RHSA-2021:0336: Moderate: kernel security, bug fix, and enhancement update
First published: Tue Feb 02 2021(Updated: )
The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>Security Fix(es):<br><li> kernel: use-after-free in fs/block_dev.c (CVE-2020-15436)</li> <li> kernel: Nfsd failure to clear umask after processing an open or create (CVE-2020-35513)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> double free issue in filelayout_alloc_commit_info (BZ#1679980)</li> <li> Regression: Plantronics Device SHS2355-11 PTT button does not work after update to 7.7 (BZ#1769502)</li> <li> Openstack network node reports unregister_netdevice: waiting for qr-3cec0c92-9a to become free. Usage count = 1 (BZ#1809519)</li> <li> dlm: add ability to interrupt waiting for acquire POSIX lock (BZ#1826858)</li> <li> [Azure][RHEL7] soft lockups and performance loss occurring during final fsync with parallel dd writes to xfs filesystem in azure instance (BZ#1859364)</li> <li> Guest crashed when hotplug vcpus on booting kernel stage (BZ#1866138)</li> <li> soft lockup occurs while a thread group leader is waiting on tasklist_waiters in mm_update_next_owner() where a huge number of the thread group members are exiting and trying to take the tasklist_lock. (BZ#1872110)</li> <li> [DELL EMC 7.6 BUG] Kioxia CM6 NVMe drive fails to enumerate (BZ#1883403)</li> <li> [Hyper-V][RHEL7] Request to included a commit that adds a timeout to vmbus_wait_for_unload (BZ#1888979)</li> <li> Unable to discover the LUNs from new storage port (BZ#1889311)</li> <li> RHEL 7.9 Kernel panic at ceph_put_snap_realm+0x21 (BZ#1890386)</li> <li> A hard lockup occurrs where one task is looping in an sk_lock spinlock that has been taken by another task running timespec64_add_ns(). (BZ#1890911)</li> <li> ethtool/mlx5_core provides incorrect SFP module info (BZ#1896756)</li> <li> RHEL7.7 - zcrypt: Fix ZCRYPT_PERDEV_REQCNT ioctl (BZ#1896826)</li> <li> RHEL7.7 - s390/dasd: Fix zero write for FBA devices (BZ#1896839)</li> <li> [Azure]IP forwarding issue in netvsc[7.9.z] (BZ#1898280)</li> <li> Security patch for CVE-2020-25212 breaks directory listings via 'ls' on NFS V4.2 shares mounted with selinux enabled labels (BZ#1917504)</li> Enhancement(s):<br><li> RFE : handle better ERRbaduid on SMB1 (BZ#1847041)</li>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/bpftool | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/bpftool-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-abi-whitelists | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debug | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debug-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debug-devel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-devel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-doc | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-headers | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-tools | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-tools-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-tools-libs | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-tools-libs-devel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/perf | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/perf-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/python-perf | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/python-perf-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/bpftool | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/bpftool-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debug | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debug-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debug-devel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debuginfo-common-s390x | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-devel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-headers | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-kdump | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-kdump-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-kdump-devel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/perf | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/perf-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/python-perf | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/python-perf-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-bootwrapper | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debuginfo-common-ppc64 | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-tools | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-tools-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-tools-libs | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-tools-libs-devel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/bpftool | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/bpftool-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-bootwrapper | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debug | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debug-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debug-devel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-debuginfo-common-ppc64le | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-devel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-headers | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-tools | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-tools-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-tools-libs | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/kernel-tools-libs-devel | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/perf | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/perf-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/python-perf | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
| redhat/python-perf-debuginfo | <3.10.0-1160.15.2.el7 | 3.10.0-1160.15.2.el7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/severity
- agent/weakness
- agent/references
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/remedy
- agent/title
- agent/tags
- agent/description
- agent/event
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2021:0336
- agent/software-canonical-lookup
- package-manager/redhat