First published: Tue Nov 09 2021(Updated: )
The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>Security Fix(es):<br><li> kernel: out-of-bounds reads in pinctrl subsystem (CVE-2020-0427)</li> <li> kernel: Improper input validation in some Intel(R) Ethernet E810 Adapter drivers (CVE-2020-24502)</li> <li> kernel: Insufficient access control in some Intel(R) Ethernet E810 Adapter drivers (CVE-2020-24503)</li> <li> kernel: Uncontrolled resource consumption in some Intel(R) Ethernet E810 Adapter drivers (CVE-2020-24504)</li> <li> kernel: Fragmentation cache not cleared on reconnection (CVE-2020-24586)</li> <li> kernel: Reassembling fragments encrypted under different keys (CVE-2020-24587)</li> <li> kernel: wifi frame payload being parsed incorrectly as an L2 frame (CVE-2020-24588)</li> <li> kernel: Forwarding EAPOL from unauthenticated wifi client (CVE-2020-26139)</li> <li> kernel: accepting plaintext data frames in protected networks (CVE-2020-26140)</li> <li> kernel: not verifying TKIP MIC of fragmented frames (CVE-2020-26141)</li> <li> kernel: accepting fragmented plaintext frames in protected networks (CVE-2020-26143)</li> <li> kernel: accepting unencrypted A-MSDU frames that start with RFC1042 header (CVE-2020-26144)</li> <li> kernel: accepting plaintext broadcast fragments as full frames (CVE-2020-26145)</li> <li> kernel: powerpc: RTAS calls can be used to compromise kernel integrity (CVE-2020-27777)</li> <li> kernel: locking inconsistency in tty_io.c and tty_jobctrl.c can lead to a read-after-free (CVE-2020-29660)</li> <li> kernel: buffer overflow in mwifiex_cmd_802_11_ad_hoc_start function via a long SSID value (CVE-2020-36158)</li> <li> kernel: slab out-of-bounds read in hci_extended_inquiry_result_evt() (CVE-2020-36386)</li> <li> kernel: Improper access control in BlueZ may allow information disclosure vulnerability. (CVE-2021-0129)</li> <li> kernel: Use-after-free in ndb_queue_rq() in drivers/block/nbd.c (CVE-2021-3348)</li> <li> kernel: Linux kernel eBPF RINGBUF map oversized allocation (CVE-2021-3489)</li> <li> kernel: double free in bluetooth subsystem when the HCI device initialization fails (CVE-2021-3564)</li> <li> kernel: use-after-free in function hci_sock_bound_ioctl() (CVE-2021-3573)</li> <li> kernel: eBPF 32-bit source register truncation on div/mod (CVE-2021-3600)</li> <li> kernel: DoS in rb_per_cpu_empty() (CVE-2021-3679)</li> <li> kernel: Mounting overlayfs inside an unprivileged user namespace can reveal files (CVE-2021-3732)</li> <li> kernel: heap overflow in __cgroup_bpf_run_filter_getsockopt() (CVE-2021-20194)</li> <li> kernel: Race condition in sctp_destroy_sock list_del (CVE-2021-23133)</li> <li> kernel: fuse: stall on CPU can occur because a retry loop continually finds the same bad inode (CVE-2021-28950)</li> <li> kernel: System crash in intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c (CVE-2021-28971)</li> <li> kernel: protection can be bypassed to leak content of kernel memory (CVE-2021-29155)</li> <li> kernel: improper input validation in tipc_nl_retrieve_key function in net/tipc/node.c (CVE-2021-29646)</li> <li> kernel: lack a full memory barrier may lead to DoS (CVE-2021-29650)</li> <li> kernel: local escalation of privileges in handling of eBPF programs (CVE-2021-31440)</li> <li> kernel: protection of stack pointer against speculative pointer arithmetic can be bypassed to leak content of kernel memory (CVE-2021-31829)</li> <li> kernel: out-of-bounds reads and writes due to enforcing incorrect limits for pointer arithmetic operations by BPF verifier (CVE-2021-33200)</li> <li> kernel: reassembling encrypted fragments with non-consecutive packet numbers (CVE-2020-26146)</li> <li> kernel: reassembling mixed encrypted/plaintext fragments (CVE-2020-26147)</li> <li> kernel: the copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check (CVE-2020-29368)</li> <li> kernel: flowtable list del corruption with kernel BUG at lib/list_debug.c:50 (CVE-2021-3635)</li> <li> kernel: NULL pointer dereference in llsec_key_alloc() in net/mac802154/llsec.c (CVE-2021-3659)</li> <li> kernel: setsockopt System Call Untrusted Pointer Dereference Information Disclosure (CVE-2021-20239)</li> <li> kernel: out of bounds array access in drivers/md/dm-ioctl.c (CVE-2021-31916)</li>
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/kernel | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/bpftool | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/bpftool-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-abi-stablelists | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-core | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-cross-headers | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-core | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-devel | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-modules | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-modules-extra | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-devel | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-doc | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-headers | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-modules | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-modules-extra | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-tools | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-tools-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-tools-libs | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/perf | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/perf-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/python3-perf | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/python3-perf-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/bpftool | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/bpftool-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-core | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-cross-headers | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-core | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-devel | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-modules | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-modules-extra | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debuginfo-common-s390x | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-devel | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-headers | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-modules | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-modules-extra | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-tools | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-tools-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-zfcpdump | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-zfcpdump-core | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-zfcpdump-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-zfcpdump-devel | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-zfcpdump-modules | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-zfcpdump-modules-extra | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/perf | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/perf-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/python3-perf | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/python3-perf-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/bpftool | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/bpftool-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-core | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-cross-headers | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-core | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-devel | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-modules | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debug-modules-extra | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-debuginfo-common-ppc64le | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-devel | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-headers | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-modules | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-modules-extra | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-tools | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-tools-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-tools-libs | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/perf | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/perf-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/python3-perf | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/python3-perf-debuginfo | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/bpftool | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/bpftool-debuginfo | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-core | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-cross-headers | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-debug | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-debug-core | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-debug-debuginfo | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-debug-devel | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-debug-modules | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-debug-modules-extra | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-debuginfo | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-debuginfo-common-aarch64 | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-devel | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-headers | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-modules | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-modules-extra | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-tools | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-tools-debuginfo | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-tools-libs | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/perf | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/perf-debuginfo | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/python3-perf | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/python3-perf-debuginfo | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
redhat/kernel-tools-libs-devel | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-tools-libs-devel | <4.18.0-348.el8 | 4.18.0-348.el8 |
redhat/kernel-tools-libs-devel | <4.18.0-348.el8.aa | 4.18.0-348.el8.aa |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.