1082635",
"url": "https://bugzilla.suse.com/1082635"
},
{
"category": "self",
"summary": "SUSE Bug 1083647",
"url": "https://bugzilla.suse.com/1083647"
},
{
"category": "self",
"summary": "SUSE Bug 1090631",
"url": "https://bugzilla.suse.com/1090631"
},
{
"category": "self",
"summary": "SUSE Bug 1096254",
"url": "https://bugzilla.suse.com/1096254"
},
{
"category": "self",
"summary": "SUSE Bug 1117665",
"url": "https://bugzilla.suse.com/1117665"
},
{
"category": "self",
"summary": "SUSE Bug 1119461",
"url": "https://bugzilla.suse.com/1119461"
},
{
"category": "self",
"summary": "SUSE Bug 1119465",
"url": "https://bugzilla.suse.com/1119465"
},
{
"category": "self",
"summary": "SUSE Bug 1123034",
"url": "https://bugzilla.suse.com/1123034"
},
{
"category": "self",
"summary": "SUSE Bug 1135966",
"url": "https://bugzilla.suse.com/1135966"
},
{
"category": "self",
"summary": "SUSE Bug 1135967",
"url": "https://bugzilla.suse.com/1135967"
},
{
"category": "self",
"summary": "SUSE Bug 1137040",
"url": "https://bugzilla.suse.com/1137040"
},
{
"category": "self",
"summary": "SUSE Bug 1138190",
"url": "https://bugzilla.suse.com/1138190"
},
{
"category": "self",
"summary": "SUSE Bug 1139073",
"url": "https://bugzilla.suse.com/1139073"
},
{
"category": "self",
"summary": "SUSE Bug 1140090",
"url": "https://bugzilla.suse.com/1140090"
},
{
"category": "self",
"summary": "SUSE Bug 1143706",
"url": "https://bugzilla.suse.com/1143706"
},
{
"category": "self",
"summary": "SUSE Bug 1144338",
"url": "https://bugzilla.suse.com/1144338"
},
{
"category": "self",
"summary": "SUSE Bug 1144903",
"url": "https://bugzilla.suse.com/1144903"
},
{
"category": "self",
"summary": "SUSE Bug 1146612",
"url": "https://bugzilla.suse.com/1146612"
},
{
"category": "self",
"summary": "SUSE Bug 1149119",
"url": "https://bugzilla.suse.com/1149119"
},
{
"category": "self",
"summary": "SUSE Bug 1150457",
"url": "https://bugzilla.suse.com/1150457"
},
{
"category": "self",
"summary": "SUSE Bug 1150466",
"url": "https://bugzilla.suse.com/1150466"
},
{
"category": "self",
"summary": "SUSE Bug 1152624",
"url": "https://bugzilla.suse.com/1152624"
},
{
"category": "self",
"summary": "SUSE Bug 1152685",
"url": "https://bugzilla.suse.com/1152685"
},
{
"category": "self",
"summary": "SUSE Bug 1152782",
"url": "https://bugzilla.suse.com/1152782"
},
{
"category": "self",
"summary": "SUSE Bug 1153476",
"url": "https://bugzilla.suse.com/1153476"
},
{
"category": "self",
"summary": "SUSE Bug 1153509",
"url": "https://bugzilla.suse.com/1153509"
},
{
"category": "self",
"summary": "SUSE Bug 1153681",
"url": "https://bugzilla.suse.com/1153681"
},
{
"category": "self",
"summary": "SUSE Bug 1153969",
"url": "https://bugzilla.suse.com/1153969"
},
{
"category": "self",
"summary": "SUSE Bug 1154124",
"url": "https://bugzilla.suse.com/1154124"
},
{
"category": "self",
"summary": "SUSE Bug 1154526",
"url": "https://bugzilla.suse.com/1154526"
},
{
"category": "self",
"summary": "SUSE Bug 1154737",
"url": "https://bugzilla.suse.com/1154737"
},
{
"category": "self",
"summary": "SUSE Bug 1154848",
"url": "https://bugzilla.suse.com/1154848"
},
{
"category": "self",
"summary": "SUSE Bug 1154858",
"url": "https://bugzilla.suse.com/1154858"
},
{
"category": "self",
"summary": "SUSE Bug 1154905",
"url": "https://bugzilla.suse.com/1154905"
},
{
"category": "self",
"summary": "SUSE Bug 1154956",
"url": "https://bugzilla.suse.com/1154956"
},
{
"category": "self",
"summary": "SUSE Bug 1155021",
"url": "https://bugzilla.suse.com/1155021"
},
{
"category": "self",
"summary": "SUSE Bug 1155178",
"url": "https://bugzilla.suse.com/1155178"
},
{
"category": "self",
"summary": "SUSE Bug 1155179",
"url": "https://bugzilla.suse.com/1155179"
},
{
"category": "self",
"summary": "SUSE Bug 1155184",
"url": "https://bugzilla.suse.com/1155184"
},
{
"category": "self",
"summary": "SUSE Bug 1155186",
"url": "https://bugzilla.suse.com/1155186"
},
{
"category": "self",
"summary": "SUSE Bug 1155671",
"url": "https://bugzilla.suse.com/1155671"
},
{
"category": "self",
"summary": "SUSE Bug 1155692",
"url": "https://bugzilla.suse.com/1155692"
},
{
"category": "self",
"summary": "SUSE Bug 1155836",
"url": "https://bugzilla.suse.com/1155836"
},
{
"category": "self",
"summary": "SUSE Bug 1155982",
"url": "https://bugzilla.suse.com/1155982"
},
{
"category": "self",
"summary": "SUSE Bug 1156187",
"url": "https://bugzilla.suse.com/1156187"
},
{
"category": "self",
"summary": "SUSE Bug 1156429",
"url": "https://bugzilla.suse.com/1156429"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12207 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-0154 page",
"url": "https://www.suse.com/security/cve/CVE-2019-0154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-0155 page",
"url": "https://www.suse.com/security/cve/CVE-2019-0155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-10220 page",
"url": "https://www.suse.com/security/cve/CVE-2019-10220/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11135 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16231 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16233 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16995 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17055 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17055/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-18805 page",
"url": "https://www.suse.com/security/cve/CVE-2019-18805/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2019-11-14T05:53:54Z",
"generator": {
"date": "2019-11-14T05:53:54Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:2503-1",
"initial_release_date": "2019-11-14T05:53:54Z",
"revision_history": [
{
"date": "2019-11-14T05:53:54Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-4.12.14-lp150.12.82.1.noarch",
"product": {
"name": "kernel-devel-4.12.14-lp150.12.82.1.noarch",
"product_id": "kernel-devel-4.12.14-lp150.12.82.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-4.12.14-lp150.12.82.1.noarch",
"product": {
"name": "kernel-docs-4.12.14-lp150.12.82.1.noarch",
"product_id": "kernel-docs-4.12.14-lp150.12.82.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"product": {
"name": "kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"product_id": "kernel-docs-html-4.12.14-lp150.12.82.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-4.12.14-lp150.12.82.1.noarch",
"product": {
"name": "kernel-macros-4.12.14-lp150.12.82.1.noarch",
"product_id": "kernel-macros-4.12.14-lp150.12.82.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-4.12.14-lp150.12.82.1.noarch",
"product": {
"name": "kernel-source-4.12.14-lp150.12.82.1.noarch",
"product_id": "kernel-source-4.12.14-lp150.12.82.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"product": {
"name": "kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"product_id": "kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-debug-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-debug-base-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-default-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-default-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-default-base-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-default-devel-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-obs-build-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-syms-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-vanilla-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64",
"product": {
"name": "kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64",
"product_id": "kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.0",
"product": {
"name": "openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-base-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-default-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-4.12.14-lp150.12.82.1.noarch as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch"
},
"product_reference": "kernel-devel-4.12.14-lp150.12.82.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-4.12.14-lp150.12.82.1.noarch as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch"
},
"product_reference": "kernel-docs-4.12.14-lp150.12.82.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-html-4.12.14-lp150.12.82.1.noarch as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch"
},
"product_reference": "kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-4.12.14-lp150.12.82.1.noarch as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch"
},
"product_reference": "kernel-macros-4.12.14-lp150.12.82.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-4.12.14-lp150.12.82.1.noarch as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch"
},
"product_reference": "kernel-source-4.12.14-lp150.12.82.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch"
},
"product_reference": "kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
},
"product_reference": "kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-12207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12207"
}
],
"notes": [
{
"category": "general",
"text": "Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host system via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12207",
"url": "https://www.suse.com/security/cve/CVE-2018-12207"
},
{
"category": "external",
"summary": "SUSE Bug 1117665 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1117665"
},
{
"category": "external",
"summary": "SUSE Bug 1139073 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1139073"
},
{
"category": "external",
"summary": "SUSE Bug 1152505 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1152505"
},
{
"category": "external",
"summary": "SUSE Bug 1155812 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1155812"
},
{
"category": "external",
"summary": "SUSE Bug 1155817 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1155817"
},
{
"category": "external",
"summary": "SUSE Bug 1155945 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1155945"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1178658"
},
{
"category": "external",
"summary": "SUSE Bug 1201877 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1201877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:53:54Z",
"details": "moderate"
}
],
"title": "CVE-2018-12207"
},
{
"cve": "CVE-2019-0154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-0154"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient access control in subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Gold Series; Intel(R) Celeron(R) Processor J, N, G3900 and G4900 Series; Intel(R) Atom(R) Processor A and E3900 Series; Intel(R) Xeon(R) Processor E3-1500 v5 and v6 and E-2100 Processor Families may allow an authenticated user to potentially enable denial of service via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-0154",
"url": "https://www.suse.com/security/cve/CVE-2019-0154"
},
{
"category": "external",
"summary": "SUSE Bug 1135966 for CVE-2019-0154",
"url": "https://bugzilla.suse.com/1135966"
},
{
"category": "external",
"summary": "SUSE Bug 1181720 for CVE-2019-0154",
"url": "https://bugzilla.suse.com/1181720"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:53:54Z",
"details": "important"
}
],
"title": "CVE-2019-0154"
},
{
"cve": "CVE-2019-0155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-0155"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Gold Series; Intel(R) Celeron(R) Processor J, N, G3900 and G4900 Series; Intel(R) Atom(R) Processor A and E3900 Series; Intel(R) Xeon(R) Processor E3-1500 v5 and v6, E-2100 and E-2200 Processor Families; Intel(R) Graphics Driver for Windows before 26.20.100.6813 (DCH) or 26.20.100.6812 and before 21.20.x.5077 (aka15.45.5077), i915 Linux Driver for Intel(R) Processor Graphics before versions 5.4-rc7, 5.3.11, 4.19.84, 4.14.154, 4.9.201, 4.4.201 may allow an authenticated user to potentially enable escalation of privilege via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-0155",
"url": "https://www.suse.com/security/cve/CVE-2019-0155"
},
{
"category": "external",
"summary": "SUSE Bug 1135966 for CVE-2019-0155",
"url": "https://bugzilla.suse.com/1135966"
},
{
"category": "external",
"summary": "SUSE Bug 1135967 for CVE-2019-0155",
"url": "https://bugzilla.suse.com/1135967"
},
{
"category": "external",
"summary": "SUSE Bug 1173663 for CVE-2019-0155",
"url": "https://bugzilla.suse.com/1173663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:53:54Z",
"details": "important"
}
],
"title": "CVE-2019-0155"
},
{
"cve": "CVE-2019-10220",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-10220"
}
],
"notes": [
{
"category": "general",
"text": "Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-10220",
"url": "https://www.suse.com/security/cve/CVE-2019-10220"
},
{
"category": "external",
"summary": "SUSE Bug 1144903 for CVE-2019-10220",
"url": "https://bugzilla.suse.com/1144903"
},
{
"category": "external",
"summary": "SUSE Bug 1153108 for CVE-2019-10220",
"url": "https://bugzilla.suse.com/1153108"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:53:54Z",
"details": "moderate"
}
],
"title": "CVE-2019-10220"
},
{
"cve": "CVE-2019-11135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11135"
}
],
"notes": [
{
"category": "general",
"text": "TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11135",
"url": "https://www.suse.com/security/cve/CVE-2019-11135"
},
{
"category": "external",
"summary": "SUSE Bug 1139073 for CVE-2019-11135",
"url": "https://bugzilla.suse.com/1139073"
},
{
"category": "external",
"summary": "SUSE Bug 1152497 for CVE-2019-11135",
"url": "https://bugzilla.suse.com/1152497"
},
{
"category": "external",
"summary": "SUSE Bug 1152505 for CVE-2019-11135",
"url": "https://bugzilla.suse.com/1152505"
},
{
"category": "external",
"summary": "SUSE Bug 1152506 for CVE-2019-11135",
"url": "https://bugzilla.suse.com/1152506"
},
{
"category": "external",
"summary": "SUSE Bug 1160120 for CVE-2019-11135",
"url": "https://bugzilla.suse.com/1160120"
},
{
"category": "external",
"summary": "SUSE Bug 1201877 for CVE-2019-11135",
"url": "https://bugzilla.suse.com/1201877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:53:54Z",
"details": "moderate"
}
],
"title": "CVE-2019-11135"
},
{
"cve": "CVE-2019-16231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16231"
}
],
"notes": [
{
"category": "general",
"text": "drivers/net/fjes/fjes_main.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16231",
"url": "https://www.suse.com/security/cve/CVE-2019-16231"
},
{
"category": "external",
"summary": "SUSE Bug 1150466 for CVE-2019-16231",
"url": "https://bugzilla.suse.com/1150466"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:53:54Z",
"details": "moderate"
}
],
"title": "CVE-2019-16231"
},
{
"cve": "CVE-2019-16233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16233"
}
],
"notes": [
{
"category": "general",
"text": "drivers/scsi/qla2xxx/qla_os.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16233",
"url": "https://www.suse.com/security/cve/CVE-2019-16233"
},
{
"category": "external",
"summary": "SUSE Bug 1150457 for CVE-2019-16233",
"url": "https://bugzilla.suse.com/1150457"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:53:54Z",
"details": "moderate"
}
],
"title": "CVE-2019-16233"
},
{
"cve": "CVE-2019-16995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16995"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16995",
"url": "https://www.suse.com/security/cve/CVE-2019-16995"
},
{
"category": "external",
"summary": "SUSE Bug 1152685 for CVE-2019-16995",
"url": "https://bugzilla.suse.com/1152685"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:53:54Z",
"details": "moderate"
}
],
"title": "CVE-2019-16995"
},
{
"cve": "CVE-2019-17055",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17055"
}
],
"notes": [
{
"category": "general",
"text": "base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17055",
"url": "https://www.suse.com/security/cve/CVE-2019-17055"
},
{
"category": "external",
"summary": "SUSE Bug 1152782 for CVE-2019-17055",
"url": "https://bugzilla.suse.com/1152782"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:53:54Z",
"details": "moderate"
}
],
"title": "CVE-2019-17055"
},
{
"cve": "CVE-2019-18805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-18805"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-18805",
"url": "https://www.suse.com/security/cve/CVE-2019-18805"
},
{
"category": "external",
"summary": "SUSE Bug 1156187 for CVE-2019-18805",
"url": "https://bugzilla.suse.com/1156187"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:kernel-debug-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-debug-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-default-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-devel-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-docs-html-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-kvmsmall-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-kvmsmall-devel-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-macros-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-obs-build-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-obs-qa-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-source-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-source-vanilla-4.12.14-lp150.12.82.1.noarch",
"openSUSE Leap 15.0:kernel-syms-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-base-4.12.14-lp150.12.82.1.x86_64",
"openSUSE Leap 15.0:kernel-vanilla-devel-4.12.14-lp150.12.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:53:54Z",
"details": "low"
}
],
"title": "CVE-2019-18805"
}
]
}
OPENSUSE-SU-2019:2507-1
Vulnerability from csaf_opensuse - Published: 2019-11-14 05:59 - Updated: 2019-11-14 05:59Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The openSUSE Leap 15.1 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2019-0154: An unprotected read access to i915 registers has been fixed that could have been abused to facilitate a local denial-of-service attack. (bsc#1135966)
- CVE-2019-0155: A privilege escalation vulnerability has been fixed in the i915 module that allowed batch buffers from user mode to gain super user privileges. (bsc#1135967)
- CVE-2019-16231: drivers/net/fjes/fjes_main.c did not check the alloc_workqueue return value, leading to a NULL pointer dereference (bnc#1150466).
- CVE-2019-18805: There was a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6 (bnc#1156187).
- CVE-2019-17055: base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module did not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21 (bnc#1152782).
- CVE-2019-11135: Aborting an asynchronous TSX operation on Intel CPUs with Transactional Memory support could be used to facilitate sidechannel information leaks out of microarchitectural buffers, similar to the previously described 'Microarchitectural Data Sampling' attack.
The Linux kernel was supplemented with the option to disable TSX operation altogether (requiring CPU Microcode updates on older systems) and better flushing of microarchitectural buffers (VERW).
The set of options available is described in our TID at https://www.suse.com/support/kb/doc/?id=7024251
- CVE-2018-12207: Untrusted virtual machines on Intel CPUs could exploit a race condition in the Instruction Fetch Unit of the Intel CPU to cause a Machine Exception during Page Size Change, causing the CPU core to be non-functional.
The Linux Kernel kvm hypervisor was adjusted to avoid page size changes in executable pages by splitting / merging huge pages into small pages as needed.
More information can be found on https://www.suse.com/support/kb/doc/?id=7023735
- CVE-2019-10220: Added sanity checks on the pathnames passed to the user space. (bsc#1144903).
The following non-security bugs were fixed:
- ALSA: bebob: Fix prototype of helper function to return negative value (bsc#1051510).
- ALSA: bebob: fix to detect configured source of sampling clock for Focusrite Saffire Pro i/o series (git-fixes).
- ALSA: firewire-motu: add support for MOTU 4pre (bsc#1111666).
- ALSA: hda/ca0132 - Fix possible workqueue stall (bsc#1155836).
- ALSA: hda/realtek - Add support for ALC623 (bsc#1051510).
- ALSA: hda/realtek - Fix 2 front mics of codec 0x623 (bsc#1051510).
- ALSA: timer: Fix incorrectly assigned timer instance (git-fixes).
- ALSA: timer: Fix mutex deadlock at releasing card (bsc#1051510).
- ALSA: usb-audio: Add DSD support for Gustard U16/X26 USB Interface (bsc#1051510).
- ALSA: usb-audio: Disable quirks for BOSS Katana amplifiers (bsc#1111666).
- ALSA: usb-audio: Fix copy&paste error in the validator (bsc#1111666).
- arm64: Add decoding macros for CP15_32 and CP15_64 traps (jsc#ECO-561).
- arm64: Add part number for Neoverse N1 (jsc#ECO-561).
- arm64: Add silicon-errata.txt entry for ARM erratum 1188873 (jsc#ECO-561).
- arm64: Add support for new control bits CTR_EL0.DIC and CTR_EL0.IDC (jsc#ECO-561,jsc#SLE-10671).
- arm64: Apply ARM64_ERRATUM_1188873 to Neoverse-N1 (jsc#ECO-561).
- arm64: arch_timer: Add workaround for ARM erratum 1188873 (jsc#ECO-561).
- arm64: arch_timer: avoid unused function warning (jsc#ECO-561).
- arm64: compat: Add CNTFRQ trap handler (jsc#ECO-561).
- arm64: compat: Add CNTVCT trap handler (jsc#ECO-561).
- arm64: compat: Add condition code checks and IT advance (jsc#ECO-561).
- arm64: compat: Add cp15_32 and cp15_64 handler arrays (jsc#ECO-561).
- arm64: compat: Add separate CP15 trapping hook (jsc#ECO-561).
- arm64: compat: Workaround Neoverse-N1 #1542419 for compat user-space (jsc#ECO-561,jsc#SLE-10671).
- arm64: cpu_errata: Remove ARM64_MISMATCHED_CACHE_LINE_SIZE (jsc#ECO-561,jsc#SLE-10671).
- arm64/cpufeature: Convert hook_lock to raw_spin_lock_t in cpu_enable_ssbs() (jsc#ECO-561).
- arm64: cpufeature: ctr: Fix cpu capability check for late CPUs (jsc#ECO-561,jsc#SLE-10671).
- arm64: cpufeature: Detect SSBS and advertise to userspace (jsc#ECO-561).
- arm64: cpufeature: Fix handling of CTR_EL0.IDC field (jsc#ECO-561,jsc#SLE-10671).
- arm64: cpufeature: Trap CTR_EL0 access only where it is necessary (jsc#ECO-561,jsc#SLE-10671).
- arm64: cpu: Move errata and feature enable callbacks closer to callers (jsc#ECO-561).
- arm64: entry: Allow handling of undefined instructions from EL1 (jsc#ECO-561).
- arm64: errata: Hide CTR_EL0.DIC on systems affected by Neoverse-N1 #1542419 (jsc#ECO-561,jsc#SLE-10671).
- arm64: Fake the IminLine size on systems affected by Neoverse-N1 #1542419 (jsc#ECO-561,jsc#SLE-10671).
- arm64: Fix mismatched cache line size detection (jsc#ECO-561,jsc#SLE-10671).
- arm64: Fix silly typo in comment (jsc#ECO-561).
- arm64: fix SSBS sanitization (jsc#ECO-561).
- arm64: force_signal_inject: WARN if called from kernel context (jsc#ECO-561).
- arm64: Force SSBS on context switch (jsc#ECO-561).
- arm64: Handle erratum 1418040 as a superset of erratum 1188873 (jsc#ECO-561).
- arm64: Introduce sysreg_clear_set() (jsc#ECO-561).
- arm64: kill change_cpacr() (jsc#ECO-561).
- arm64: kill config_sctlr_el1() (jsc#ECO-561).
- arm64: KVM: Add invalidate_icache_range helper (jsc#ECO-561,jsc#SLE-10671).
- arm64: KVM: PTE/PMD S2 XN bit definition (jsc#ECO-561,jsc#SLE-10671).
- arm64: Make ARM64_ERRATUM_1188873 depend on COMPAT (jsc#ECO-561).
- arm64: move SCTLR_EL{1,2} assertions to <asm/sysreg.h> (jsc#ECO-561).
- arm64: Restrict ARM64_ERRATUM_1188873 mitigation to AArch32 (jsc#ECO-561).
- arm64: ssbd: Add support for PSTATE.SSBS rather than trapping to EL3 (jsc#ECO-561).
- arm64: ssbd: Drop #ifdefs for PR_SPEC_STORE_BYPASS (jsc#ECO-561).
- arm: KVM: Add optimized PIPT icache flushing (jsc#ECO-561,jsc#SLE-10671).
- ath10k: assign 'n_cipher_suites = 11' for WCN3990 to enable WPA3 (bsc#1111666).
- brcmfmac: sdio: Disable auto-tuning around commands expected to fail (bsc#1111666).
- brcmfmac: sdio: Do not tune while the card is off (bsc#1111666).
- can: dev: call netif_carrier_off() in register_candev() (bsc#1051510).
- config: arm64: enable erratum 1418040 and 1542419
- dmaengine: bcm2835: Print error in case setting DMA mask fails (bsc#1051510).
- dmaengine: imx-sdma: fix size check for sdma script_number (bsc#1051510).
- drm/amd/display: fix odm combine pipe reset (bsc#1111666).
- drm/amdgpu: fix memory leak (bsc#1111666).
- drm/amdgpu/powerplay/vega10: allow undervolting in p7 (bsc#1111666).
- drm/i915: Add gen9 BCS cmdparsing (bsc#1135967)
- drm/i915: Add gen9 BCS cmdparsing (bsc#1135967)
- drm/i915: Add support for mandatory cmdparsing (bsc#1135967)
- drm/i915: Add support for mandatory cmdparsing (bsc#1135967)
- drm/i915: Allow parsing of unsized batches (bsc#1135967)
- drm/i915: Allow parsing of unsized batches (bsc#1135967)
- drm/i915/cmdparser: Add support for backward jumps (bsc#1135967)
- drm/i915/cmdparser: Add support for backward jumps (bsc#1135967)
- drm/i915/cmdparser: Ignore Length operands during (bsc#1135967)
- drm/i915/cmdparser: Ignore Length operands during command matching (bsc#1135967)
- drm/i915/cmdparser: Use explicit goto for error paths (bsc#1135967)
- drm/i915/cmdparser: Use explicit goto for error paths (bsc#1135967)
- drm/i915/cml: Add second PCH ID for CMP (bsc#1111666).
- drm/i915: Disable Secure Batches for gen6+
- drm/i915: Disable Secure Batches for gen6+ (bsc#1135967)
- drm/i915/gen8+: Add RC6 CTX corruption WA (bsc#1135967)
- drm/i915/gen8+: Add RC6 CTX corruption WA (bsc#1135967)
- drm/i915/gtt: Add read only pages to gen8_pte_encode (bsc#1135967)
- drm/i915/gtt: Disable read-only support under GVT (bsc#1135967)
- drm/i915/gtt: Read-only pages for insert_entries on bdw (bsc#1135967)
- drm/i915/ilk: Fix warning when reading emon_status with no output (bsc#1111666).
- drm/i915: Lower RM timeout to avoid DSI hard hangs (bsc#1135967)
- drm/i915: Lower RM timeout to avoid DSI hard hangs (bsc#1135967)
- drm/i915: Prevent writing into a read-only object via a GGTT mmap (bsc#1135967)
- drm/i915: Remove Master tables from cmdparser
- drm/i915: Remove Master tables from cmdparser (bsc#1135967)
- drm/i915: Rename gen7 cmdparser tables (bsc#1135967)
- drm/i915: Rename gen7 cmdparser tables (bsc#1135967)
- drm/i915: Support ro ppgtt mapped cmdparser shadow (bsc#1135967)
- drm/i915: Support ro ppgtt mapped cmdparser shadow buffers (bsc#1135967)
- drm/msm/dpu: handle failures while initializing displays (bsc#1111666).
- hyperv: set nvme msi interrupts to unmanaged (jsc#SLE-8953, jsc#SLE-9221, jsc#SLE-4941, bsc#1119461, bsc#1119465, bsc#1138190, bsc#1154905).
- IB/core: Add mitigation for Spectre V1 (bsc#1155671)
- integrity: prevent deadlock during digsig verification (bsc#1090631).
- irqchip/gic-v3-its: Fix command queue pointer comparison bug (jsc#ECO-561).
- irqchip/gic-v3-its: Fix LPI release for Multi-MSI devices (jsc#ECO-561).
- irqchip/gic-v3-its: Fix misuse of GENMASK macro (jsc#ECO-561).
- iwlwifi: do not panic in error path on non-msix systems (bsc#1155692).
- iwlwifi: exclude GEO SAR support for 3168 (bsc#1111666).
- iwlwifi: exclude GEO SAR support for 3168 (git-fixes).
- iwlwifi: fw: do not send GEO_TX_POWER_LIMIT command to FW version 36 (bsc#1111666).
- kabi protect enum RDMA_DRIVER_EFA (jsc#SLE-4805)
- kABI workaround for drm_vma_offset_node readonly field addition (bsc#1135967)
- kABI workaround for mmc_host retune_crc_disable flag addition (bsc#1111666).
- KVM: arm64: Set SCTLR_EL2.DSSBS if SSBD is forcefully disabled and !vhe (jsc#ECO-561).
- KVM: arm/arm64: Clean dcache to PoC when changing PTE due to CoW (jsc#ECO-561,jsc#SLE-10671).
- KVM: arm/arm64: Detangle kvm_mmu.h from kvm_hyp.h (jsc#ECO-561,jsc#SLE-10671).
- KVM: arm/arm64: Drop vcpu parameter from guest cache maintenance operartions (jsc#ECO-561,jsc#SLE-10671).
- KVM: arm/arm64: Limit icache invalidation to prefetch aborts (jsc#ECO-561,jsc#SLE-10671).
- KVM: arm/arm64: Only clean the dcache on translation fault (jsc#ECO-561,jsc#SLE-10671).
- KVM: arm/arm64: Preserve Exec permission across R/W permission faults (jsc#ECO-561,jsc#SLE-10671).
- KVM: arm/arm64: Split dcache/icache flushing (jsc#ECO-561,jsc#SLE-10671).
- KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is active (bsc#1117665).
- md/raid0: avoid RAID0 data corruption due to layout confusion (bsc#1140090).
- md/raid0: fix warning message for parameter default_layout (bsc#1140090).
- mmc: core: Add sdio_retune_hold_now() and sdio_retune_release() (bsc#1111666).
- mmc: core: API to temporarily disable retuning for SDIO CRC errors (bsc#1111666).
- Move upstreamed CA0132 fix into sorted section
- net: openvswitch: free vport unless register_netdevice() succeeds (git-fixes).
- phylink: fix kernel-doc warnings (bsc#1111666).
- power: supply: max14656: fix potential use-after-free (bsc#1051510).
- RDMA/efa: Add Amazon EFA driver (jsc#SLE-4805)
- RDMA/hns: Add reset process for function-clear (bsc#1155061).
- RDMA/hns: Remove the some magic number (bsc#1155061).
- RDMA/restrack: Track driver QP types in resource tracker (jsc#SLE-4805)
- Revert 'ALSA: hda: Flush interrupts on disabling' (bsc#1051510).
- Revert synaptics-rmi4 patch due to regression (bsc#1155982) Also blacklisting it
- rpm/kernel-subpackage-spec: Mention debuginfo in the subpackage description (bsc#1149119).
- s390: add support for IBM z15 machines (bsc#1152696 LTC#181731).
- s390/cpumsf: Check for CPU Measurement sampling (bsc#1153681 LTC#181855).
- s390: fix setting of mio addressing control (bsc#1152665 LTC#181729).
- s390/pci: add mio_enabled attribute (bsc#1152665 LTC#181729).
- s390/pci: correctly handle MIO opt-out (bsc#1152665 LTC#181729).
- s390/pci: deal with devices that have no support for MIO instructions (bsc#1152665 LTC#181729).
- s390/pci: fix MSI message data (bsc#1152697 LTC#181730).
- sc16is7xx: Fix for 'Unexpected interrupt: 8' (bsc#1051510).
- sched/fair: Avoid divide by zero when rebalancing domains (bsc#1096254).
- scsi: lpfc: Limit xri count for kdump environment (bsc#1154124).
- scsi: qla2xxx: Add error handling for PLOGI ELS passthrough (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Capture FW dump on MPI heartbeat stop event (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Check for MB timeout while capturing ISP27/28xx FW dump (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Do command completion on abort timeout (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: do not use zero for FC4_PRIORITY_NVME (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Dual FCP-NVMe target port support (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Fix a dma_pool_free() call (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Fix device connect issues in P2P configuration (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Fix double scsi_done for abort path (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Fix driver unload hang (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Fix memory leak when sending I/O fails (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Fix N2N link reset (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Fix N2N link up fail (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Fix partial flash write of MBI (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Fix SRB leak on switch command timeout (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Fix stale mem access on driver unload (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Fix unbound sleep in fcport delete path (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: fixup incorrect usage of host_byte (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Improve logging for scan thread (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Initialized mailbox to prevent driver load failure (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: initialize fc4_type_priority (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Optimize NPIV tear down process (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Remove an include directive (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: remove redundant assignment to pointer host (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Retry PLOGI on FC-NVMe PRLI failure (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: qla2xxx: Set remove flag for all VP (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Silence fwdump template message (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: stop timer in shutdown path (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Update driver version to 10.01.00.20-k (bsc#1143706 bsc#1082635 bsc#1123034).
- scsi: qla2xxx: Update driver version to 10.01.00.21-k (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).
- scsi: sd: Ignore a failure to sync cache due to lack of authorization (git-fixes).
- scsi: storvsc: Add ability to change scsi queue depth (bsc#1155021).
- scsi: zfcp: fix reaction on bit error threshold notification (bsc#1154956 LTC#182054).
- serial: fix kernel-doc warning in comments (bsc#1051510).
- serial: mctrl_gpio: Check for NULL pointer (bsc#1051510).
- serial: uartlite: fix exit path null pointer (bsc#1051510).
- staging: rtl8188eu: fix null dereference when kzalloc fails (bsc#1051510).
- supporte.conf: add efivarfs to kernel-default-base (bsc#1154858).
- tracing: Get trace_array reference for available_tracers files (bsc#1156429).
- usb: gadget: Reject endpoints with 0 maxpacket value (bsc#1051510).
- usb: gadget: udc: atmel: Fix interrupt storm in FIFO mode (bsc#1051510).
- usb: handle warm-reset port requests on hub resume (bsc#1051510).
- usb: ldusb: fix control-message timeout (bsc#1051510).
- usb: ldusb: fix ring-buffer locking (bsc#1051510).
- usb: serial: whiteheat: fix line-speed endianness (bsc#1051510).
- usb: serial: whiteheat: fix potential slab corruption (bsc#1051510).
- usb-storage: Revert commit 747668dbc061 ('usb-storage: Set virt_boundary_mask to avoid SG overflows') (bsc#1051510).
- wil6210: fix freeing of rx buffers in EDMA mode (bsc#1111666).
Patchnames: openSUSE-2019-2507
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
References
81 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe openSUSE Leap 15.1 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2019-0154: An unprotected read access to i915 registers has been fixed that could have been abused to facilitate a local denial-of-service attack. (bsc#1135966)\n- CVE-2019-0155: A privilege escalation vulnerability has been fixed in the i915 module that allowed batch buffers from user mode to gain super user privileges. (bsc#1135967)\n- CVE-2019-16231: drivers/net/fjes/fjes_main.c did not check the alloc_workqueue return value, leading to a NULL pointer dereference (bnc#1150466).\n- CVE-2019-18805: There was a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6 (bnc#1156187).\n- CVE-2019-17055: base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module did not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21 (bnc#1152782).\n- CVE-2019-11135: Aborting an asynchronous TSX operation on Intel CPUs with Transactional Memory support could be used to facilitate sidechannel information leaks out of microarchitectural buffers, similar to the previously described \u0027Microarchitectural Data Sampling\u0027 attack.\n\n The Linux kernel was supplemented with the option to disable TSX operation altogether (requiring CPU Microcode updates on older systems) and better flushing of microarchitectural buffers (VERW).\n\n The set of options available is described in our TID at https://www.suse.com/support/kb/doc/?id=7024251\n- CVE-2018-12207: Untrusted virtual machines on Intel CPUs could exploit a race condition in the Instruction Fetch Unit of the Intel CPU to cause a Machine Exception during Page Size Change, causing the CPU core to be non-functional.\n\n The Linux Kernel kvm hypervisor was adjusted to avoid page size changes in executable pages by splitting / merging huge pages into small pages as needed.\n\n More information can be found on https://www.suse.com/support/kb/doc/?id=7023735\n- CVE-2019-10220: Added sanity checks on the pathnames passed to the user space. (bsc#1144903).\n\nThe following non-security bugs were fixed:\n\n- ALSA: bebob: Fix prototype of helper function to return negative value (bsc#1051510).\n- ALSA: bebob: fix to detect configured source of sampling clock for Focusrite Saffire Pro i/o series (git-fixes).\n- ALSA: firewire-motu: add support for MOTU 4pre (bsc#1111666).\n- ALSA: hda/ca0132 - Fix possible workqueue stall (bsc#1155836).\n- ALSA: hda/realtek - Add support for ALC623 (bsc#1051510).\n- ALSA: hda/realtek - Fix 2 front mics of codec 0x623 (bsc#1051510).\n- ALSA: timer: Fix incorrectly assigned timer instance (git-fixes).\n- ALSA: timer: Fix mutex deadlock at releasing card (bsc#1051510).\n- ALSA: usb-audio: Add DSD support for Gustard U16/X26 USB Interface (bsc#1051510).\n- ALSA: usb-audio: Disable quirks for BOSS Katana amplifiers (bsc#1111666).\n- ALSA: usb-audio: Fix copy\u0026paste error in the validator (bsc#1111666).\n- arm64: Add decoding macros for CP15_32 and CP15_64 traps (jsc#ECO-561).\n- arm64: Add part number for Neoverse N1 (jsc#ECO-561).\n- arm64: Add silicon-errata.txt entry for ARM erratum 1188873 (jsc#ECO-561).\n- arm64: Add support for new control bits CTR_EL0.DIC and CTR_EL0.IDC (jsc#ECO-561,jsc#SLE-10671).\n- arm64: Apply ARM64_ERRATUM_1188873 to Neoverse-N1 (jsc#ECO-561).\n- arm64: arch_timer: Add workaround for ARM erratum 1188873 (jsc#ECO-561).\n- arm64: arch_timer: avoid unused function warning (jsc#ECO-561).\n- arm64: compat: Add CNTFRQ trap handler (jsc#ECO-561).\n- arm64: compat: Add CNTVCT trap handler (jsc#ECO-561).\n- arm64: compat: Add condition code checks and IT advance (jsc#ECO-561).\n- arm64: compat: Add cp15_32 and cp15_64 handler arrays (jsc#ECO-561).\n- arm64: compat: Add separate CP15 trapping hook (jsc#ECO-561).\n- arm64: compat: Workaround Neoverse-N1 #1542419 for compat user-space (jsc#ECO-561,jsc#SLE-10671).\n- arm64: cpu_errata: Remove ARM64_MISMATCHED_CACHE_LINE_SIZE (jsc#ECO-561,jsc#SLE-10671).\n- arm64/cpufeature: Convert hook_lock to raw_spin_lock_t in cpu_enable_ssbs() (jsc#ECO-561).\n- arm64: cpufeature: ctr: Fix cpu capability check for late CPUs (jsc#ECO-561,jsc#SLE-10671).\n- arm64: cpufeature: Detect SSBS and advertise to userspace (jsc#ECO-561).\n- arm64: cpufeature: Fix handling of CTR_EL0.IDC field (jsc#ECO-561,jsc#SLE-10671).\n- arm64: cpufeature: Trap CTR_EL0 access only where it is necessary (jsc#ECO-561,jsc#SLE-10671).\n- arm64: cpu: Move errata and feature enable callbacks closer to callers (jsc#ECO-561).\n- arm64: entry: Allow handling of undefined instructions from EL1 (jsc#ECO-561).\n- arm64: errata: Hide CTR_EL0.DIC on systems affected by Neoverse-N1 #1542419 (jsc#ECO-561,jsc#SLE-10671).\n- arm64: Fake the IminLine size on systems affected by Neoverse-N1 #1542419 (jsc#ECO-561,jsc#SLE-10671).\n- arm64: Fix mismatched cache line size detection (jsc#ECO-561,jsc#SLE-10671).\n- arm64: Fix silly typo in comment (jsc#ECO-561).\n- arm64: fix SSBS sanitization (jsc#ECO-561).\n- arm64: force_signal_inject: WARN if called from kernel context (jsc#ECO-561).\n- arm64: Force SSBS on context switch (jsc#ECO-561).\n- arm64: Handle erratum 1418040 as a superset of erratum 1188873 (jsc#ECO-561).\n- arm64: Introduce sysreg_clear_set() (jsc#ECO-561).\n- arm64: kill change_cpacr() (jsc#ECO-561).\n- arm64: kill config_sctlr_el1() (jsc#ECO-561).\n- arm64: KVM: Add invalidate_icache_range helper (jsc#ECO-561,jsc#SLE-10671).\n- arm64: KVM: PTE/PMD S2 XN bit definition (jsc#ECO-561,jsc#SLE-10671).\n- arm64: Make ARM64_ERRATUM_1188873 depend on COMPAT (jsc#ECO-561).\n- arm64: move SCTLR_EL{1,2} assertions to \u0026lt;asm/sysreg.h\u003e (jsc#ECO-561).\n- arm64: Restrict ARM64_ERRATUM_1188873 mitigation to AArch32 (jsc#ECO-561).\n- arm64: ssbd: Add support for PSTATE.SSBS rather than trapping to EL3 (jsc#ECO-561).\n- arm64: ssbd: Drop #ifdefs for PR_SPEC_STORE_BYPASS (jsc#ECO-561).\n- arm: KVM: Add optimized PIPT icache flushing (jsc#ECO-561,jsc#SLE-10671).\n- ath10k: assign \u0027n_cipher_suites = 11\u0027 for WCN3990 to enable WPA3 (bsc#1111666).\n- brcmfmac: sdio: Disable auto-tuning around commands expected to fail (bsc#1111666).\n- brcmfmac: sdio: Do not tune while the card is off (bsc#1111666).\n- can: dev: call netif_carrier_off() in register_candev() (bsc#1051510).\n- config: arm64: enable erratum 1418040 and 1542419\n- dmaengine: bcm2835: Print error in case setting DMA mask fails (bsc#1051510).\n- dmaengine: imx-sdma: fix size check for sdma script_number (bsc#1051510).\n- drm/amd/display: fix odm combine pipe reset (bsc#1111666).\n- drm/amdgpu: fix memory leak (bsc#1111666).\n- drm/amdgpu/powerplay/vega10: allow undervolting in p7 (bsc#1111666).\n- drm/i915: Add gen9 BCS cmdparsing (bsc#1135967)\n- drm/i915: Add gen9 BCS cmdparsing (bsc#1135967)\n- drm/i915: Add support for mandatory cmdparsing (bsc#1135967)\n- drm/i915: Add support for mandatory cmdparsing (bsc#1135967)\n- drm/i915: Allow parsing of unsized batches (bsc#1135967)\n- drm/i915: Allow parsing of unsized batches (bsc#1135967)\n- drm/i915/cmdparser: Add support for backward jumps (bsc#1135967)\n- drm/i915/cmdparser: Add support for backward jumps (bsc#1135967)\n- drm/i915/cmdparser: Ignore Length operands during (bsc#1135967)\n- drm/i915/cmdparser: Ignore Length operands during command matching (bsc#1135967)\n- drm/i915/cmdparser: Use explicit goto for error paths (bsc#1135967)\n- drm/i915/cmdparser: Use explicit goto for error paths (bsc#1135967)\n- drm/i915/cml: Add second PCH ID for CMP (bsc#1111666).\n- drm/i915: Disable Secure Batches for gen6+\n- drm/i915: Disable Secure Batches for gen6+ (bsc#1135967)\n- drm/i915/gen8+: Add RC6 CTX corruption WA (bsc#1135967)\n- drm/i915/gen8+: Add RC6 CTX corruption WA (bsc#1135967)\n- drm/i915/gtt: Add read only pages to gen8_pte_encode (bsc#1135967)\n- drm/i915/gtt: Disable read-only support under GVT (bsc#1135967)\n- drm/i915/gtt: Read-only pages for insert_entries on bdw (bsc#1135967)\n- drm/i915/ilk: Fix warning when reading emon_status with no output (bsc#1111666).\n- drm/i915: Lower RM timeout to avoid DSI hard hangs (bsc#1135967)\n- drm/i915: Lower RM timeout to avoid DSI hard hangs (bsc#1135967)\n- drm/i915: Prevent writing into a read-only object via a GGTT mmap (bsc#1135967)\n- drm/i915: Remove Master tables from cmdparser\n- drm/i915: Remove Master tables from cmdparser (bsc#1135967)\n- drm/i915: Rename gen7 cmdparser tables (bsc#1135967)\n- drm/i915: Rename gen7 cmdparser tables (bsc#1135967)\n- drm/i915: Support ro ppgtt mapped cmdparser shadow (bsc#1135967)\n- drm/i915: Support ro ppgtt mapped cmdparser shadow buffers (bsc#1135967)\n- drm/msm/dpu: handle failures while initializing displays (bsc#1111666).\n- hyperv: set nvme msi interrupts to unmanaged (jsc#SLE-8953, jsc#SLE-9221, jsc#SLE-4941, bsc#1119461, bsc#1119465, bsc#1138190, bsc#1154905).\n- IB/core: Add mitigation for Spectre V1 (bsc#1155671)\n- integrity: prevent deadlock during digsig verification (bsc#1090631).\n- irqchip/gic-v3-its: Fix command queue pointer comparison bug (jsc#ECO-561).\n- irqchip/gic-v3-its: Fix LPI release for Multi-MSI devices (jsc#ECO-561).\n- irqchip/gic-v3-its: Fix misuse of GENMASK macro (jsc#ECO-561).\n- iwlwifi: do not panic in error path on non-msix systems (bsc#1155692).\n- iwlwifi: exclude GEO SAR support for 3168 (bsc#1111666).\n- iwlwifi: exclude GEO SAR support for 3168 (git-fixes).\n- iwlwifi: fw: do not send GEO_TX_POWER_LIMIT command to FW version 36 (bsc#1111666).\n- kabi protect enum RDMA_DRIVER_EFA (jsc#SLE-4805)\n- kABI workaround for drm_vma_offset_node readonly field addition (bsc#1135967)\n- kABI workaround for mmc_host retune_crc_disable flag addition (bsc#1111666).\n- KVM: arm64: Set SCTLR_EL2.DSSBS if SSBD is forcefully disabled and !vhe (jsc#ECO-561).\n- KVM: arm/arm64: Clean dcache to PoC when changing PTE due to CoW (jsc#ECO-561,jsc#SLE-10671).\n- KVM: arm/arm64: Detangle kvm_mmu.h from kvm_hyp.h (jsc#ECO-561,jsc#SLE-10671).\n- KVM: arm/arm64: Drop vcpu parameter from guest cache maintenance operartions (jsc#ECO-561,jsc#SLE-10671).\n- KVM: arm/arm64: Limit icache invalidation to prefetch aborts (jsc#ECO-561,jsc#SLE-10671).\n- KVM: arm/arm64: Only clean the dcache on translation fault (jsc#ECO-561,jsc#SLE-10671).\n- KVM: arm/arm64: Preserve Exec permission across R/W permission faults (jsc#ECO-561,jsc#SLE-10671).\n- KVM: arm/arm64: Split dcache/icache flushing (jsc#ECO-561,jsc#SLE-10671).\n- KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is active (bsc#1117665).\n- md/raid0: avoid RAID0 data corruption due to layout confusion (bsc#1140090).\n- md/raid0: fix warning message for parameter default_layout (bsc#1140090).\n- mmc: core: Add sdio_retune_hold_now() and sdio_retune_release() (bsc#1111666).\n- mmc: core: API to temporarily disable retuning for SDIO CRC errors (bsc#1111666).\n- Move upstreamed CA0132 fix into sorted section\n- net: openvswitch: free vport unless register_netdevice() succeeds (git-fixes).\n- phylink: fix kernel-doc warnings (bsc#1111666).\n- power: supply: max14656: fix potential use-after-free (bsc#1051510).\n- RDMA/efa: Add Amazon EFA driver (jsc#SLE-4805)\n- RDMA/hns: Add reset process for function-clear (bsc#1155061).\n- RDMA/hns: Remove the some magic number (bsc#1155061).\n- RDMA/restrack: Track driver QP types in resource tracker (jsc#SLE-4805)\n- Revert \u0027ALSA: hda: Flush interrupts on disabling\u0027 (bsc#1051510).\n- Revert synaptics-rmi4 patch due to regression (bsc#1155982) Also blacklisting it\n- rpm/kernel-subpackage-spec: Mention debuginfo in the subpackage description (bsc#1149119).\n- s390: add support for IBM z15 machines (bsc#1152696 LTC#181731).\n- s390/cpumsf: Check for CPU Measurement sampling (bsc#1153681 LTC#181855).\n- s390: fix setting of mio addressing control (bsc#1152665 LTC#181729).\n- s390/pci: add mio_enabled attribute (bsc#1152665 LTC#181729).\n- s390/pci: correctly handle MIO opt-out (bsc#1152665 LTC#181729).\n- s390/pci: deal with devices that have no support for MIO instructions (bsc#1152665 LTC#181729).\n- s390/pci: fix MSI message data (bsc#1152697 LTC#181730).\n- sc16is7xx: Fix for \u0027Unexpected interrupt: 8\u0027 (bsc#1051510).\n- sched/fair: Avoid divide by zero when rebalancing domains (bsc#1096254).\n- scsi: lpfc: Limit xri count for kdump environment (bsc#1154124).\n- scsi: qla2xxx: Add error handling for PLOGI ELS passthrough (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Capture FW dump on MPI heartbeat stop event (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Check for MB timeout while capturing ISP27/28xx FW dump (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Do command completion on abort timeout (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: do not use zero for FC4_PRIORITY_NVME (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Dual FCP-NVMe target port support (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Fix a dma_pool_free() call (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Fix device connect issues in P2P configuration (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Fix double scsi_done for abort path (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Fix driver unload hang (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Fix memory leak when sending I/O fails (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Fix N2N link reset (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Fix N2N link up fail (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Fix partial flash write of MBI (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Fix SRB leak on switch command timeout (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Fix stale mem access on driver unload (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Fix unbound sleep in fcport delete path (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: fixup incorrect usage of host_byte (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Improve logging for scan thread (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Initialized mailbox to prevent driver load failure (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: initialize fc4_type_priority (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Optimize NPIV tear down process (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Remove an include directive (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: remove redundant assignment to pointer host (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Retry PLOGI on FC-NVMe PRLI failure (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: qla2xxx: Set remove flag for all VP (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Silence fwdump template message (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: stop timer in shutdown path (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Update driver version to 10.01.00.20-k (bsc#1143706 bsc#1082635 bsc#1123034).\n- scsi: qla2xxx: Update driver version to 10.01.00.21-k (bsc#1143706 bsc#1082635 bsc#1154526 bsc#1048942).\n- scsi: sd: Ignore a failure to sync cache due to lack of authorization (git-fixes).\n- scsi: storvsc: Add ability to change scsi queue depth (bsc#1155021).\n- scsi: zfcp: fix reaction on bit error threshold notification (bsc#1154956 LTC#182054).\n- serial: fix kernel-doc warning in comments (bsc#1051510).\n- serial: mctrl_gpio: Check for NULL pointer (bsc#1051510).\n- serial: uartlite: fix exit path null pointer (bsc#1051510).\n- staging: rtl8188eu: fix null dereference when kzalloc fails (bsc#1051510).\n- supporte.conf: add efivarfs to kernel-default-base (bsc#1154858).\n- tracing: Get trace_array reference for available_tracers files (bsc#1156429).\n- usb: gadget: Reject endpoints with 0 maxpacket value (bsc#1051510).\n- usb: gadget: udc: atmel: Fix interrupt storm in FIFO mode (bsc#1051510).\n- usb: handle warm-reset port requests on hub resume (bsc#1051510).\n- usb: ldusb: fix control-message timeout (bsc#1051510).\n- usb: ldusb: fix ring-buffer locking (bsc#1051510).\n- usb: serial: whiteheat: fix line-speed endianness (bsc#1051510).\n- usb: serial: whiteheat: fix potential slab corruption (bsc#1051510).\n- usb-storage: Revert commit 747668dbc061 (\u0027usb-storage: Set virt_boundary_mask to avoid SG overflows\u0027) (bsc#1051510).\n- wil6210: fix freeing of rx buffers in EDMA mode (bsc#1111666).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-2507",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_2507-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:2507-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/45LLGKHM3X6KQJN67OZHE3KEGCRBVGEJ/#45LLGKHM3X6KQJN67OZHE3KEGCRBVGEJ"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:2507-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/45LLGKHM3X6KQJN67OZHE3KEGCRBVGEJ/#45LLGKHM3X6KQJN67OZHE3KEGCRBVGEJ"
},
{
"category": "self",
"summary": "SUSE Bug 1048942",
"url": "https://bugzilla.suse.com/1048942"
},
{
"category": "self",
"summary": "SUSE Bug 1051510",
"url": "https://bugzilla.suse.com/1051510"
},
{
"category": "self",
"summary": "SUSE Bug 1082635",
"url": "https://bugzilla.suse.com/1082635"
},
{
"category": "self",
"summary": "SUSE Bug 1090631",
"url": "https://bugzilla.suse.com/1090631"
},
{
"category": "self",
"summary": "SUSE Bug 1096254",
"url": "https://bugzilla.suse.com/1096254"
},
{
"category": "self",
"summary": "SUSE Bug 1111666",
"url": "https://bugzilla.suse.com/1111666"
},
{
"category": "self",
"summary": "SUSE Bug 1117665",
"url": "https://bugzilla.suse.com/1117665"
},
{
"category": "self",
"summary": "SUSE Bug 1119461",
"url": "https://bugzilla.suse.com/1119461"
},
{
"category": "self",
"summary": "SUSE Bug 1119465",
"url": "https://bugzilla.suse.com/1119465"
},
{
"category": "self",
"summary": "SUSE Bug 1123034",
"url": "https://bugzilla.suse.com/1123034"
},
{
"category": "self",
"summary": "SUSE Bug 1135966",
"url": "https://bugzilla.suse.com/1135966"
},
{
"category": "self",
"summary": "SUSE Bug 1135967",
"url": "https://bugzilla.suse.com/1135967"
},
{
"category": "self",
"summary": "SUSE Bug 1138190",
"url": "https://bugzilla.suse.com/1138190"
},
{
"category": "self",
"summary": "SUSE Bug 1139073",
"url": "https://bugzilla.suse.com/1139073"
},
{
"category": "self",
"summary": "SUSE Bug 1140090",
"url": "https://bugzilla.suse.com/1140090"
},
{
"category": "self",
"summary": "SUSE Bug 1143706",
"url": "https://bugzilla.suse.com/1143706"
},
{
"category": "self",
"summary": "SUSE Bug 1144903",
"url": "https://bugzilla.suse.com/1144903"
},
{
"category": "self",
"summary": "SUSE Bug 1149119",
"url": "https://bugzilla.suse.com/1149119"
},
{
"category": "self",
"summary": "SUSE Bug 1150466",
"url": "https://bugzilla.suse.com/1150466"
},
{
"category": "self",
"summary": "SUSE Bug 1152665",
"url": "https://bugzilla.suse.com/1152665"
},
{
"category": "self",
"summary": "SUSE Bug 1152696",
"url": "https://bugzilla.suse.com/1152696"
},
{
"category": "self",
"summary": "SUSE Bug 1152697",
"url": "https://bugzilla.suse.com/1152697"
},
{
"category": "self",
"summary": "SUSE Bug 1152782",
"url": "https://bugzilla.suse.com/1152782"
},
{
"category": "self",
"summary": "SUSE Bug 1153681",
"url": "https://bugzilla.suse.com/1153681"
},
{
"category": "self",
"summary": "SUSE Bug 1154124",
"url": "https://bugzilla.suse.com/1154124"
},
{
"category": "self",
"summary": "SUSE Bug 1154526",
"url": "https://bugzilla.suse.com/1154526"
},
{
"category": "self",
"summary": "SUSE Bug 1154858",
"url": "https://bugzilla.suse.com/1154858"
},
{
"category": "self",
"summary": "SUSE Bug 1154905",
"url": "https://bugzilla.suse.com/1154905"
},
{
"category": "self",
"summary": "SUSE Bug 1154956",
"url": "https://bugzilla.suse.com/1154956"
},
{
"category": "self",
"summary": "SUSE Bug 1155021",
"url": "https://bugzilla.suse.com/1155021"
},
{
"category": "self",
"summary": "SUSE Bug 1155061",
"url": "https://bugzilla.suse.com/1155061"
},
{
"category": "self",
"summary": "SUSE Bug 1155671",
"url": "https://bugzilla.suse.com/1155671"
},
{
"category": "self",
"summary": "SUSE Bug 1155692",
"url": "https://bugzilla.suse.com/1155692"
},
{
"category": "self",
"summary": "SUSE Bug 1155836",
"url": "https://bugzilla.suse.com/1155836"
},
{
"category": "self",
"summary": "SUSE Bug 1155982",
"url": "https://bugzilla.suse.com/1155982"
},
{
"category": "self",
"summary": "SUSE Bug 1156187",
"url": "https://bugzilla.suse.com/1156187"
},
{
"category": "self",
"summary": "SUSE Bug 1156429",
"url": "https://bugzilla.suse.com/1156429"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12207 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-0154 page",
"url": "https://www.suse.com/security/cve/CVE-2019-0154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-0155 page",
"url": "https://www.suse.com/security/cve/CVE-2019-0155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-10220 page",
"url": "https://www.suse.com/security/cve/CVE-2019-10220/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11135 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16231 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17055 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17055/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-18805 page",
"url": "https://www.suse.com/security/cve/CVE-2019-18805/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2019-11-14T05:59:09Z",
"generator": {
"date": "2019-11-14T05:59:09Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:2507-1",
"initial_release_date": "2019-11-14T05:59:09Z",
"revision_history": [
{
"date": "2019-11-14T05:59:09Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-4.12.14-lp151.28.32.1.noarch",
"product": {
"name": "kernel-devel-4.12.14-lp151.28.32.1.noarch",
"product_id": "kernel-devel-4.12.14-lp151.28.32.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-4.12.14-lp151.28.32.1.noarch",
"product": {
"name": "kernel-docs-4.12.14-lp151.28.32.1.noarch",
"product_id": "kernel-docs-4.12.14-lp151.28.32.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"product": {
"name": "kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"product_id": "kernel-docs-html-4.12.14-lp151.28.32.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-4.12.14-lp151.28.32.1.noarch",
"product": {
"name": "kernel-macros-4.12.14-lp151.28.32.1.noarch",
"product_id": "kernel-macros-4.12.14-lp151.28.32.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-4.12.14-lp151.28.32.1.noarch",
"product": {
"name": "kernel-source-4.12.14-lp151.28.32.1.noarch",
"product_id": "kernel-source-4.12.14-lp151.28.32.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"product": {
"name": "kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"product_id": "kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-debug-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-debug-base-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-default-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-default-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-default-base-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-default-devel-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-obs-build-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-syms-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-vanilla-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64",
"product": {
"name": "kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64",
"product_id": "kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.1",
"product": {
"name": "openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-base-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-default-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-4.12.14-lp151.28.32.1.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch"
},
"product_reference": "kernel-devel-4.12.14-lp151.28.32.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-4.12.14-lp151.28.32.1.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch"
},
"product_reference": "kernel-docs-4.12.14-lp151.28.32.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-html-4.12.14-lp151.28.32.1.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch"
},
"product_reference": "kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-4.12.14-lp151.28.32.1.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch"
},
"product_reference": "kernel-macros-4.12.14-lp151.28.32.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-4.12.14-lp151.28.32.1.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch"
},
"product_reference": "kernel-source-4.12.14-lp151.28.32.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch"
},
"product_reference": "kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
},
"product_reference": "kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-12207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12207"
}
],
"notes": [
{
"category": "general",
"text": "Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host system via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12207",
"url": "https://www.suse.com/security/cve/CVE-2018-12207"
},
{
"category": "external",
"summary": "SUSE Bug 1117665 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1117665"
},
{
"category": "external",
"summary": "SUSE Bug 1139073 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1139073"
},
{
"category": "external",
"summary": "SUSE Bug 1152505 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1152505"
},
{
"category": "external",
"summary": "SUSE Bug 1155812 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1155812"
},
{
"category": "external",
"summary": "SUSE Bug 1155817 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1155817"
},
{
"category": "external",
"summary": "SUSE Bug 1155945 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1155945"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1178658"
},
{
"category": "external",
"summary": "SUSE Bug 1201877 for CVE-2018-12207",
"url": "https://bugzilla.suse.com/1201877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:59:09Z",
"details": "moderate"
}
],
"title": "CVE-2018-12207"
},
{
"cve": "CVE-2019-0154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-0154"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient access control in subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Gold Series; Intel(R) Celeron(R) Processor J, N, G3900 and G4900 Series; Intel(R) Atom(R) Processor A and E3900 Series; Intel(R) Xeon(R) Processor E3-1500 v5 and v6 and E-2100 Processor Families may allow an authenticated user to potentially enable denial of service via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-0154",
"url": "https://www.suse.com/security/cve/CVE-2019-0154"
},
{
"category": "external",
"summary": "SUSE Bug 1135966 for CVE-2019-0154",
"url": "https://bugzilla.suse.com/1135966"
},
{
"category": "external",
"summary": "SUSE Bug 1181720 for CVE-2019-0154",
"url": "https://bugzilla.suse.com/1181720"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:59:09Z",
"details": "important"
}
],
"title": "CVE-2019-0154"
},
{
"cve": "CVE-2019-0155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-0155"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Gold Series; Intel(R) Celeron(R) Processor J, N, G3900 and G4900 Series; Intel(R) Atom(R) Processor A and E3900 Series; Intel(R) Xeon(R) Processor E3-1500 v5 and v6, E-2100 and E-2200 Processor Families; Intel(R) Graphics Driver for Windows before 26.20.100.6813 (DCH) or 26.20.100.6812 and before 21.20.x.5077 (aka15.45.5077), i915 Linux Driver for Intel(R) Processor Graphics before versions 5.4-rc7, 5.3.11, 4.19.84, 4.14.154, 4.9.201, 4.4.201 may allow an authenticated user to potentially enable escalation of privilege via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-0155",
"url": "https://www.suse.com/security/cve/CVE-2019-0155"
},
{
"category": "external",
"summary": "SUSE Bug 1135966 for CVE-2019-0155",
"url": "https://bugzilla.suse.com/1135966"
},
{
"category": "external",
"summary": "SUSE Bug 1135967 for CVE-2019-0155",
"url": "https://bugzilla.suse.com/1135967"
},
{
"category": "external",
"summary": "SUSE Bug 1173663 for CVE-2019-0155",
"url": "https://bugzilla.suse.com/1173663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:59:09Z",
"details": "important"
}
],
"title": "CVE-2019-0155"
},
{
"cve": "CVE-2019-10220",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-10220"
}
],
"notes": [
{
"category": "general",
"text": "Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-10220",
"url": "https://www.suse.com/security/cve/CVE-2019-10220"
},
{
"category": "external",
"summary": "SUSE Bug 1144903 for CVE-2019-10220",
"url": "https://bugzilla.suse.com/1144903"
},
{
"category": "external",
"summary": "SUSE Bug 1153108 for CVE-2019-10220",
"url": "https://bugzilla.suse.com/1153108"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:59:09Z",
"details": "moderate"
}
],
"title": "CVE-2019-10220"
},
{
"cve": "CVE-2019-11135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11135"
}
],
"notes": [
{
"category": "general",
"text": "TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11135",
"url": "https://www.suse.com/security/cve/CVE-2019-11135"
},
{
"category": "external",
"summary": "SUSE Bug 1139073 for CVE-2019-11135",
"url": "https://bugzilla.suse.com/1139073"
},
{
"category": "external",
"summary": "SUSE Bug 1152497 for CVE-2019-11135",
"url": "https://bugzilla.suse.com/1152497"
},
{
"category": "external",
"summary": "SUSE Bug 1152505 for CVE-2019-11135",
"url": "https://bugzilla.suse.com/1152505"
},
{
"category": "external",
"summary": "SUSE Bug 1152506 for CVE-2019-11135",
"url": "https://bugzilla.suse.com/1152506"
},
{
"category": "external",
"summary": "SUSE Bug 1160120 for CVE-2019-11135",
"url": "https://bugzilla.suse.com/1160120"
},
{
"category": "external",
"summary": "SUSE Bug 1201877 for CVE-2019-11135",
"url": "https://bugzilla.suse.com/1201877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:59:09Z",
"details": "moderate"
}
],
"title": "CVE-2019-11135"
},
{
"cve": "CVE-2019-16231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16231"
}
],
"notes": [
{
"category": "general",
"text": "drivers/net/fjes/fjes_main.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16231",
"url": "https://www.suse.com/security/cve/CVE-2019-16231"
},
{
"category": "external",
"summary": "SUSE Bug 1150466 for CVE-2019-16231",
"url": "https://bugzilla.suse.com/1150466"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:59:09Z",
"details": "moderate"
}
],
"title": "CVE-2019-16231"
},
{
"cve": "CVE-2019-17055",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17055"
}
],
"notes": [
{
"category": "general",
"text": "base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17055",
"url": "https://www.suse.com/security/cve/CVE-2019-17055"
},
{
"category": "external",
"summary": "SUSE Bug 1152782 for CVE-2019-17055",
"url": "https://bugzilla.suse.com/1152782"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:59:09Z",
"details": "moderate"
}
],
"title": "CVE-2019-17055"
},
{
"cve": "CVE-2019-18805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-18805"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-18805",
"url": "https://www.suse.com/security/cve/CVE-2019-18805"
},
{
"category": "external",
"summary": "SUSE Bug 1156187 for CVE-2019-18805",
"url": "https://bugzilla.suse.com/1156187"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.32.1.noarch",
"openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.32.1.x86_64",
"openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-14T05:59:09Z",
"details": "low"
}
],
"title": "CVE-2019-18805"
}
]
}
RHSA-2020:0740
Vulnerability from csaf_redhat - Published: 2020-03-09 14:35 - Updated: 2026-02-19 07:00Summary
Red Hat Security Advisory: kernel-alt security and bug fix update
Severity
Important
Notes
Topic: An update for kernel-alt is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel-alt packages provide the Linux kernel version 4.x.
Security Fix(es):
* kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow (CVE-2019-17666)
* kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence (CVE-2018-16871)
* kernel: Heap address information leak while using L2CAP_GET_CONF_OPT (CVE-2019-3459)
* kernel: Heap address information leak while using L2CAP_PARSE_CONF_RSP (CVE-2019-3460)
* kernel: sensitive information disclosure from kernel stack memory via HIDPCONNADD command (CVE-2019-11884)
* kernel: powerpc: local user can read vector registers of other users' processes via a Facility Unavailable exception (CVE-2019-15030)
* kernel: memory leak in register_queue_kobjects() in net/core/net-sysfs.c leads to denial of service (CVE-2019-15916)
* kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c (CVE-2019-18805)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* lpfc: NVMe/FC target test machine rhel-storage-62 crashes on boot when connected to FC switch (BZ#1623205)
* kernel BUG at fs/nfs_common/grace.c:107! (BZ#1637543)
* RHEL-Alt-7.6 - Need a fix for kernel bug cap_inode_getsecurity: use d_find_any_alias() instead of d_find_alias() (BZ#1711934)
* Backport "fs/dcache.c: add cond_resched() in shrink_dentry_list()" (32785c0539b7) [rhel-alt-7.6.z] (BZ#1758861)
* [RHEL-ALT-7.6.z][arm64] iommu/iova: Fix tracking of recently failed iova address (BZ#1780500)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the Linux kernel's NFS implementation. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the NFS server will be lost.
7.5 (High)
Affected products
Fixed
38 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel's implementation of Logical Link Control and Adaptation Protocol (L2CAP), part of the Bluetooth stack. An attacker, within the range of standard Bluetooth transmissions, can create and send a specially crafted packet. The response to this specially crafted packet can contain part of the kernel stack which can be used in a further attack.
5.3 (Medium)
Affected products
Fixed
38 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel's implementation of logical link control and adaptation protocol (L2CAP), part of the Bluetooth stack in the l2cap_parse_conf_rsp and l2cap_parse_conf_req functions. An attacker with physical access within the range of standard Bluetooth transmission can create a specially crafted packet. The response to this specially crafted packet can contain part of the kernel stack which can be used in a further attack.
5.3 (Medium)
Affected products
Fixed
38 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel's implementation of the Bluetooth Human Interface Device Protocol (HIDP). A local attacker with access permissions to the Bluetooth device can issue an IOCTL which will trigger the do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c.c. This function can leak potentially sensitive information from the kernel stack memory via a HIDPCONNADD command because a name field may not be correctly NULL terminated.
6.8 (Medium)
Affected products
Fixed
38 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw in the Linux kernel on the PowerPC platform, was found where a local user can read vector registers of other user processes (via a Facility Unavailable exception). An attacker must start a transaction when the FPU operation begins or there is no leakage. Vector registers will become corrupted with values from the different local Linux processes, because of the missing check inside arch/powerpc/kernel/process.c. The highest threat from this vulnerability is confidentiality of data and availability of the system.
4.4 (Medium)
Affected products
Fixed
38 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw that allowed an attacker to leak kernel memory was found in the network subsystem where an attacker with permissions to create tun/tap devices can create a denial of service and panic the system.
5.5 (Medium)
Affected products
Fixed
38 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel's implementation of the RealTek wireless drivers WiFi-direct (or WiFi peer-to-peer) driver implementation. When the RealTek wireless networking hardware is configured to accept WiFi-Direct or WiFi P2P connections, an attacker within the wireless network connectivity radio range can exploit a flaw in the WiFi-direct protocol known as "Notice of Absence" by creating specially crafted frames which can then corrupt kernel memory as the upper bounds on the length of the frame is unchecked and supplied by the incoming packet.
6.3 (Medium)
Affected products
Fixed
38 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was reported in the Linux kernel's TCP subsystem while calculating a packet round trip time, when a sysctl parameter (/proc/sys/net/ipv4/tcp_min_rtt_wlen) is set incorrectly. This causes an integer overflow which can lead to a denial Of service (DOS) attack.
7.3 (High)
Affected products
Fixed
38 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
45 references
Acknowledgments
Red Hat
Hangbin Liu
Synopsys SIG
Jasu Liedes
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-alt is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-alt packages provide the Linux kernel version 4.x.\n\nSecurity Fix(es):\n\n* kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow (CVE-2019-17666)\n\n* kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence (CVE-2018-16871)\n\n* kernel: Heap address information leak while using L2CAP_GET_CONF_OPT (CVE-2019-3459)\n\n* kernel: Heap address information leak while using L2CAP_PARSE_CONF_RSP (CVE-2019-3460)\n\n* kernel: sensitive information disclosure from kernel stack memory via HIDPCONNADD command (CVE-2019-11884)\n\n* kernel: powerpc: local user can read vector registers of other users\u0027 processes via a Facility Unavailable exception (CVE-2019-15030)\n\n* kernel: memory leak in register_queue_kobjects() in net/core/net-sysfs.c leads to denial of service (CVE-2019-15916)\n\n* kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c (CVE-2019-18805)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* lpfc: NVMe/FC target test machine rhel-storage-62 crashes on boot when connected to FC switch (BZ#1623205)\n\n* kernel BUG at fs/nfs_common/grace.c:107! (BZ#1637543)\n\n* RHEL-Alt-7.6 - Need a fix for kernel bug cap_inode_getsecurity: use d_find_any_alias() instead of d_find_alias() (BZ#1711934)\n\n* Backport \"fs/dcache.c: add cond_resched() in shrink_dentry_list()\" (32785c0539b7) [rhel-alt-7.6.z] (BZ#1758861)\n\n* [RHEL-ALT-7.6.z][arm64] iommu/iova: Fix tracking of recently failed iova address (BZ#1780500)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:0740",
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1655162",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1655162"
},
{
"category": "external",
"summary": "1663176",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1663176"
},
{
"category": "external",
"summary": "1663179",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1663179"
},
{
"category": "external",
"summary": "1709837",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1709837"
},
{
"category": "external",
"summary": "1750813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1750813"
},
{
"category": "external",
"summary": "1759313",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1759313"
},
{
"category": "external",
"summary": "1763690",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1763690"
},
{
"category": "external",
"summary": "1771496",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771496"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0740.json"
}
],
"title": "Red Hat Security Advisory: kernel-alt security and bug fix update",
"tracking": {
"current_release_date": "2026-02-19T07:00:37+00:00",
"generator": {
"date": "2026-02-19T07:00:37+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.1"
}
},
"id": "RHSA-2020:0740",
"initial_release_date": "2020-03-09T14:35:10+00:00",
"revision_history": [
{
"date": "2020-03-09T14:35:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-03-09T14:35:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-02-19T07:00:37+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-bootwrapper@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "perf-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "perf-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64le@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"product_id": "kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.14.0-115.18.1.el7a?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"product": {
"name": "kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"product_id": "kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-abi-whitelists@4.14.0-115.18.1.el7a?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"product": {
"name": "kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"product_id": "kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@4.14.0-115.18.1.el7a?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-alt-0:4.14.0-115.18.1.el7a.src",
"product": {
"name": "kernel-alt-0:4.14.0-115.18.1.el7a.src",
"product_id": "kernel-alt-0:4.14.0-115.18.1.el7a.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-alt@4.14.0-115.18.1.el7a?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.14.0-115.18.1.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src"
},
"product_reference": "kernel-alt-0:4.14.0-115.18.1.el7a.src",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.14.0-115.18.1.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "perf-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.14.0-115.18.1.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src"
},
"product_reference": "kernel-alt-0:4.14.0-115.18.1.el7a.src",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.14.0-115.18.1.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "perf-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Hangbin Liu"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
},
{
"names": [
"Jasu Liedes"
],
"organization": "Synopsys SIG"
}
],
"cve": "CVE-2018-16871",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2018-11-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1655162"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s NFS implementation. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the NFS server will be lost.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16871"
},
{
"category": "external",
"summary": "RHBZ#1655162",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1655162"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16871",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16871"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16871",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16871"
}
],
"release_date": "2019-06-03T02:23:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-09T14:35:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence"
},
{
"cve": "CVE-2019-3459",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2019-01-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1663176"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s implementation of Logical Link Control and Adaptation Protocol (L2CAP), part of the Bluetooth stack. An attacker, within the range of standard Bluetooth transmissions, can create and send a specially crafted packet. The response to this specially crafted packet can contain part of the kernel stack which can be used in a further attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Heap address information leak while using L2CAP_GET_CONF_OPT",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-3459"
},
{
"category": "external",
"summary": "RHBZ#1663176",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1663176"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-3459",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3459"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-3459",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3459"
}
],
"release_date": "2019-01-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-09T14:35:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
},
{
"category": "workaround",
"details": "- Disabling the bluetooth hardware in the bios.\n- Prevent loading of the bluetooth kernel modules.\n- Disable the bluetooth connection by putting the system in \"airport\" mode.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Heap address information leak while using L2CAP_GET_CONF_OPT"
},
{
"cve": "CVE-2019-3460",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2019-01-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1663179"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s implementation of logical link control and adaptation protocol (L2CAP), part of the Bluetooth stack in the l2cap_parse_conf_rsp and l2cap_parse_conf_req functions. An attacker with physical access within the range of standard Bluetooth transmission can create a specially crafted packet. The response to this specially crafted packet can contain part of the kernel stack which can be used in a further attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Heap address information leak while using L2CAP_PARSE_CONF_RSP",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-3460"
},
{
"category": "external",
"summary": "RHBZ#1663179",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1663179"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-3460",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3460"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-3460",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3460"
}
],
"release_date": "2019-01-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-09T14:35:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
},
{
"category": "workaround",
"details": "- Disabling the bluetooth hardware in the bios.\n- Prevent loading of the bluetooth kernel modules.\n- Disable the bluetooth connection by putting the system in \"airport\" mode.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Heap address information leak while using L2CAP_PARSE_CONF_RSP"
},
{
"cve": "CVE-2019-11884",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2019-05-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1709837"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s implementation of the Bluetooth Human Interface Device Protocol (HIDP). A local attacker with access permissions to the Bluetooth device can issue an IOCTL which will trigger the do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c.c. This function can leak potentially sensitive information from the kernel stack memory via a HIDPCONNADD command because a name field may not be correctly NULL terminated.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: sensitive information disclosure from kernel stack memory via HIDPCONNADD command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-11884"
},
{
"category": "external",
"summary": "RHBZ#1709837",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1709837"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-11884",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11884"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-11884",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-11884"
}
],
"release_date": "2019-05-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-09T14:35:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: sensitive information disclosure from kernel stack memory via HIDPCONNADD command"
},
{
"cve": "CVE-2019-15030",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2019-10-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1759313"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in the Linux kernel on the PowerPC platform, was found where a local user can read vector registers of other user processes (via a Facility Unavailable exception). An attacker must start a transaction when the FPU operation begins or there is no leakage. Vector registers will become corrupted with values from the different local Linux processes, because of the missing check inside arch/powerpc/kernel/process.c. The highest threat from this vulnerability is confidentiality of data and availability of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: powerpc: local user can read vector registers of other users\u0027 processes via a Facility Unavailable exception",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-15030"
},
{
"category": "external",
"summary": "RHBZ#1759313",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1759313"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-15030",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15030"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-15030",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15030"
}
],
"release_date": "2019-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-09T14:35:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
},
{
"category": "workaround",
"details": "When applicable rely on FPU emulation (for example by rebuilding the critical services code) instead of the hardware FPU.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: powerpc: local user can read vector registers of other users\u0027 processes via a Facility Unavailable exception"
},
{
"cve": "CVE-2019-15916",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-09-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1750813"
}
],
"notes": [
{
"category": "description",
"text": "A flaw that allowed an attacker to leak kernel memory was found in the network subsystem where an attacker with permissions to create tun/tap devices can create a denial of service and panic the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: memory leak in register_queue_kobjects() in net/core/net-sysfs.c leads to denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-15916"
},
{
"category": "external",
"summary": "RHBZ#1750813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1750813"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-15916",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15916"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-15916",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15916"
}
],
"release_date": "2019-09-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-09T14:35:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: memory leak in register_queue_kobjects() in net/core/net-sysfs.c leads to denial of service"
},
{
"cve": "CVE-2019-17666",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2019-10-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1763690"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s implementation of the RealTek wireless drivers WiFi-direct (or WiFi peer-to-peer) driver implementation. When the RealTek wireless networking hardware is configured to accept WiFi-Direct or WiFi P2P connections, an attacker within the wireless network connectivity radio range can exploit a flaw in the WiFi-direct protocol known as \"Notice of Absence\" by creating specially crafted frames which can then corrupt kernel memory as the upper bounds on the length of the frame is unchecked and supplied by the incoming packet.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-17666"
},
{
"category": "external",
"summary": "RHBZ#1763690",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1763690"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-17666",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17666"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-17666",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17666"
},
{
"category": "external",
"summary": "https://arstechnica.com/information-technology/2019/10/unpatched-linux-flaw-may-let-attackers-crash-or-compromise-nearby-devices/",
"url": "https://arstechnica.com/information-technology/2019/10/unpatched-linux-flaw-may-let-attackers-crash-or-compromise-nearby-devices/"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8c55dedb795be8ec0cf488f98c03a1c2176f7fb1",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8c55dedb795be8ec0cf488f98c03a1c2176f7fb1"
}
],
"release_date": "2019-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-09T14:35:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow"
},
{
"cve": "CVE-2019-18805",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2019-11-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1771496"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was reported in the Linux kernel\u0027s TCP subsystem while calculating a packet round trip time, when a sysctl parameter (/proc/sys/net/ipv4/tcp_min_rtt_wlen) is set incorrectly. This causes an integer overflow which can lead to a denial Of service (DOS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-18805"
},
{
"category": "external",
"summary": "RHBZ#1771496",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771496"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-18805",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18805"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-18805",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18805"
}
],
"release_date": "2019-04-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-09T14:35:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0740"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by setting the sysctl parameter (/proc/sys/net/ipv4/tcp_min_rtt_wlen) with 300 which means the packet time will not exceed more then 5 minutes and which should not cause an integer overflow.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.18.1.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.18.1.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.18.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.18.1.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c"
}
]
}
RHSA-2020:1567
Vulnerability from csaf_redhat - Published: 2020-04-28 15:41 - Updated: 2026-02-19 13:18Summary
Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update
Severity
Important
Notes
Topic: An update for kernel-rt is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
* kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c (CVE-2019-19768)
* kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence (CVE-2018-16871)
* kernel: memory leak in the kernel_read_file function in fs/exec.c allows to cause a denial of service (CVE-2019-8980)
* kernel: unprivileged users able to create RAW sockets in AF_IEEE802154 network protocol. (CVE-2019-17053)
* kernel: unprivileged users able to create RAW sockets in AF_ISDN network protocol. (CVE-2019-17055)
* kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c (CVE-2019-18805)
* kernel: information leak bug caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver (CVE-2019-19534)
* kernel: some ipv6 protocols not encrypted over ipsec tunnel. (CVE-2020-1749)
* Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR (CVE-2019-10639)
* kernel: An out-of-bounds read in drivers/scsi/qedi/qedi_dbg.c leading to crash or information disclosure (CVE-2019-15090)
* kernel: a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c leads to a crash (CVE-2019-15099)
* kernel: Null pointer dereference in the sound/usb/line6/pcm.c (CVE-2019-15221)
* kernel: Two memory leaks in the mwifiex_pcie_init_evt_ring() function in drivers/net/wireless/marvell/mwifiex/pcie.c allows for a DoS (CVE-2019-19057)
* kernel: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel (DOS) (CVE-2019-19073)
* kernel: a memory leak in the ath9k management function in allows local DoS (CVE-2019-19074)
* kernel: when cpu.cfs_quota_us is used allows attackers to cause a denial of service against non-cpu-bound applications (CVE-2019-19922)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* RT: update RT source tree to the RHEL-8.2 tree (BZ#1708716)
* KVM-RT guest fails boot with emulatorsched (BZ#1712781)
* 8 vCPU guest need max latency < 20 us with stress [RT-8.2] (BZ#1757165)
* Request nx_huge_pages=N as default value to avoid kvm-rt guest large latency spike [rt-8] (BZ#1788352)
* RT: Add rpm Provide of 'kernel' to indicate that this is a kernel package (BZ#1796284)
* [RHEL8] RT kernel signed by test certificate and not Red Hat Secure Boot (BZ#1806871)
Enhancement(s):
* update to the upstream 5.x RT patchset (BZ#1680161)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the Linux kernel's NFS implementation. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the NFS server will be lost.
7.5 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel’s implementation of the WiFi station handoff code. An attacker within the radio range could use this flaw to deny a valid device from joining the access point.
6.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A kernel memory leak was found in the kernel_read_file() function in the fs/exec.c file in the Linux kernel. An attacker could use this flaw to cause a memory leak and thus a denial of service (DoS).
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the way the Linux kernel derived the IP ID field from a partial kernel space address returned by a net_hash_mix() function. A remote user could observe this IP ID field to extract the kernel address bits used to derive its value, which may result in leaking the hash key and potentially defeating KASLR.
CWE-200 - Exposure of Sensitive Information to an Unauthorized ActorAffected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
A use-after-free flaw was found in the Linux kernel's MDIO section of the network management subsystem. An attacker who is able to hot-plug a network device can trigger the __mdiobus_register() function in drivers/net/phy/mdio_bus.c, which can cause a use-after-free condition causing a memory corruption and kernel panic or privilege escalation.
4.4 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
An out-of-bounds (OOB) memory access flaw was found in the Qlogic ISCSI module in the Linux kernel's qedi_dbg_* family of functions in drivers/scsi/qedi/qedi_dbg.c. Here a local attacker with a special user privilege account (or a root) can cause an out-of-bound memory access leading to a system crash or a leak of internal kernel information.
6.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A null pointer dereference flaw was discovered in the Linux kernel's implementation of the ath10k USB device driver. The vulnerability requires the attacker to plug in a specially crafted hardware device that present endpoint descriptors that normal ath10k devices do not recognize. System availability is the highest threat with this vulnerability.
4.3 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A NULL pointer dereference flaw was found in the way the LINE6 drivers in the Linux kernel allocated buffers for USB packets. This flaw allows an attacker with physical access to the system to crash the system.
4.6 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A NULL pointer dereference flaw was found in the way the Line 6 POD USB driver in the Linux kernel handled disconnection. This flaw allows an attacker with physical access to the system to crash the system.
4.6 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A flaw was found in the Linux kernel. A check was not done on the alloc_workqueue return value of the iwl_trans_pcie_alloc function potentially leading to a NULL pointer dereference. This error condition could lead to a denial of service. The highest threat from this vulnerability is to system availability.
4.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A vulnerability was discovered in the Linux kernel's AF_IEEE802154 networking module where permissions checks are not enforced. This can allow an unprivileged user to create raw sockets for this protocol leading to the potential for data leaks or system unavailability.
4.0 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A vulnerability was found in the Linux kernel’s implementation of the AF_ISDN protocol, which does not enforce the CAP_NET_RAW capability. This flaw can allow unprivileged users to create a raw socket for this protocol. This could further allow the user to control the availability of an existing ISDN circuit.
4.0 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A device tracking vulnerability was found in the flow_dissector feature in the Linux kernel. This flaw occurs because the auto flowlabel of the UDP IPv6 packet relies on a 32-bit hashmd value as a secret, and jhash (instead of siphash) is used. The hashmd value remains the same starting from boot time and can be inferred by an attacker.
5.3 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was reported in the Linux kernel's TCP subsystem while calculating a packet round trip time, when a sysctl parameter (/proc/sys/net/ipv4/tcp_min_rtt_wlen) is set incorrectly. This causes an integer overflow which can lead to a denial Of service (DOS) attack.
7.3 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel. The Mellanox Technologies Innova driver mishandles resource cleanup on error. An attacker, able to trigger error could use this flaw to crash the system. The highest threat from this vulnerability is to system availability.
4.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the way the Mellanox 5th generation network adapters (ConnectX series) core driver in the Linux kernel handled resource cleanup in the mlx5_fw_fatal_reporter_dump function. This flaw allows an attacker with the ability to trigger errors in the mlx5_crdump_collect function to crash the system.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A flaw was found in the Linux kernel. The Wireless configuration API functionality mishandles resource cleanup in nl80211_get_ftm_responder_stats function. An attacker able to trigger the resource cleanup code path could use this flaw to crash the system. The highest threat from this vulnerability is to system availability.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Two memory leak flaws were found in the Linux kernel's mwifiex_pcie_init_evt_ring() function. A local attacker, able to reload the kernel module or hotplug Marvell WiFi hardware using this driver, can cause a denial of service (memory consumption) by triggering mwifiex_map_pci_memory() failures.
4.0 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
A flaw was found in the Linux kernel. The Intel Wireless WiFi MVM Firmware driver mishandles resource cleanup during device coredump. An attacker able to trigger the device coredump and system-wide out of memory conditions at the same time could use this flaw to crash the system. The highest threat from this vulnerability is to system availability.
4.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A flaw was found in the way the Intel Wireless driver in the Linux kernel handled resource cleanup during Gen 3 device initialization. This flaw allows an attacker with the ability to restrict access to DMA coherent memory on device initialization, to crash the system.
4.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A flaw was found in the Linux kernel. The Intel OPA Gen1 driver mishandles resource cleanup. An attacker able to induce low memory condition on the system could use this flaw to crash the system. The highest threat from this vulnerability is to system availability.
4.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A flaw was found in the Linux kernel. The acp_hw_init function fails to cleanup resources properly. A local attacker can induce an error condition to crash the system. The highest threat from this vulnerability is to system availability.
4.4 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout() failures. This affects the htc_config_pipe_credits() function, the htc_setup_complete() function, and the htc_connect_service() function, aka CID-853acf7caf10.
4.0 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
A memory leak in the ath9k_wmi_cmd() function in drivers/net/wireless/ath/ath9k/wmi.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-728c1e2a05e4.
7.5 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
A memory leak flaw was found in the Broadcom NetXtreme HCA driver in the Linux kernel, in the way it handled resource cleanup on the copy to userspace error. This flaw allows a local attacker to trigger this error and crash the system.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
An out-of-bounds write flaw was found in the Linux kernel’s HID drivers. An attacker, able to plug in a malicious USB device, can crash the system or read and write to memory with an incorrect address.
6.8 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
An information-leak flaw was found in the Linux kernel's pcan USB driver. When a device using this driver connects to the system, the stack information is leaked to the CAN bus, a controller area network for automobiles. The highest threat with this vulnerability is breach of data confidentiality.
4.6 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A use-after-free vulnerability was found in the Linux kernel’s implementation of blktrace in the __blk_add_trace function. A local attacker with permissions to run block trace instructions against a device can create a situation where the core block_trace object is used after it is freed. The attacker can pre-groom memory to race this use-after-free to create a condition where the memory is corrupted and cause privilege escalation. The ability to create this condition requires elevated privileges, and it has been decided that this change in Red Hat Enterprise Linux 5 and 6 would risk introducing possible regressions and will not be backported.
6.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in the Linux kernel’s scheduler, where it can allow attackers to cause a denial of service against non-CPU-bound applications by generating a workload that triggers unwanted scheduling slice expiration. A local attacker who can trigger a specific workload type could abuse this technique to trigger a system to be seen as degraded, and possibly trigger workload-rebalance in systems that use the slice-expiration metric as a measure of system health.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A flaw was found in the Linux kernel's implementation of some networking protocols in IPsec, such as VXLAN and GENEVE tunnels over IPv6. When an encrypted tunnel is created between two hosts, the kernel isn't correctly routing tunneled data over the encrypted link; rather sending the data unencrypted. This would allow anyone in between the two endpoints to read the traffic unencrypted. The main threat from this vulnerability is to data confidentiality.
7.5 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A use-after-free flaw was found in the Linux kernel’s GPU driver functionality when destroying GEM context. A local user could use this flaw to crash the system or potentially escalate their privileges.
7.8 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
There is a use-after-free problem seen due to a race condition between the release of ptp_clock and cdev while resource deallocation. When a (high privileged) process allocates a ptp device file (like /dev/ptpX) and voluntarily goes to sleep. During this time if the underlying device is removed, it can cause an exploitable condition as the process wakes up to terminate and clean all attached files. The system crashes due to the cdev structure being invalid (as already freed) which is pointed to by the inode.
6.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A NULL pointer dereference flaw was found in the Linux kernel's network scheduler. This issue occurs when offloading is enabled, the cbs instance is not added to the list. The code also incorrectly handles the case when offload is disabled without removing the qdisc. This could allow a local user to cause a denial of service condition.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
163 references
Acknowledgments
Red Hat
Hangbin Liu
Synopsys SIG
Jasu Liedes
Red Hat QE Engineering
Xiumei Mu
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-rt is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c (CVE-2019-19768)\n\n* kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence (CVE-2018-16871)\n\n* kernel: memory leak in the kernel_read_file function in fs/exec.c allows to cause a denial of service (CVE-2019-8980)\n\n* kernel: unprivileged users able to create RAW sockets in AF_IEEE802154 network protocol. (CVE-2019-17053)\n\n* kernel: unprivileged users able to create RAW sockets in AF_ISDN network protocol. (CVE-2019-17055)\n\n* kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c (CVE-2019-18805)\n\n* kernel: information leak bug caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver (CVE-2019-19534)\n\n* kernel: some ipv6 protocols not encrypted over ipsec tunnel. (CVE-2020-1749)\n\n* Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR (CVE-2019-10639)\n\n* kernel: An out-of-bounds read in drivers/scsi/qedi/qedi_dbg.c leading to crash or information disclosure (CVE-2019-15090)\n\n* kernel: a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c leads to a crash (CVE-2019-15099)\n\n* kernel: Null pointer dereference in the sound/usb/line6/pcm.c (CVE-2019-15221)\n\n* kernel: Two memory leaks in the mwifiex_pcie_init_evt_ring() function in drivers/net/wireless/marvell/mwifiex/pcie.c allows for a DoS (CVE-2019-19057)\n\n* kernel: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel (DOS) (CVE-2019-19073)\n\n* kernel: a memory leak in the ath9k management function in allows local DoS (CVE-2019-19074)\n\n* kernel: when cpu.cfs_quota_us is used allows attackers to cause a denial of service against non-cpu-bound applications (CVE-2019-19922)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* RT: update RT source tree to the RHEL-8.2 tree (BZ#1708716)\n\n* KVM-RT guest fails boot with emulatorsched (BZ#1712781)\n\n* 8 vCPU guest need max latency \u003c 20 us with stress [RT-8.2] (BZ#1757165)\n\n* Request nx_huge_pages=N as default value to avoid kvm-rt guest large latency spike [rt-8] (BZ#1788352)\n\n* RT: Add rpm Provide of \u0027kernel\u0027 to indicate that this is a kernel package (BZ#1796284)\n\n* [RHEL8] RT kernel signed by test certificate and not Red Hat Secure Boot (BZ#1806871)\n\nEnhancement(s):\n\n* update to the upstream 5.x RT patchset (BZ#1680161)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:1567",
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.2_release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.2_release_notes/index"
},
{
"category": "external",
"summary": "1655162",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1655162"
},
{
"category": "external",
"summary": "1679972",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1679972"
},
{
"category": "external",
"summary": "1708716",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1708716"
},
{
"category": "external",
"summary": "1712781",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1712781"
},
{
"category": "external",
"summary": "1729933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1729933"
},
{
"category": "external",
"summary": "1743526",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743526"
},
{
"category": "external",
"summary": "1743560",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743560"
},
{
"category": "external",
"summary": "1749974",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749974"
},
{
"category": "external",
"summary": "1757165",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757165"
},
{
"category": "external",
"summary": "1758242",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1758242"
},
{
"category": "external",
"summary": "1758248",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1758248"
},
{
"category": "external",
"summary": "1768730",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1768730"
},
{
"category": "external",
"summary": "1771496",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771496"
},
{
"category": "external",
"summary": "1772738",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1772738"
},
{
"category": "external",
"summary": "1774933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1774933"
},
{
"category": "external",
"summary": "1774937",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1774937"
},
{
"category": "external",
"summary": "1775050",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1775050"
},
{
"category": "external",
"summary": "1783540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1783540"
},
{
"category": "external",
"summary": "1786164",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1786164"
},
{
"category": "external",
"summary": "1788352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1788352"
},
{
"category": "external",
"summary": "1792512",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1792512"
},
{
"category": "external",
"summary": "1796284",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796284"
},
{
"category": "external",
"summary": "1806871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1806871"
},
{
"category": "external",
"summary": "1809833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1809833"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_1567.json"
}
],
"title": "Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2026-02-19T13:18:54+00:00",
"generator": {
"date": "2026-02-19T13:18:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.1"
}
},
"id": "RHSA-2020:1567",
"initial_release_date": "2020-04-28T15:41:38+00:00",
"revision_history": [
{
"date": "2020-04-28T15:41:38+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-04-28T15:41:38+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-02-19T13:18:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::nfv"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::realtime"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-core@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-core@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-extra@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-extra@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-kvm@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"product": {
"name": "kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"product_id": "kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-kvm@4.18.0-193.rt13.51.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"product": {
"name": "kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"product_id": "kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@4.18.0-193.rt13.51.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-193.rt13.51.el8.src as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src"
},
"product_reference": "kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "NFV-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-193.rt13.51.el8.src as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src"
},
"product_reference": "kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
},
"product_reference": "kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"relates_to_product_reference": "RT-8.2.0.GA"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Hangbin Liu"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
},
{
"names": [
"Jasu Liedes"
],
"organization": "Synopsys SIG"
}
],
"cve": "CVE-2018-16871",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2018-11-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1655162"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s NFS implementation. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the NFS server will be lost.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16871"
},
{
"category": "external",
"summary": "RHBZ#1655162",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1655162"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16871",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16871"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16871",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16871"
}
],
"release_date": "2019-06-03T02:23:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence"
},
{
"cve": "CVE-2019-5108",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2020-01-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1789927"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u2019s implementation of the WiFi station handoff code. An attacker within the radio range could use this flaw to deny a valid device from joining the access point.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: triggering AP to send IAPP location updates for stations before the required authentication process has completed can lead to DoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-5108"
},
{
"category": "external",
"summary": "RHBZ#1789927",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1789927"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-5108",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-5108"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5108",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5108"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "At this time there is no known mitigations to this issue other than to install the updated kernel package.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: triggering AP to send IAPP location updates for stations before the required authentication process has completed can lead to DoS"
},
{
"cve": "CVE-2019-8980",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-02-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1679972"
}
],
"notes": [
{
"category": "description",
"text": "A kernel memory leak was found in the kernel_read_file() function in the fs/exec.c file in the Linux kernel. An attacker could use this flaw to cause a memory leak and thus a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: memory leak in the kernel_read_file function in fs/exec.c allows to cause a denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8980"
},
{
"category": "external",
"summary": "RHBZ#1679972",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1679972"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8980",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8980"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8980",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8980"
}
],
"release_date": "2019-02-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: memory leak in the kernel_read_file function in fs/exec.c allows to cause a denial of service"
},
{
"cve": "CVE-2019-10639",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2019-07-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1729933"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way the Linux kernel derived the IP ID field from a partial kernel space address returned by a net_hash_mix() function. A remote user could observe this IP ID field to extract the kernel\u00a0address bits used to derive its value, which may result in leaking the hash key and potentially defeating KASLR.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 5 and Red Hat Enterprise Linux 6.\n\nThis issue affects the version of Linux kernel as shipped with Red Hat Enterprise Linux 7, 8 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 7, 8 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-10639"
},
{
"category": "external",
"summary": "RHBZ#1729933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1729933"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-10639",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-10639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10639"
},
{
"category": "external",
"summary": "https://arxiv.org/pdf/1906.10478.pdf",
"url": "https://arxiv.org/pdf/1906.10478.pdf"
}
],
"release_date": "2019-07-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR"
},
{
"cve": "CVE-2019-12819",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2019-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1721962"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free flaw was found in the Linux kernel\u0027s MDIO section of the network management subsystem. An attacker who is able to hot-plug a network device can trigger the __mdiobus_register() function in drivers/net/phy/mdio_bus.c, which can cause a use-after-free condition causing a memory corruption and kernel panic or privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free in function __mdiobus_register() in drivers/net/phy/mdio_bus.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-12819"
},
{
"category": "external",
"summary": "RHBZ#1721962",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1721962"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-12819",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-12819"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-12819",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-12819"
}
],
"release_date": "2019-06-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: use-after-free in function __mdiobus_register() in drivers/net/phy/mdio_bus.c"
},
{
"cve": "CVE-2019-15090",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2019-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1743526"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds (OOB) memory access flaw was found in the Qlogic ISCSI module in the Linux kernel\u0027s qedi_dbg_* family of functions in drivers/scsi/qedi/qedi_dbg.c. Here a local attacker with a special user privilege account (or a root) can cause an out-of-bound memory access leading to a system crash or a leak of internal kernel information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: An out-of-bounds read in drivers/scsi/qedi/qedi_dbg.c leading to crash or information disclosure",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-15090"
},
{
"category": "external",
"summary": "RHBZ#1743526",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743526"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-15090",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15090"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-15090",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15090"
}
],
"release_date": "2019-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: An out-of-bounds read in drivers/scsi/qedi/qedi_dbg.c leading to crash or information disclosure"
},
{
"cve": "CVE-2019-15099",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2019-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1743560"
}
],
"notes": [
{
"category": "description",
"text": "A null pointer dereference flaw was discovered in the Linux kernel\u0027s implementation of the ath10k USB device driver. The vulnerability requires the attacker to plug in a specially crafted hardware device that present endpoint descriptors that normal ath10k devices do not recognize. System availability is the highest threat with this vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c leads to a crash",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-15099"
},
{
"category": "external",
"summary": "RHBZ#1743560",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743560"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-15099",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15099"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-15099",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15099"
}
],
"release_date": "2019-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "As the ath10k module will be auto-loaded when required, its use can be disabled by preventing the module from loading using the following instructions.\n\nOn the command line, as root, execute the following command:\n# echo \"install ath10k_usb /bin/true\" \u003e\u003e /etc/modprobe.d/disable-ath10k_usb.conf \n \nThe system will need to be restarted if the ath10k_usb module are loaded. In most circumstances, the kernel modules will be unable to be unloaded while the ath10k WiFi network interface is in use. If the system requires this module to work correctly, this mitigation may not be suitable.\n\nIf you need further assistance, see KCS article https://access.redhat.com/solutions/41278 or contact Red Hat Global Support Services.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c leads to a crash"
},
{
"cve": "CVE-2019-15221",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2019-08-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1749974"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference flaw was found in the way the LINE6 drivers in the Linux kernel allocated buffers for USB packets. This flaw allows an attacker with physical access to the system to crash the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Null pointer dereference in the sound/usb/line6/pcm.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Low impact because of the physical access needed to trigger this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-15221"
},
{
"category": "external",
"summary": "RHBZ#1749974",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749974"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-15221",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15221"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-15221",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15221"
}
],
"release_date": "2019-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent module snd-usb-line6 from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Null pointer dereference in the sound/usb/line6/pcm.c"
},
{
"cve": "CVE-2019-15223",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2019-08-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1749976"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference flaw was found in the way the Line 6 POD USB driver in the Linux kernel handled disconnection. This flaw allows an attacker with physical access to the system to crash the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Null pointer dereference in the sound/usb/line6/driver.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Low impact because of the physical access needed to trigger this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-15223"
},
{
"category": "external",
"summary": "RHBZ#1749976",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749976"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-15223",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15223"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-15223",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15223"
}
],
"release_date": "2019-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent module snd-usb-line6 from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Null pointer dereference in the sound/usb/line6/driver.c"
},
{
"cve": "CVE-2019-16234",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2019-10-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1760441"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel. A check was not done on the alloc_workqueue return value of the iwl_trans_pcie_alloc function potentially leading to a NULL pointer dereference. This error condition could lead to a denial of service. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: null pointer dereference in drivers/net/wireless/intel/iwlwifi/pcie/trans.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Low impact because of the preconditions needed to trigger the error/resource cleanup code path (system-wide out-of-memory condition, high privileges or physical access). The attacker would have to be able to induce system-wide out-of-memory condition which itself could be seen as a local denial of service. It could be argued that having such privileges has the same impact as the flaw itself.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-16234"
},
{
"category": "external",
"summary": "RHBZ#1760441",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1760441"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-16234",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16234"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-16234",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16234"
},
{
"category": "external",
"summary": "https://lkml.org/lkml/2019/9/9/487",
"url": "https://lkml.org/lkml/2019/9/9/487"
}
],
"release_date": "2019-09-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: null pointer dereference in drivers/net/wireless/intel/iwlwifi/pcie/trans.c"
},
{
"cve": "CVE-2019-17053",
"cwe": {
"id": "CWE-250",
"name": "Execution with Unnecessary Privileges"
},
"discovery_date": "2019-10-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1758242"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was discovered in the Linux kernel\u0027s AF_IEEE802154 networking module where permissions checks are not enforced. This can allow an unprivileged user to create raw sockets for this protocol leading to the potential for data leaks or system unavailability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: unprivileged users able to create RAW sockets in AF_IEEE802154 network protocol",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is rated as moderate; there are no known exploits using this mechanism as an attack surface against the system affected by this bug.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-17053"
},
{
"category": "external",
"summary": "RHBZ#1758242",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1758242"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-17053",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17053"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-17053",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17053"
}
],
"release_date": "2019-09-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: unprivileged users able to create RAW sockets in AF_IEEE802154 network protocol"
},
{
"cve": "CVE-2019-17055",
"cwe": {
"id": "CWE-250",
"name": "Execution with Unnecessary Privileges"
},
"discovery_date": "2019-10-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1758248"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Linux kernel\u2019s implementation of the AF_ISDN protocol, which does not enforce the CAP_NET_RAW capability. This flaw can allow unprivileged users to create a raw socket for this protocol. This could further allow the user to control the availability of an existing ISDN circuit.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: unprivileged users able to create RAW sockets in AF_ISDN network protocol",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-17055"
},
{
"category": "external",
"summary": "RHBZ#1758248",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1758248"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-17055",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17055"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-17055",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17055"
}
],
"release_date": "2019-09-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "At this time the only known way to \u0027mitigate\u0027 this flaw is to blacklist the kernel module from being loaded. Creating raw sockets with this protocol is a method of communicating with ISDN hardware, a technology that is becoming less and less common.\n\nCheck https://access.redhat.com/solutions/41278 for instructions on how to disable the mISDN_core.ko module.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: unprivileged users able to create RAW sockets in AF_ISDN network protocol"
},
{
"cve": "CVE-2019-18282",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2020-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1796360"
}
],
"notes": [
{
"category": "description",
"text": "A device tracking vulnerability was found in the flow_dissector feature in the Linux kernel. This flaw occurs because the auto flowlabel of the UDP IPv6 packet relies on a 32-bit hashmd value as a secret, and jhash (instead of siphash) is used. The hashmd value remains the same starting from boot time and can be inferred by an attacker.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: The flow_dissector feature allows device tracking",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-18282"
},
{
"category": "external",
"summary": "RHBZ#1796360",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796360"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-18282",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-18282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18282"
}
],
"release_date": "2019-10-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: The flow_dissector feature allows device tracking"
},
{
"cve": "CVE-2019-18805",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2019-11-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1771496"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was reported in the Linux kernel\u0027s TCP subsystem while calculating a packet round trip time, when a sysctl parameter (/proc/sys/net/ipv4/tcp_min_rtt_wlen) is set incorrectly. This causes an integer overflow which can lead to a denial Of service (DOS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-18805"
},
{
"category": "external",
"summary": "RHBZ#1771496",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771496"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-18805",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18805"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-18805",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18805"
}
],
"release_date": "2019-04-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by setting the sysctl parameter (/proc/sys/net/ipv4/tcp_min_rtt_wlen) with 300 which means the packet time will not exceed more then 5 minutes and which should not cause an integer overflow.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c"
},
{
"cve": "CVE-2019-19045",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-11-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1774983"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel. The Mellanox Technologies Innova driver mishandles resource cleanup on error. An attacker, able to trigger error could use this flaw to crash the system. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: dos in mlx5_fpga_conn_create_cq() function in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Moderate impact because of the privileges needed to trigger the resource cleanup code path.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19045"
},
{
"category": "external",
"summary": "RHBZ#1774983",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1774983"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19045",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19045"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19045",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19045"
}
],
"release_date": "2019-11-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "In order to mitigate this issue it is possible to prevent the affected code from being loaded by blacklisting the kernel module mlx5_core. For instructions relating to how to blacklist a kernel module refer to: https://access.redhat.com/solutions/41278 .",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: dos in mlx5_fpga_conn_create_cq() function in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c"
},
{
"cve": "CVE-2019-19047",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-11-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1774991"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way the Mellanox 5th generation network adapters (ConnectX series) core driver in the Linux kernel handled resource cleanup in the mlx5_fw_fatal_reporter_dump function. This flaw allows an attacker with the ability to trigger errors in the mlx5_crdump_collect function to crash the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: dos in mlx5_fw_fatal_reporter_dump() function in drivers/net/ethernet/mellanox/mlx5/core/health.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Low impact because of the preconditions needed to trigger the resource cleanup code path.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19047"
},
{
"category": "external",
"summary": "RHBZ#1774991",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1774991"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19047",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19047"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19047",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19047"
}
],
"release_date": "2019-11-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "In order to mitigate this issue it is possible to prevent the affected code from being loaded by blacklisting the kernel module mlx5_core. For instructions relating to how to blacklist a kernel module refer to: https://access.redhat.com/solutions/41278 .",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: dos in mlx5_fw_fatal_reporter_dump() function in drivers/net/ethernet/mellanox/mlx5/core/health.c"
},
{
"cve": "CVE-2019-19055",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1775074"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel. The Wireless configuration API functionality mishandles resource cleanup in nl80211_get_ftm_responder_stats function. An attacker able to trigger the resource cleanup code path could use this flaw to crash the system. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: memory leak in the nl80211_get_ftm_responder_stats() function in net/wireless/nl80211.c allows DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Moderate impact because of the preconditions needed to trigger the resource cleanup code path.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19055"
},
{
"category": "external",
"summary": "RHBZ#1775074",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1775074"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19055",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19055"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19055",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19055"
}
],
"release_date": "2019-10-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "In order to mitigate this issue it is possible to prevent the affected code from being loaded by blacklisting the kernel module cfg80211. For instructions relating to how to blacklist a kernel module refer to: https://access.redhat.com/solutions/41278 .",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: memory leak in the nl80211_get_ftm_responder_stats() function in net/wireless/nl80211.c allows DoS"
},
{
"cve": "CVE-2019-19057",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-11-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1775050"
}
],
"notes": [
{
"category": "description",
"text": "Two memory leak flaws were found in the Linux kernel\u0027s mwifiex_pcie_init_evt_ring() function. A local attacker, able to reload the kernel module or hotplug Marvell WiFi hardware using this driver, can cause a denial of service (memory consumption) by triggering mwifiex_map_pci_memory() failures.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Two memory leaks in the mwifiex_pcie_init_evt_ring() function in drivers/net/wireless/marvell/mwifiex/pcie.c allows for a DoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19057"
},
{
"category": "external",
"summary": "RHBZ#1775050",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1775050"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19057",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19057"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19057",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19057"
}
],
"release_date": "2019-11-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Two memory leaks in the mwifiex_pcie_init_evt_ring() function in drivers/net/wireless/marvell/mwifiex/pcie.c allows for a DoS"
},
{
"cve": "CVE-2019-19058",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-11-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1775047"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel. The Intel Wireless WiFi MVM Firmware driver mishandles resource cleanup during device coredump. An attacker able to trigger the device coredump and system-wide out of memory conditions at the same time could use this flaw to crash the system. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: A memory leak in the alloc_sgtable() function in drivers/net/wireless/intel/iwlwifi/fw/dbg.c allows for a DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Low impact because of the preconditions needed to trigger the resource cleanup code path (system-wide out-of-memory condition).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19058"
},
{
"category": "external",
"summary": "RHBZ#1775047",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1775047"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19058",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19058"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19058",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19058"
}
],
"release_date": "2019-11-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "In order to mitigate this issue it is possible to prevent the affected code from being loaded by blacklisting the kernel module iwlmvm. For instructions relating to how to blacklist a kernel module refer to: https://access.redhat.com/solutions/41278 .",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: A memory leak in the alloc_sgtable() function in drivers/net/wireless/intel/iwlwifi/fw/dbg.c allows for a DoS"
},
{
"cve": "CVE-2019-19059",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-11-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1775042"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way the Intel Wireless driver in the Linux kernel handled resource cleanup during Gen 3 device initialization. This flaw allows an attacker with the ability to restrict access to DMA coherent memory on device initialization, to crash the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Multiple memory leaks in the iwl_pcie_ctxt_info_gen3_init() function in drivers/net/wireless/intel/iwlwifi/pcie/ctxt-info-gen3.c allows for a DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Low impact because of the preconditions needed to trigger the resource cleanup code path (ability to restrict access to dma coherent memory on device initialization).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19059"
},
{
"category": "external",
"summary": "RHBZ#1775042",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1775042"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19059",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19059"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19059",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19059"
}
],
"release_date": "2019-11-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "In order to mitigate this issue it is possible to prevent the affected code from being loaded by blacklisting the kernel module iwlwifi. For instructions relating to how to blacklist a kernel module refer to: https://access.redhat.com/solutions/41278 .",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Multiple memory leaks in the iwl_pcie_ctxt_info_gen3_init() function in drivers/net/wireless/intel/iwlwifi/pcie/ctxt-info-gen3.c allows for a DoS"
},
{
"cve": "CVE-2019-19065",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-11-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1775000"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel. The Intel OPA Gen1 driver mishandles resource cleanup. An attacker able to induce low memory condition on the system could use this flaw to crash the system. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: A memory leak in the sdma_init() function in drivers/infiniband/hw/hfi1/sdma.c allows for a DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Low impact because of the preconditions needed to trigger the resource cleanup code path (system-wide out-of-memory condition).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19065"
},
{
"category": "external",
"summary": "RHBZ#1775000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1775000"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19065",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19065"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19065",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19065"
}
],
"release_date": "2019-11-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "In order to mitigate this issue it is possible to prevent the affected code from being loaded by blacklisting the kernel module hfi1. For instructions relating to how to blacklist a kernel module refer to: https://access.redhat.com/solutions/41278 .",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: A memory leak in the sdma_init() function in drivers/infiniband/hw/hfi1/sdma.c allows for a DoS"
},
{
"cve": "CVE-2019-19067",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-11-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1774968"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel. The acp_hw_init function fails to cleanup resources properly. A local attacker can induce an error condition to crash the system. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Four memory leaks in the acp_hw_init() function in drivers/gpu/drm/amd/amdgpu/amdgpu_acp.c allow for a DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Low impact because of the preconditions needed to trigger the error/resource cleanup code path.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19067"
},
{
"category": "external",
"summary": "RHBZ#1774968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1774968"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19067",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19067"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19067",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19067"
}
],
"release_date": "2019-11-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Four memory leaks in the acp_hw_init() function in drivers/gpu/drm/amd/amdgpu/amdgpu_acp.c allow for a DoS"
},
{
"cve": "CVE-2019-19073",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-11-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1774937"
}
],
"notes": [
{
"category": "description",
"text": "Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout() failures. This affects the htc_config_pipe_credits() function, the htc_setup_complete() function, and the htc_connect_service() function, aka CID-853acf7caf10.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel (DOS)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19073"
},
{
"category": "external",
"summary": "RHBZ#1774937",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1774937"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19073",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19073"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19073",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19073"
}
],
"release_date": "2019-11-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel (DOS)"
},
{
"cve": "CVE-2019-19074",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2019-11-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1774933"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak in the ath9k_wmi_cmd() function in drivers/net/wireless/ath/ath9k/wmi.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-728c1e2a05e4.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: a memory leak in the ath9k management function in allows local DoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19074"
},
{
"category": "external",
"summary": "RHBZ#1774933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1774933"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19074",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19074"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19074",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19074"
}
],
"release_date": "2019-11-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: a memory leak in the ath9k management function in allows local DoS"
},
{
"cve": "CVE-2019-19077",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-11-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1775724"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak flaw was found in the Broadcom NetXtreme HCA driver in the Linux kernel, in the way it handled resource cleanup on the copy to userspace error. This flaw allows a local attacker to trigger this error and crash the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: memory leak in bnxt_re_create_srq function in drivers/infiniband/hw/bnxt_re/ib_verbs.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Moderate impact because local attacker is needed in order to trigger it.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19077"
},
{
"category": "external",
"summary": "RHBZ#1775724",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1775724"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19077",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19077"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19077",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19077"
}
],
"release_date": "2019-09-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "In order to mitigate this issue it is possible to prevent the affected code from being loaded by blacklisting the kernel module bnxt_re. For instructions relating to how to blacklist a kernel module refer to: https://access.redhat.com/solutions/41278 .",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: memory leak in bnxt_re_create_srq function in drivers/infiniband/hw/bnxt_re/ib_verbs.c"
},
{
"cve": "CVE-2019-19532",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2019-12-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1781821"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds write flaw was found in the Linux kernel\u2019s HID drivers. An attacker, able to plug in a malicious USB device, can crash the system or read and write to memory with an incorrect address.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: malicious USB devices can lead to multiple out-of-bounds write",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated as having Moderate impact because of the need of physical access to trigger it.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19532"
},
{
"category": "external",
"summary": "RHBZ#1781821",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1781821"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19532",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19532"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19532",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19532"
}
],
"release_date": "2019-12-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: malicious USB devices can lead to multiple out-of-bounds write"
},
{
"cve": "CVE-2019-19534",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2019-12-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1783540"
}
],
"notes": [
{
"category": "description",
"text": "An information-leak flaw was found in the Linux kernel\u0027s pcan USB driver. When a device using this driver connects to the system, the stack information is leaked to the CAN bus, a controller area network for automobiles. The highest threat with this vulnerability is breach of data confidentiality.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: information leak bug caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19534"
},
{
"category": "external",
"summary": "RHBZ#1783540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1783540"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19534",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19534"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19534",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19534"
}
],
"release_date": "2019-11-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "As the devices module will be auto-loaded when the USB CAN bus adapter is connected, its can be disabled by preventing the module from loading with the following instructions:\n\n# echo \"install peak_usb /bin/true\" \u003e\u003e /etc/modprobe.d/disable-peak-usb-canbus.conf \n \nThe system will need to be restarted if the peak_usb module is already loaded. In most circumstances, the kernel modules will be unable to be unloaded while any CAN bus interfaces are active and the protocol is in use. If the system requires this module to work correctly, this mitigation may not be suitable. If you need further assistance, see KCS article https://access.redhat.com/solutions/41278 or contact Red Hat Global Support Services.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "NONE",
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: information leak bug caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver"
},
{
"cve": "CVE-2019-19768",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2019-12-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1786164"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in the Linux kernel\u2019s implementation of blktrace in the __blk_add_trace function. A local attacker with permissions to run block trace instructions against a device can create a situation where the core block_trace object is used after it is freed. The attacker can pre-groom memory to race this use-after-free to create a condition where the memory is corrupted and cause privilege escalation.\r\n\r\nThe ability to create this condition requires elevated privileges, and it has been decided that this change in Red Hat Enterprise Linux 5 and 6 would risk introducing possible regressions and will not be backported.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19768"
},
{
"category": "external",
"summary": "RHBZ#1786164",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1786164"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19768",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19768"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19768",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19768"
}
],
"release_date": "2019-11-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c"
},
{
"cve": "CVE-2019-19922",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2020-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1792512"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u2019s scheduler, where it can allow attackers to cause a denial of service against non-CPU-bound applications by generating a workload that triggers unwanted scheduling slice expiration. A local attacker who can trigger a specific workload type could abuse this technique to trigger a system to be seen as degraded, and possibly trigger workload-rebalance in systems that use the slice-expiration metric as a measure of system health.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: when cpu.cfs_quota_us is used allows attackers to cause a denial of service against non-cpu-bound applications",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-19922"
},
{
"category": "external",
"summary": "RHBZ#1792512",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1792512"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-19922",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19922"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19922",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19922"
}
],
"release_date": "2019-12-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: when cpu.cfs_quota_us is used allows attackers to cause a denial of service against non-cpu-bound applications"
},
{
"acknowledgments": [
{
"names": [
"Xiumei Mu"
],
"organization": "Red Hat QE Engineering",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2020-1749",
"cwe": {
"id": "CWE-319",
"name": "Cleartext Transmission of Sensitive Information"
},
"discovery_date": "2020-03-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1809833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s implementation of some networking protocols in IPsec, such as VXLAN and GENEVE tunnels over IPv6. When an encrypted tunnel is created between two hosts, the kernel isn\u0027t correctly routing tunneled data over the encrypted link; rather sending the data unencrypted. This would allow anyone in between the two endpoints to read the traffic unencrypted. The main threat from this vulnerability is to data confidentiality.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: some ipv6 protocols not encrypted over ipsec tunnel",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-1749"
},
{
"category": "external",
"summary": "RHBZ#1809833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1809833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-1749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-1749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-1749"
}
],
"release_date": "2020-03-04T01:29:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "Disabling the IPV6 protocol may be a suitable workaround for systems that do not require the protocol to function correctly, however, if IPV6 is not in use this flaw will not be triggered.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: some ipv6 protocols not encrypted over ipsec tunnel"
},
{
"cve": "CVE-2020-7053",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-01-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1795624"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free flaw was found in the Linux kernel\u2019s GPU driver functionality when destroying GEM context. A local user could use this flaw to crash the system or potentially escalate their privileges.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free in i915_ppgtt_close in drivers/gpu/drm/i915/i915_gem_gtt.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The impact of this issue is Moderate, because attack is specific for certain Intel hardware and could be triggered only by local user with write access to the device.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-7053"
},
{
"category": "external",
"summary": "RHBZ#1795624",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1795624"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-7053",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7053"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-7053",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7053"
}
],
"release_date": "2020-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "In case of dedicated graphic card presence and i915 GPU is not being used, you can prevent module i915 from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: use-after-free in i915_ppgtt_close in drivers/gpu/drm/i915/i915_gem_gtt.c"
},
{
"cve": "CVE-2020-10690",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2019-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1817141"
}
],
"notes": [
{
"category": "description",
"text": "There is a use-after-free problem seen due to a race condition between the release of ptp_clock and cdev while resource deallocation. When a (high privileged) process allocates a ptp device file (like /dev/ptpX) and voluntarily goes to sleep. During this time if the underlying device is removed, it can cause an exploitable condition as the process wakes up to terminate and clean all attached files. The system crashes due to the cdev structure being invalid (as already freed) which is pointed to by the inode.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free in cdev_put() when a PTP device is removed while it\u0027s chardev is open",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Low impact as there is a need for high privilege access to trigger this problem. This will need an access to /dev/ptpX which is privileged operation, also removing the module is needed (again, privileged operation).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-10690"
},
{
"category": "external",
"summary": "RHBZ#1817141",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1817141"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-10690",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10690"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10690",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10690"
}
],
"release_date": "2019-11-25T12:53:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: use-after-free in cdev_put() when a PTP device is removed while it\u0027s chardev is open"
},
{
"cve": "CVE-2021-33630",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2024-01-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2261974"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference flaw was found in the Linux kernel\u0027s network scheduler. This issue occurs when offloading is enabled, the cbs instance is not added to the list. The code also incorrectly handles the case when offload is disabled without removing the qdisc. This could allow a local user to cause a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: net/sched: cbs NULL pointer dereference when offloading is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-33630"
},
{
"category": "external",
"summary": "RHBZ#2261974",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2261974"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-33630",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33630"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-33630",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-33630"
},
{
"category": "external",
"summary": "https://seclists.org/oss-sec/2024/q1/65",
"url": "https://seclists.org/oss-sec/2024/q1/65"
}
],
"release_date": "2024-01-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T15:41:38+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1567"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"NFV-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"NFV-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.src",
"RT-8.2.0.GA:kernel-rt-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-core-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-devel-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-kvm-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-0:4.18.0-193.rt13.51.el8.x86_64",
"RT-8.2.0.GA:kernel-rt-modules-extra-0:4.18.0-193.rt13.51.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: net/sched: cbs NULL pointer dereference when offloading is enabled"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…