Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
===========================================================================
AUSCERT External Security Bulletin Redistribution
ESB-2020.2006
kernel security and bug fix update
10 June 2020
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: kernel
Publisher: Red Hat
Operating System: Red Hat Enterprise Linux Server 6
Red Hat Enterprise Linux WS/Desktop 6
Red Hat Enterprise Linux Server 8
Red Hat Enterprise Linux WS/Desktop 8
Red Hat
Impact/Access: Root Compromise -- Existing Account
Access Privileged Data -- Existing Account
Denial of Service -- Remote/Unauthenticated
Resolution: Patch/Upgrade
CVE Names: CVE-2020-12657 CVE-2020-11884 CVE-2020-10711
CVE-2020-0543 CVE-2019-18660 CVE-2017-12192
Reference: ESB-2020.1994
ESB-2020.1853
ESB-2020.1830.2
ESB-2020.1770.2
ESB-2020.1745.2
Original Bulletin:
https://access.redhat.com/errata/RHSA-2020:2430
https://access.redhat.com/errata/RHSA-2020:2429
https://access.redhat.com/errata/RHSA-2020:2428
https://access.redhat.com/errata/RHSA-2020:2427
Comment: This bulletin contains four (4) Red Hat security advisories.
- --------------------------BEGIN INCLUDED TEXT--------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
=====================================================================
Red Hat Security Advisory
Synopsis: Moderate: kernel security and bug fix update
Advisory ID: RHSA-2020:2430-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2020:2430
Issue date: 2020-06-09
CVE Names: CVE-2017-12192
=====================================================================
1. Summary:
An update for kernel is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.
2. Relevant releases/architectures:
Red Hat Enterprise Linux Desktop (v. 6) - i386, noarch, x86_64
Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64
Red Hat Enterprise Linux HPC Node (v. 6) - noarch, x86_64
Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64
Red Hat Enterprise Linux Server (v. 6) - i386, noarch, ppc64, s390x, x86_64
Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64
Red Hat Enterprise Linux Workstation (v. 6) - i386, noarch, x86_64
Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64
3. Description:
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
Security Fix(es):
* kernel: NULL pointer dereference due to KEYCTL_READ on negative key
(CVE-2017-12192)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
Bug Fix(es):
* kernel: hw: provide reporting and microcode mitigation toggle for
CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1827185)
* Bonding not failing over in mode=1 under 2.6.32-754.28.1 (...27.1 works
OK) (BZ#1828604)
4. Solution:
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
The system must be rebooted for this update to take effect.
5. Bugs fixed (https://bugzilla.redhat.com/):
1493435 - CVE-2017-12192 kernel: NULL pointer dereference due to KEYCTL_READ on negative key
1828604 - Bonding not failing over in mode=1 under 2.6.32-754.28.1 (...27.1 works OK)
6. Package List:
Red Hat Enterprise Linux Desktop (v. 6):
Source:
kernel-2.6.32-754.30.2.el6.src.rpm
i386:
kernel-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm
kernel-devel-2.6.32-754.30.2.el6.i686.rpm
kernel-headers-2.6.32-754.30.2.el6.i686.rpm
perf-2.6.32-754.30.2.el6.i686.rpm
perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
noarch:
kernel-abi-whitelists-2.6.32-754.30.2.el6.noarch.rpm
kernel-doc-2.6.32-754.30.2.el6.noarch.rpm
kernel-firmware-2.6.32-754.30.2.el6.noarch.rpm
x86_64:
kernel-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debug-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm
kernel-devel-2.6.32-754.30.2.el6.x86_64.rpm
kernel-headers-2.6.32-754.30.2.el6.x86_64.rpm
perf-2.6.32-754.30.2.el6.x86_64.rpm
perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
Red Hat Enterprise Linux Desktop Optional (v. 6):
i386:
kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm
perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
python-perf-2.6.32-754.30.2.el6.i686.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
x86_64:
kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm
perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
python-perf-2.6.32-754.30.2.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
Red Hat Enterprise Linux HPC Node (v. 6):
Source:
kernel-2.6.32-754.30.2.el6.src.rpm
noarch:
kernel-abi-whitelists-2.6.32-754.30.2.el6.noarch.rpm
kernel-doc-2.6.32-754.30.2.el6.noarch.rpm
kernel-firmware-2.6.32-754.30.2.el6.noarch.rpm
x86_64:
kernel-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debug-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm
kernel-devel-2.6.32-754.30.2.el6.x86_64.rpm
kernel-headers-2.6.32-754.30.2.el6.x86_64.rpm
perf-2.6.32-754.30.2.el6.x86_64.rpm
perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
Red Hat Enterprise Linux HPC Node Optional (v. 6):
x86_64:
kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm
perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
python-perf-2.6.32-754.30.2.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
Red Hat Enterprise Linux Server (v. 6):
Source:
kernel-2.6.32-754.30.2.el6.src.rpm
i386:
kernel-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm
kernel-devel-2.6.32-754.30.2.el6.i686.rpm
kernel-headers-2.6.32-754.30.2.el6.i686.rpm
perf-2.6.32-754.30.2.el6.i686.rpm
perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
noarch:
kernel-abi-whitelists-2.6.32-754.30.2.el6.noarch.rpm
kernel-doc-2.6.32-754.30.2.el6.noarch.rpm
kernel-firmware-2.6.32-754.30.2.el6.noarch.rpm
ppc64:
kernel-2.6.32-754.30.2.el6.ppc64.rpm
kernel-bootwrapper-2.6.32-754.30.2.el6.ppc64.rpm
kernel-debug-2.6.32-754.30.2.el6.ppc64.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.ppc64.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm
kernel-debuginfo-common-ppc64-2.6.32-754.30.2.el6.ppc64.rpm
kernel-devel-2.6.32-754.30.2.el6.ppc64.rpm
kernel-headers-2.6.32-754.30.2.el6.ppc64.rpm
perf-2.6.32-754.30.2.el6.ppc64.rpm
perf-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm
s390x:
kernel-2.6.32-754.30.2.el6.s390x.rpm
kernel-debug-2.6.32-754.30.2.el6.s390x.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.s390x.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
kernel-debuginfo-common-s390x-2.6.32-754.30.2.el6.s390x.rpm
kernel-devel-2.6.32-754.30.2.el6.s390x.rpm
kernel-headers-2.6.32-754.30.2.el6.s390x.rpm
kernel-kdump-2.6.32-754.30.2.el6.s390x.rpm
kernel-kdump-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
kernel-kdump-devel-2.6.32-754.30.2.el6.s390x.rpm
perf-2.6.32-754.30.2.el6.s390x.rpm
perf-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
x86_64:
kernel-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debug-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm
kernel-devel-2.6.32-754.30.2.el6.x86_64.rpm
kernel-headers-2.6.32-754.30.2.el6.x86_64.rpm
perf-2.6.32-754.30.2.el6.x86_64.rpm
perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
Red Hat Enterprise Linux Server Optional (v. 6):
i386:
kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm
perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
python-perf-2.6.32-754.30.2.el6.i686.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
ppc64:
kernel-debug-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm
kernel-debuginfo-common-ppc64-2.6.32-754.30.2.el6.ppc64.rpm
perf-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm
python-perf-2.6.32-754.30.2.el6.ppc64.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm
s390x:
kernel-debug-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
kernel-debuginfo-common-s390x-2.6.32-754.30.2.el6.s390x.rpm
kernel-kdump-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
perf-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
python-perf-2.6.32-754.30.2.el6.s390x.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.s390x.rpm
x86_64:
kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm
perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
python-perf-2.6.32-754.30.2.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
Red Hat Enterprise Linux Workstation (v. 6):
Source:
kernel-2.6.32-754.30.2.el6.src.rpm
i386:
kernel-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm
kernel-devel-2.6.32-754.30.2.el6.i686.rpm
kernel-headers-2.6.32-754.30.2.el6.i686.rpm
perf-2.6.32-754.30.2.el6.i686.rpm
perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
noarch:
kernel-abi-whitelists-2.6.32-754.30.2.el6.noarch.rpm
kernel-doc-2.6.32-754.30.2.el6.noarch.rpm
kernel-firmware-2.6.32-754.30.2.el6.noarch.rpm
x86_64:
kernel-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debug-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm
kernel-debug-devel-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm
kernel-devel-2.6.32-754.30.2.el6.x86_64.rpm
kernel-headers-2.6.32-754.30.2.el6.x86_64.rpm
perf-2.6.32-754.30.2.el6.x86_64.rpm
perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
Red Hat Enterprise Linux Workstation Optional (v. 6):
i386:
kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm
kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm
perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
python-perf-2.6.32-754.30.2.el6.i686.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm
x86_64:
kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm
perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
python-perf-2.6.32-754.30.2.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2017-12192
https://access.redhat.com/security/updates/classification/#moderate
https://access.redhat.com/solutions/5142691
8. Contact:
The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2020 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=D6i0
- -----END PGP SIGNATURE-----
- --------------------------------------------------------------------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
=====================================================================
Red Hat Security Advisory
Synopsis: Important: kernel security and bug fix update
Advisory ID: RHSA-2020:2429-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2020:2429
Issue date: 2020-06-09
CVE Names: CVE-2019-18660 CVE-2020-10711 CVE-2020-11884
CVE-2020-12657
=====================================================================
1. Summary:
An update for kernel is now available for Red Hat Enterprise Linux 8.0
Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
2. Relevant releases/architectures:
Red Hat Enterprise Linux BaseOS E4S (v. 8.0) - aarch64, noarch, ppc64le, s390x, x86_64
3. Description:
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
Security Fix(es):
* Kernel: NetLabel: null pointer dereference while receiving CIPSO packet
with null category may cause kernel panic (CVE-2020-10711)
* Kernel: s390: page table upgrade in secondary address mode may lead to
privilege escalation (CVE-2020-11884)
* kernel: use-after-free in block/bfq-iosched.c related to
bfq_idle_slice_timer_body (CVE-2020-12657)
* kernel: powerpc: incomplete Spectre-RSB mitigation leads to information
exposure (CVE-2019-18660)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
Bug Fix(es):
* kernel: hw: provide reporting and microcode mitigation toggle for
CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1840684)
* missing version.h dependency for modpost may cause build to fail
(BZ#1828227)
* efi: kernel panic during ltp fs test - read_all -d /sys -q -r 10
(BZ#1829525)
4. Solution:
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
The system must be rebooted for this update to take effect.
5. Bugs fixed (https://bugzilla.redhat.com/):
1777825 - CVE-2019-18660 kernel: powerpc: incomplete Spectre-RSB mitigation leads to information exposure
1825116 - CVE-2020-10711 Kernel: NetLabel: null pointer dereference while receiving CIPSO packet with null category may cause kernel panic
1828149 - CVE-2020-11884 Kernel: s390: page table upgrade in secondary address mode may lead to privilege escalation
1832866 - CVE-2020-12657 kernel: use-after-free in block/bfq-iosched.c related to bfq_idle_slice_timer_body
6. Package List:
Red Hat Enterprise Linux BaseOS E4S (v. 8.0):
Source:
kernel-4.18.0-80.23.2.el8_0.src.rpm
aarch64:
bpftool-4.18.0-80.23.2.el8_0.aarch64.rpm
bpftool-debuginfo-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-core-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-cross-headers-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-debug-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-debug-core-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-debug-debuginfo-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-debug-devel-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-debug-modules-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-debug-modules-extra-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-debuginfo-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-debuginfo-common-aarch64-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-devel-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-headers-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-modules-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-modules-extra-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-tools-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-tools-debuginfo-4.18.0-80.23.2.el8_0.aarch64.rpm
kernel-tools-libs-4.18.0-80.23.2.el8_0.aarch64.rpm
perf-4.18.0-80.23.2.el8_0.aarch64.rpm
perf-debuginfo-4.18.0-80.23.2.el8_0.aarch64.rpm
python3-perf-4.18.0-80.23.2.el8_0.aarch64.rpm
python3-perf-debuginfo-4.18.0-80.23.2.el8_0.aarch64.rpm
noarch:
kernel-abi-whitelists-4.18.0-80.23.2.el8_0.noarch.rpm
kernel-doc-4.18.0-80.23.2.el8_0.noarch.rpm
ppc64le:
bpftool-4.18.0-80.23.2.el8_0.ppc64le.rpm
bpftool-debuginfo-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-core-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-cross-headers-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-debug-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-debug-core-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-debug-debuginfo-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-debug-devel-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-debug-modules-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-debug-modules-extra-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-debuginfo-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-debuginfo-common-ppc64le-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-devel-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-headers-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-modules-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-modules-extra-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-tools-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-tools-debuginfo-4.18.0-80.23.2.el8_0.ppc64le.rpm
kernel-tools-libs-4.18.0-80.23.2.el8_0.ppc64le.rpm
perf-4.18.0-80.23.2.el8_0.ppc64le.rpm
perf-debuginfo-4.18.0-80.23.2.el8_0.ppc64le.rpm
python3-perf-4.18.0-80.23.2.el8_0.ppc64le.rpm
python3-perf-debuginfo-4.18.0-80.23.2.el8_0.ppc64le.rpm
s390x:
bpftool-4.18.0-80.23.2.el8_0.s390x.rpm
bpftool-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-core-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-cross-headers-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-debug-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-debug-core-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-debug-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-debug-devel-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-debug-modules-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-debug-modules-extra-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-debuginfo-common-s390x-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-devel-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-headers-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-modules-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-modules-extra-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-tools-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-tools-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-zfcpdump-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-zfcpdump-core-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-zfcpdump-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-zfcpdump-devel-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-zfcpdump-modules-4.18.0-80.23.2.el8_0.s390x.rpm
kernel-zfcpdump-modules-extra-4.18.0-80.23.2.el8_0.s390x.rpm
perf-4.18.0-80.23.2.el8_0.s390x.rpm
perf-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm
python3-perf-4.18.0-80.23.2.el8_0.s390x.rpm
python3-perf-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm
x86_64:
bpftool-4.18.0-80.23.2.el8_0.x86_64.rpm
bpftool-debuginfo-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-core-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-cross-headers-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-debug-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-debug-core-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-debug-debuginfo-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-debug-devel-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-debug-modules-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-debug-modules-extra-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-debuginfo-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-debuginfo-common-x86_64-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-devel-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-headers-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-modules-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-modules-extra-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-tools-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-tools-debuginfo-4.18.0-80.23.2.el8_0.x86_64.rpm
kernel-tools-libs-4.18.0-80.23.2.el8_0.x86_64.rpm
perf-4.18.0-80.23.2.el8_0.x86_64.rpm
perf-debuginfo-4.18.0-80.23.2.el8_0.x86_64.rpm
python3-perf-4.18.0-80.23.2.el8_0.x86_64.rpm
python3-perf-debuginfo-4.18.0-80.23.2.el8_0.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2019-18660
https://access.redhat.com/security/cve/CVE-2020-10711
https://access.redhat.com/security/cve/CVE-2020-11884
https://access.redhat.com/security/cve/CVE-2020-12657
https://access.redhat.com/security/updates/classification/#important
https://access.redhat.com/solutions/5142691
8. Contact:
The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2020 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=ghVW
- -----END PGP SIGNATURE-----
- --------------------------------------------------------------------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
=====================================================================
Red Hat Security Advisory
Synopsis: Important: kernel-rt security and bug fix update
Advisory ID: RHSA-2020:2428-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2020:2428
Issue date: 2020-06-09
CVE Names: CVE-2020-12657
=====================================================================
1. Summary:
An update for kernel-rt is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
2. Relevant releases/architectures:
Red Hat Enterprise Linux Real Time (v. 8) - x86_64
Red Hat Enterprise Linux Real Time for NFV (v. 8) - x86_64
3. Description:
The kernel-rt packages provide the Real Time Linux Kernel, which enables
fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
* kernel: use-after-free in block/bfq-iosched.c related to
bfq_idle_slice_timer_body (CVE-2020-12657)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
Bug Fix(es):
* kernel: hw: provide reporting and microcode mitigation toggle for
CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1827193)
* kernel-rt: update RT source tree to the RHEL-8.2.z1 source tree
(BZ#1816271)
4. Solution:
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
The system must be rebooted for this update to take effect.
5. Bugs fixed (https://bugzilla.redhat.com/):
1832866 - CVE-2020-12657 kernel: use-after-free in block/bfq-iosched.c related to bfq_idle_slice_timer_body
6. Package List:
Red Hat Enterprise Linux Real Time for NFV (v. 8):
Source:
kernel-rt-4.18.0-193.6.3.rt13.59.el8_2.src.rpm
x86_64:
kernel-rt-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-core-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-core-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-debuginfo-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-devel-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-kvm-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-modules-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-modules-extra-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debuginfo-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debuginfo-common-x86_64-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-devel-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-kvm-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-modules-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-modules-extra-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
Red Hat Enterprise Linux Real Time (v. 8):
Source:
kernel-rt-4.18.0-193.6.3.rt13.59.el8_2.src.rpm
x86_64:
kernel-rt-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-core-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-core-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-debuginfo-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-devel-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-modules-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debug-modules-extra-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debuginfo-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-debuginfo-common-x86_64-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-devel-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-modules-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
kernel-rt-modules-extra-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2020-12657
https://access.redhat.com/security/updates/classification/#important
https://access.redhat.com/solutions/5142691
8. Contact:
The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2020 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=1NIU
- -----END PGP SIGNATURE-----
- --------------------------------------------------------------------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
=====================================================================
Red Hat Security Advisory
Synopsis: Important: kernel security and bug fix update
Advisory ID: RHSA-2020:2427-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2020:2427
Issue date: 2020-06-09
CVE Names: CVE-2020-12657
=====================================================================
1. Summary:
An update for kernel is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
2. Relevant releases/architectures:
Red Hat CodeReady Linux Builder (v. 8) - aarch64, ppc64le, x86_64
Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64
3. Description:
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
Security Fix(es):
* kernel: use-after-free in block/bfq-iosched.c related to
bfq_idle_slice_timer_body (CVE-2020-12657)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
Bug Fix(es):
* kernel: hw: provide reporting and microcode mitigation toggle for
CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1827191)
* ipsec interfaces: fix sending with bpf_redirect() / AF_PACKET sockets
(BZ#1821375)
* IB/core: deadlock on rdma_nl_mutex when netlink triggers on-demand
modprobe rdma_cm (BZ#1821381)
* dm: fix excessive bio splitting that results in performance regressions
(BZ#1821382)
* system time jumps when hotplug vcpu on a long uptime guest (BZ#1822498)
* [DELL 8.2 BUG]Ethernet : e1000e doesn't work after S2I (BZ#1825262)
* NFSv3 sec=krb5p fails against an ONTAP server (BZ#1826219)
* Stand-alone CPU Linpack test reports bad residual on HPC Cluster node(s)
while running RHEL 8 (BZ#1827619)
* [DELL 8.2 BUG]bluetooth Scanning block S3 and Suspend to idle
(BZ#1827620)
* RHEL8.2 Beta - SMC-R connection with vlan-id fails (BZ#1827631)
* RHEL8.1 - RHEL8.1 kernel
4.18.0-147.3.1.el8.bz181950_test001.ppc64le+debug failed during LPM test
(p8/p9):idahop08:LPM (vtpm) (BZ#1827632)
* missing version.h dependency for modpost may cause build to fail
(BZ#1828229)
* efi: kernel panic during ltp fs test - read_all -d /sys -q -r 10
(BZ#1829527)
* Let "isolcpus=" skip unknown sub-parameters (BZ#1832367)
* RHEL8.0 - Very bad performance with small blocks in FC-IO found by SAP
HANA on POWER tests on RHEL8.0 (compared to RHEL7.4) (BZ#1834517)
* [FJ8.2 Bug]: [REG] NFS-client panic at
nfs4_get_valid_delegation+0x1c/0x40 [nfsv4] (BZ#1837969)
* [RHEL-8.3] upstream bonding driver refresh (BZ#1838477)
* Enable xt_u32 module (BZ#1840799)
* Move xt_u32 module to kernel-modules-extra (BZ#1840800)
4. Solution:
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
The system must be rebooted for this update to take effect.
5. Bugs fixed (https://bugzilla.redhat.com/):
1832866 - CVE-2020-12657 kernel: use-after-free in block/bfq-iosched.c related to bfq_idle_slice_timer_body
6. Package List:
Red Hat Enterprise Linux BaseOS (v. 8):
Source:
kernel-4.18.0-193.6.3.el8_2.src.rpm
aarch64:
bpftool-4.18.0-193.6.3.el8_2.aarch64.rpm
bpftool-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-core-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-cross-headers-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-debug-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-debug-core-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-debug-devel-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-debug-modules-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-debug-modules-extra-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-debuginfo-common-aarch64-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-devel-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-headers-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-modules-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-modules-extra-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-tools-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-tools-libs-4.18.0-193.6.3.el8_2.aarch64.rpm
perf-4.18.0-193.6.3.el8_2.aarch64.rpm
perf-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm
python3-perf-4.18.0-193.6.3.el8_2.aarch64.rpm
python3-perf-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm
noarch:
kernel-abi-whitelists-4.18.0-193.6.3.el8_2.noarch.rpm
kernel-doc-4.18.0-193.6.3.el8_2.noarch.rpm
ppc64le:
bpftool-4.18.0-193.6.3.el8_2.ppc64le.rpm
bpftool-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-core-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-cross-headers-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-debug-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-debug-core-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-debug-devel-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-debug-modules-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-debug-modules-extra-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-debuginfo-common-ppc64le-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-devel-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-headers-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-modules-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-modules-extra-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-tools-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-tools-libs-4.18.0-193.6.3.el8_2.ppc64le.rpm
perf-4.18.0-193.6.3.el8_2.ppc64le.rpm
perf-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm
python3-perf-4.18.0-193.6.3.el8_2.ppc64le.rpm
python3-perf-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm
s390x:
bpftool-4.18.0-193.6.3.el8_2.s390x.rpm
bpftool-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-core-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-cross-headers-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-debug-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-debug-core-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-debug-devel-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-debug-modules-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-debug-modules-extra-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-debuginfo-common-s390x-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-devel-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-headers-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-modules-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-modules-extra-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-tools-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-zfcpdump-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-zfcpdump-core-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-zfcpdump-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-zfcpdump-devel-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-zfcpdump-modules-4.18.0-193.6.3.el8_2.s390x.rpm
kernel-zfcpdump-modules-extra-4.18.0-193.6.3.el8_2.s390x.rpm
perf-4.18.0-193.6.3.el8_2.s390x.rpm
perf-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm
python3-perf-4.18.0-193.6.3.el8_2.s390x.rpm
python3-perf-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm
x86_64:
bpftool-4.18.0-193.6.3.el8_2.x86_64.rpm
bpftool-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-core-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-cross-headers-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-debug-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-debug-core-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-debug-devel-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-debug-modules-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-debug-modules-extra-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-debuginfo-common-x86_64-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-devel-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-headers-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-modules-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-modules-extra-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-tools-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-tools-libs-4.18.0-193.6.3.el8_2.x86_64.rpm
perf-4.18.0-193.6.3.el8_2.x86_64.rpm
perf-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm
python3-perf-4.18.0-193.6.3.el8_2.x86_64.rpm
python3-perf-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm
Red Hat CodeReady Linux Builder (v. 8):
aarch64:
bpftool-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-debuginfo-common-aarch64-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm
kernel-tools-libs-devel-4.18.0-193.6.3.el8_2.aarch64.rpm
perf-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm
python3-perf-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm
ppc64le:
bpftool-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-debuginfo-common-ppc64le-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm
kernel-tools-libs-devel-4.18.0-193.6.3.el8_2.ppc64le.rpm
perf-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm
python3-perf-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm
x86_64:
bpftool-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-debuginfo-common-x86_64-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm
kernel-tools-libs-devel-4.18.0-193.6.3.el8_2.x86_64.rpm
perf-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm
python3-perf-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2020-12657
https://access.redhat.com/security/updates/classification/#important
https://access.redhat.com/solutions/5142691
8. Contact:
The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2020 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQIVAwUBXt/ex9zjgjWX9erEAQi6gw//ZxdJm9q6yGwJqkbBQaPmTOavx+Pw6h9R
BUR5Wg07olIYIhEp7Xe058vMknLDdWk75sNfXPkcAy1QBxXAT+W3VRFjuvCgdvMY
xNLssq8HURm2T3l11DFsK06xf7YIP2Q+FVAmeYGb1R+GHl+BnMYOkPVqo8FUbB87
83USFXYMwHpODQLCSUO45Xjj8MJxbM/xmfFrCxYB7C/V1M1M+iAnYSbnyZyOFBTW
Mrj76oVSPgYjg/choPWxfvE9iOffisZgZ4jYbKCzBhbqL41uIH/NNOZpFiEQ59Vs
GZ1SddzQyU4UAVttenELPSxjh86JSdFgAzIxWVFnEm9x3NFcQytuUSSKUIqpFwta
stEc0qAFHUMpBw7olqfpLKH7+Xj2I/2uxLySRLE+VogFnhNtwKSSawvB7PzIceNC
4FBpGqtN7yDF79aUBnfp81080PuSL0GFMldDZU9sgKQU4+R7U+vZjJ9nGeuLxs46
IIm4nzuh2YAbgwPpch1myupMqvRWLXs02vAzdfMuUpqKs/d9CG/pxN7vU3wSFSDF
Cbm3qXTythkae18G9ZU4e6brmwua+Lj/RjdT+XI2C8MUgI11igNAzYotGn3SS+5w
sUlabzOQzNDy0ctcvRDFK47Ejqacp2UpG/iZf5hqJBQMwEHSP/YL/9Yi1HXhLC32
RtF4eH2ia/I=
=TgsP
- -----END PGP SIGNATURE-----
- --------------------------END INCLUDED TEXT--------------------
You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.
NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members. As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.
NOTE: This is only the original release of the security bulletin. It may
not be updated when updates to the original are made. If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.
Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.
Previous advisories and external security bulletins can be retrieved from:
https://www.auscert.org.au/bulletins/
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967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=pTud
-----END PGP SIGNATURE-----