What is the severity of RHSA-2020:3228?

The severity of RHSA-2020:3228 is categorized as important.

How do I fix RHSA-2020:3228?

To fix RHSA-2020:3228, update the kernel and related packages to version 4.18.0-80.27.2.el8_0 or higher.

What vulnerabilities are addressed in RHSA-2020:3228?

RHSA-2020:3228 addresses vulnerabilities CVE-2019-20908 and CVE-2020-15780.

Which versions of the kernel are affected by RHSA-2020:3228?

Versions of the kernel prior to 4.18.0-80.27.2.el8_0 are affected by RHSA-2020:3228.

Is a reboot required after applying the fix for RHSA-2020:3228?

Yes, a reboot is required after applying the fix for RHSA-2020:3228 to ensure that the new kernel is loaded.

Vulnerability/
RHSA-2020:3228

29/7/2020

10/10/2024

RHSA-2020:3228: Moderate: kernel security and bug fix update

First published: Wed Jul 29 2020(Updated: )

The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>Security Fix(es):<br><li> kernel: lockdown: bypass through ACPI write via efivar_ssdt (CVE-2019-20908)</li> <li> kernel: lockdown: bypass through ACPI write via acpi_configfs (CVE-2020-15780)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> kernel: provide infrastructure to support dual-signing of the kernel (foundation to help address CVE-2020-10713) (BZ#1837431)</li>

Affected Software	Affected Version	How to fix
redhat/kernel	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/bpftool	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/bpftool-debuginfo	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-abi-whitelists	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-core	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-cross-headers	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debug	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debug-core	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debug-debuginfo	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debug-devel	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debug-modules	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debug-modules-extra	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debuginfo	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debuginfo-common-ppc64le	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-devel	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-doc	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-headers	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-modules	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-modules-extra	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-tools	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-tools-debuginfo	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-tools-libs	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/perf	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/perf-debuginfo	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/python3-perf	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/python3-perf-debuginfo	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/bpftool	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/bpftool-debuginfo	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-core	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-cross-headers	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debug	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debug-core	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debug-debuginfo	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debug-devel	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debug-modules	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debug-modules-extra	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-debuginfo	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-devel	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-headers	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-modules	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-modules-extra	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-tools	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-tools-debuginfo	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/kernel-tools-libs	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/perf	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/perf-debuginfo	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/python3-perf	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0
redhat/python3-perf-debuginfo	<4.18.0-80.27.2.el8_0	4.18.0-80.27.2.el8_0

Never miss a vulnerability like this again

Reference Links

https://access.redhat.com/errata/RHSA-2020:3228 (Advisory)

Frequently Asked Questions

What is the severity of RHSA-2020:3228?
The severity of RHSA-2020:3228 is categorized as important.
How do I fix RHSA-2020:3228?
To fix RHSA-2020:3228, update the kernel and related packages to version 4.18.0-80.27.2.el8_0 or higher.
What vulnerabilities are addressed in RHSA-2020:3228?
RHSA-2020:3228 addresses vulnerabilities CVE-2019-20908 and CVE-2020-15780.
Which versions of the kernel are affected by RHSA-2020:3228?
Versions of the kernel prior to 4.18.0-80.27.2.el8_0 are affected by RHSA-2020:3228.
Is a reboot required after applying the fix for RHSA-2020:3228?
Yes, a reboot is required after applying the fix for RHSA-2020:3228 to ensure that the new kernel is loaded.

agent/severity
agent/type
agent/softwarecombine
agent/last-modified-date
agent/first-publish-date
agent/title
agent/description
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2020:3228
agent/software-canonical-lookup
agent/remedy
agent/tags
agent/references
agent/event
agent/source
package-manager/redhat