21/7/2020

RHSA-2020:3019: Important: kernel security, bug fix, and enhancement update

First published: Tue Jul 21 2020(Updated: )

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): <li> Kernel: vfio: access to disabled MMIO space of some devices may lead to DoS scenario (CVE-2020-12888)</li> <li> kernel: denial of service in arch/powerpc/kernel/signal_32.c and arch/powerpc/kernel/signal_64.c via sigreturn() system call (CVE-2019-13648)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): <li> kernel: hw: provide reporting and microcode mitigation toggle for CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1840678)</li> <li> Deadlock condition grabbing ssb_state lock (BZ#1841120)</li> <li> ext4: change LRU to round-robin in extent status tree shrinker (BZ#1847342)</li> <li> Emulex lpfc seems to get hung up failing IOCB'S continuously on kernel 3.10.0-957.21.3.el7.x86_64 leading to Oracle evictions (BZ#1849650)</li> <li> After upgrade to 3.9.89 pod containers with CPU limits fail to start due to cgroup error (BZ#1850499)</li> Enhancement(s): <li> [Marvell 7.8 FEAT] Update bnx2fc driver to latest upstream (BZ#1834817)</li>

Affected Software	Affected Version	How to fix
redhat/kernel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/bpftool	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/bpftool-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-abi-whitelists	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debug	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debug-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debug-devel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-devel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-doc	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-headers	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-tools	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-tools-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-tools-libs	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-tools-libs-devel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/perf	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/perf-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/python-perf	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/python-perf-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/bpftool	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/bpftool-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debug	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debug-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debug-devel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debuginfo-common-s390x	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-devel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-headers	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-kdump	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-kdump-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-kdump-devel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/perf	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/perf-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/python-perf	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/python-perf-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-bootwrapper	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debuginfo-common-ppc64	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-tools	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-tools-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-tools-libs	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-tools-libs-devel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/bpftool	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/bpftool-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-bootwrapper	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debug	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debug-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debug-devel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-debuginfo-common-ppc64le	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-devel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-headers	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-tools	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-tools-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-tools-libs	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/kernel-tools-libs-devel	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/perf	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/perf-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/python-perf	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7
redhat/python-perf-debuginfo	<3.10.0-1062.30.1.el7	3.10.0-1062.30.1.el7

RHSA-2020:3019: Important: kernel security, bug fix, and enhancement update

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact