First published: Tue Dec 10 2019(Updated: )
The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>Security Fix(es):<br><li> kernel: Memory corruption due to incorrect socket cloning (CVE-2018-9568)</li> <li> kernel: Missing check in fs/inode.c:inode_init_owner() does not clear SGID bit on non-directories for non-members (CVE-2018-13405)</li> <li> Kernel: page cache side channel attacks (CVE-2019-5489)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> kernel build: parallelize redhat/mod-sign.sh (BZ#1755325)</li>
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/kernel | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel-abi-whitelists | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel-debug | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel-debug-debuginfo | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel-debug-devel | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel-debuginfo | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel-devel | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel-doc | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel-headers | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel-tools | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel-tools-debuginfo | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel-tools-libs | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/kernel-tools-libs-devel | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/perf | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/perf-debuginfo | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/python-perf | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
redhat/python-perf-debuginfo | <3.10.0-327.83.1.el7 | 3.10.0-327.83.1.el7 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.