First published: Tue Apr 27 2021(Updated: )
This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.<br>Security Fix(es):<br><li> kernel: SCSI target (LIO) write to any block on ILO backstore (CVE-2020-28374)</li> <li> kernel: out-of-bounds read in libiscsi module (CVE-2021-27364)</li> <li> kernel: heap buffer overflow in the iSCSI subsystem (CVE-2021-27365)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/kpatch-patch | <3_10_0-957_54_1-1-3.el7 | 3_10_0-957_54_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_56_1-1-3.el7 | 3_10_0-957_56_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_58_2-1-3.el7 | 3_10_0-957_58_2-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_61_1-1-3.el7 | 3_10_0-957_61_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_61_2-1-3.el7 | 3_10_0-957_61_2-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_62_1-1-3.el7 | 3_10_0-957_62_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_65_1-1-3.el7 | 3_10_0-957_65_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_66_1-1-3.el7 | 3_10_0-957_66_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_70_1-1-2.el7 | 3_10_0-957_70_1-1-2.el7 |
redhat/kpatch-patch | <3_10_0-957_54_1-1-3.el7 | 3_10_0-957_54_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_54_1-debuginfo-1-3.el7 | 3_10_0-957_54_1-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_56_1-1-3.el7 | 3_10_0-957_56_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_56_1-debuginfo-1-3.el7 | 3_10_0-957_56_1-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_58_2-1-3.el7 | 3_10_0-957_58_2-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_58_2-debuginfo-1-3.el7 | 3_10_0-957_58_2-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_61_1-1-3.el7 | 3_10_0-957_61_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_61_1-debuginfo-1-3.el7 | 3_10_0-957_61_1-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_61_2-1-3.el7 | 3_10_0-957_61_2-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_61_2-debuginfo-1-3.el7 | 3_10_0-957_61_2-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_62_1-1-3.el7 | 3_10_0-957_62_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_62_1-debuginfo-1-3.el7 | 3_10_0-957_62_1-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_65_1-1-3.el7 | 3_10_0-957_65_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_65_1-debuginfo-1-3.el7 | 3_10_0-957_65_1-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_66_1-1-3.el7 | 3_10_0-957_66_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_66_1-debuginfo-1-3.el7 | 3_10_0-957_66_1-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_70_1-1-2.el7 | 3_10_0-957_70_1-1-2.el7 |
redhat/kpatch-patch | <3_10_0-957_70_1-debuginfo-1-2.el7 | 3_10_0-957_70_1-debuginfo-1-2.el7 |
redhat/kpatch-patch | <3_10_0-957_54_1-1-3.el7 | 3_10_0-957_54_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_54_1-debuginfo-1-3.el7 | 3_10_0-957_54_1-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_56_1-1-3.el7 | 3_10_0-957_56_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_56_1-debuginfo-1-3.el7 | 3_10_0-957_56_1-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_58_2-1-3.el7 | 3_10_0-957_58_2-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_58_2-debuginfo-1-3.el7 | 3_10_0-957_58_2-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_61_1-1-3.el7 | 3_10_0-957_61_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_61_1-debuginfo-1-3.el7 | 3_10_0-957_61_1-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_61_2-1-3.el7 | 3_10_0-957_61_2-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_61_2-debuginfo-1-3.el7 | 3_10_0-957_61_2-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_62_1-1-3.el7 | 3_10_0-957_62_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_62_1-debuginfo-1-3.el7 | 3_10_0-957_62_1-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_65_1-1-3.el7 | 3_10_0-957_65_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_65_1-debuginfo-1-3.el7 | 3_10_0-957_65_1-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_66_1-1-3.el7 | 3_10_0-957_66_1-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_66_1-debuginfo-1-3.el7 | 3_10_0-957_66_1-debuginfo-1-3.el7 |
redhat/kpatch-patch | <3_10_0-957_70_1-1-2.el7 | 3_10_0-957_70_1-1-2.el7 |
redhat/kpatch-patch | <3_10_0-957_70_1-debuginfo-1-2.el7 | 3_10_0-957_70_1-debuginfo-1-2.el7 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of RHSA-2021:1377 is classified as important due to potential exploitation risks from the kernel vulnerabilities.
To resolve RHSA-2021:1377, you should update the kpatch-patch package to one of the remedied versions specified in the advisory.
RHSA-2021:1377 addresses multiple vulnerabilities including CVE-2020-28374 which relates to an out-of-bounds write issue.
Versions of kpatch-patch prior to 3_10_0-957_70_1-1-2.el7 are affected by RHSA-2021:1377.
Yes, exploitation of the vulnerabilities in RHSA-2021:1377 may lead to potential data loss or corruption if not properly mitigated.