What is the severity of RHSA-2021:0338?

The severity of RHSA-2021:0338 is considered critical due to the vulnerabilities it addresses.

How do I fix RHSA-2021:0338?

To fix RHSA-2021:0338, you should update to the kernel-rt package version 3.10.0-1160.15.2.rt56.1152.el7 or later.

What vulnerabilities are addressed in RHSA-2021:0338?

RHSA-2021:0338 addresses a use-after-free vulnerability in fs/block_dev.c (CVE-2020-15436) among others.

Which packages are affected by RHSA-2021:0338?

Affected packages include kernel-rt, kernel-rt-debug, and several related kernel-rt debug and devel packages.

Is it necessary to reboot after applying RHSA-2021:0338?

Yes, a reboot is necessary to ensure that the updated kernel-rt package is loaded.

Vulnerability/
RHSA-2021:0338

CWE

416

2/2/2021

RHSA-2021:0338: Moderate: kernel-rt security and bug fix update

First published: Tue Feb 02 2021(Updated: )

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.<br>Security Fix(es):<br><li> kernel: use-after-free in fs/block_dev.c (CVE-2020-15436)</li> <li> kernel: Nfsd failure to clear umask after processing an open or create (CVE-2020-35513)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> kernel-rt: update to the latest RHEL7.9.z3 source tree (BZ#1906133)</li> <li> [kernel-rt] WARNING: CPU: 8 PID: 586 at kernel/sched/core.c:3644 migrate_enable+0x15f/0x210 (BZ#1916123)</li> <li> [kernel-rt-debug] [ BUG: bad unlock balance detected! ] [RHEL-7.9.z] (BZ#1916130)</li>

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2021:0338?
The severity of RHSA-2021:0338 is considered critical due to the vulnerabilities it addresses.
How do I fix RHSA-2021:0338?
To fix RHSA-2021:0338, you should update to the kernel-rt package version 3.10.0-1160.15.2.rt56.1152.el7 or later.
What vulnerabilities are addressed in RHSA-2021:0338?
RHSA-2021:0338 addresses a use-after-free vulnerability in fs/block_dev.c (CVE-2020-15436) among others.
Which packages are affected by RHSA-2021:0338?
Affected packages include kernel-rt, kernel-rt-debug, and several related kernel-rt debug and devel packages.
Is it necessary to reboot after applying RHSA-2021:0338?
Yes, a reboot is necessary to ensure that the updated kernel-rt package is loaded.

agent/severity
agent/type
agent/first-publish-date
agent/softwarecombine
agent/last-modified-date
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2021:0338
agent/software-canonical-lookup
agent/remedy
agent/weakness
agent/references
agent/title
agent/description
agent/event
agent/trending
agent/tags
agent/source
package-manager/redhat