Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2020.2006 kernel security and bug fix update 10 June 2020 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: kernel Publisher: Red Hat Operating System: Red Hat Enterprise Linux Server 6 Red Hat Enterprise Linux WS/Desktop 6 Red Hat Enterprise Linux Server 8 Red Hat Enterprise Linux WS/Desktop 8 Red Hat Impact/Access: Root Compromise -- Existing Account Access Privileged Data -- Existing Account Denial of Service -- Remote/Unauthenticated Resolution: Patch/Upgrade CVE Names: CVE-2020-12657 CVE-2020-11884 CVE-2020-10711 CVE-2020-0543 CVE-2019-18660 CVE-2017-12192 Reference: ESB-2020.1994 ESB-2020.1853 ESB-2020.1830.2 ESB-2020.1770.2 ESB-2020.1745.2 Original Bulletin: https://access.redhat.com/errata/RHSA-2020:2430 https://access.redhat.com/errata/RHSA-2020:2429 https://access.redhat.com/errata/RHSA-2020:2428 https://access.redhat.com/errata/RHSA-2020:2427 Comment: This bulletin contains four (4) Red Hat security advisories. - --------------------------BEGIN INCLUDED TEXT-------------------- - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Moderate: kernel security and bug fix update Advisory ID: RHSA-2020:2430-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:2430 Issue date: 2020-06-09 CVE Names: CVE-2017-12192 ===================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 6) - i386, noarch, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - noarch, x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, noarch, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, noarch, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: NULL pointer dereference due to KEYCTL_READ on negative key (CVE-2017-12192) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * kernel: hw: provide reporting and microcode mitigation toggle for CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1827185) * Bonding not failing over in mode=1 under 2.6.32-754.28.1 (...27.1 works OK) (BZ#1828604) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1493435 - CVE-2017-12192 kernel: NULL pointer dereference due to KEYCTL_READ on negative key 1828604 - Bonding not failing over in mode=1 under 2.6.32-754.28.1 (...27.1 works OK) 6. Package List: Red Hat Enterprise Linux Desktop (v. 6): Source: kernel-2.6.32-754.30.2.el6.src.rpm i386: kernel-2.6.32-754.30.2.el6.i686.rpm kernel-debug-2.6.32-754.30.2.el6.i686.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm kernel-devel-2.6.32-754.30.2.el6.i686.rpm kernel-headers-2.6.32-754.30.2.el6.i686.rpm perf-2.6.32-754.30.2.el6.i686.rpm perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm noarch: kernel-abi-whitelists-2.6.32-754.30.2.el6.noarch.rpm kernel-doc-2.6.32-754.30.2.el6.noarch.rpm kernel-firmware-2.6.32-754.30.2.el6.noarch.rpm x86_64: kernel-2.6.32-754.30.2.el6.x86_64.rpm kernel-debug-2.6.32-754.30.2.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm kernel-debug-devel-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm kernel-devel-2.6.32-754.30.2.el6.x86_64.rpm kernel-headers-2.6.32-754.30.2.el6.x86_64.rpm perf-2.6.32-754.30.2.el6.x86_64.rpm perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): i386: kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm python-perf-2.6.32-754.30.2.el6.i686.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm x86_64: kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm python-perf-2.6.32-754.30.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: kernel-2.6.32-754.30.2.el6.src.rpm noarch: kernel-abi-whitelists-2.6.32-754.30.2.el6.noarch.rpm kernel-doc-2.6.32-754.30.2.el6.noarch.rpm kernel-firmware-2.6.32-754.30.2.el6.noarch.rpm x86_64: kernel-2.6.32-754.30.2.el6.x86_64.rpm kernel-debug-2.6.32-754.30.2.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm kernel-debug-devel-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm kernel-devel-2.6.32-754.30.2.el6.x86_64.rpm kernel-headers-2.6.32-754.30.2.el6.x86_64.rpm perf-2.6.32-754.30.2.el6.x86_64.rpm perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): x86_64: kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm python-perf-2.6.32-754.30.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm Red Hat Enterprise Linux Server (v. 6): Source: kernel-2.6.32-754.30.2.el6.src.rpm i386: kernel-2.6.32-754.30.2.el6.i686.rpm kernel-debug-2.6.32-754.30.2.el6.i686.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm kernel-devel-2.6.32-754.30.2.el6.i686.rpm kernel-headers-2.6.32-754.30.2.el6.i686.rpm perf-2.6.32-754.30.2.el6.i686.rpm perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm noarch: kernel-abi-whitelists-2.6.32-754.30.2.el6.noarch.rpm kernel-doc-2.6.32-754.30.2.el6.noarch.rpm kernel-firmware-2.6.32-754.30.2.el6.noarch.rpm ppc64: kernel-2.6.32-754.30.2.el6.ppc64.rpm kernel-bootwrapper-2.6.32-754.30.2.el6.ppc64.rpm kernel-debug-2.6.32-754.30.2.el6.ppc64.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm kernel-debug-devel-2.6.32-754.30.2.el6.ppc64.rpm kernel-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm kernel-debuginfo-common-ppc64-2.6.32-754.30.2.el6.ppc64.rpm kernel-devel-2.6.32-754.30.2.el6.ppc64.rpm kernel-headers-2.6.32-754.30.2.el6.ppc64.rpm perf-2.6.32-754.30.2.el6.ppc64.rpm perf-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm s390x: kernel-2.6.32-754.30.2.el6.s390x.rpm kernel-debug-2.6.32-754.30.2.el6.s390x.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.s390x.rpm kernel-debug-devel-2.6.32-754.30.2.el6.s390x.rpm kernel-debuginfo-2.6.32-754.30.2.el6.s390x.rpm kernel-debuginfo-common-s390x-2.6.32-754.30.2.el6.s390x.rpm kernel-devel-2.6.32-754.30.2.el6.s390x.rpm kernel-headers-2.6.32-754.30.2.el6.s390x.rpm kernel-kdump-2.6.32-754.30.2.el6.s390x.rpm kernel-kdump-debuginfo-2.6.32-754.30.2.el6.s390x.rpm kernel-kdump-devel-2.6.32-754.30.2.el6.s390x.rpm perf-2.6.32-754.30.2.el6.s390x.rpm perf-debuginfo-2.6.32-754.30.2.el6.s390x.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.s390x.rpm x86_64: kernel-2.6.32-754.30.2.el6.x86_64.rpm kernel-debug-2.6.32-754.30.2.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm kernel-debug-devel-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm kernel-devel-2.6.32-754.30.2.el6.x86_64.rpm kernel-headers-2.6.32-754.30.2.el6.x86_64.rpm perf-2.6.32-754.30.2.el6.x86_64.rpm perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): i386: kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm python-perf-2.6.32-754.30.2.el6.i686.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm ppc64: kernel-debug-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm kernel-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm kernel-debuginfo-common-ppc64-2.6.32-754.30.2.el6.ppc64.rpm perf-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm python-perf-2.6.32-754.30.2.el6.ppc64.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.ppc64.rpm s390x: kernel-debug-debuginfo-2.6.32-754.30.2.el6.s390x.rpm kernel-debuginfo-2.6.32-754.30.2.el6.s390x.rpm kernel-debuginfo-common-s390x-2.6.32-754.30.2.el6.s390x.rpm kernel-kdump-debuginfo-2.6.32-754.30.2.el6.s390x.rpm perf-debuginfo-2.6.32-754.30.2.el6.s390x.rpm python-perf-2.6.32-754.30.2.el6.s390x.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.s390x.rpm x86_64: kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm python-perf-2.6.32-754.30.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: kernel-2.6.32-754.30.2.el6.src.rpm i386: kernel-2.6.32-754.30.2.el6.i686.rpm kernel-debug-2.6.32-754.30.2.el6.i686.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm kernel-devel-2.6.32-754.30.2.el6.i686.rpm kernel-headers-2.6.32-754.30.2.el6.i686.rpm perf-2.6.32-754.30.2.el6.i686.rpm perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm noarch: kernel-abi-whitelists-2.6.32-754.30.2.el6.noarch.rpm kernel-doc-2.6.32-754.30.2.el6.noarch.rpm kernel-firmware-2.6.32-754.30.2.el6.noarch.rpm x86_64: kernel-2.6.32-754.30.2.el6.x86_64.rpm kernel-debug-2.6.32-754.30.2.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debug-devel-2.6.32-754.30.2.el6.i686.rpm kernel-debug-devel-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm kernel-devel-2.6.32-754.30.2.el6.x86_64.rpm kernel-headers-2.6.32-754.30.2.el6.x86_64.rpm perf-2.6.32-754.30.2.el6.x86_64.rpm perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): i386: kernel-debug-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-2.6.32-754.30.2.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-754.30.2.el6.i686.rpm perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm python-perf-2.6.32-754.30.2.el6.i686.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.i686.rpm x86_64: kernel-debug-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-754.30.2.el6.x86_64.rpm perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm python-perf-2.6.32-754.30.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-754.30.2.el6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2017-12192 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/solutions/5142691 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. - -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXt/269zjgjWX9erEAQhSsA/+O+KOE9dZ3S40si2KnOM8U1WAuYkKP8Xy zUZqDgNQX6Hx7x0be4w4Z9+wqaNjAUOR/dEQ/4KviLGT3PPlfnytcX86smWpSTJI XWzz8U3ZhXugxukeROPOzXV4935GN59M/dToEJR9Y0ci0lKlUpsSvtnAFZSyFvZe MnQdPyenoE0x0l04BaUHayi5HAEIh5NjUQw2Pk1yhbQsYB0yxV2IhPJYRj5zRE31 bIvvgyAd+rI+DoTaOEMLtbc2rJGYEVioL45WI4tkghMlcj7eaGcQddZFt2RM6mEp vw6R/PyQeRwxHhQ7iYmCO3jSMz0CeClzti30IfQrPOp5zmgmzpVG2Y6IqhA5rTOm +CmVYjCjlQdthD/z9KCTrXmAmBx71TUEEN0zKho9B6mvhXLJKTaFKjirxiWcVxTb H/CbZKgF8xlnTsayMXmXbctfaQYEhzutqzQXUF8extdg1tIHIQexCh7HEykpl3hU FDHDWXluMdHuO/hbz8KOvEps7FC8UBqLXmivlJI+S1TvmDGniSe3GwjAihndNB7L FDGoG8MA9/vfmMcRKj171L+nKFaBHVboW/LAmWj0k3O3VL6OyWS76EYB09pC0mJ7 7OCsQqh9adDuf9vEQQcCl6ZDO8ez2QzzjVMv7pstckXeYBRfYSkJMH41UTHldDK6 +DeTyxTmGPM= =D6i0 - -----END PGP SIGNATURE----- - -------------------------------------------------------------------------------- - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: kernel security and bug fix update Advisory ID: RHSA-2020:2429-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:2429 Issue date: 2020-06-09 CVE Names: CVE-2019-18660 CVE-2020-10711 CVE-2020-11884 CVE-2020-12657 ===================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS E4S (v. 8.0) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * Kernel: NetLabel: null pointer dereference while receiving CIPSO packet with null category may cause kernel panic (CVE-2020-10711) * Kernel: s390: page table upgrade in secondary address mode may lead to privilege escalation (CVE-2020-11884) * kernel: use-after-free in block/bfq-iosched.c related to bfq_idle_slice_timer_body (CVE-2020-12657) * kernel: powerpc: incomplete Spectre-RSB mitigation leads to information exposure (CVE-2019-18660) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * kernel: hw: provide reporting and microcode mitigation toggle for CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1840684) * missing version.h dependency for modpost may cause build to fail (BZ#1828227) * efi: kernel panic during ltp fs test - read_all -d /sys -q -r 10 (BZ#1829525) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1777825 - CVE-2019-18660 kernel: powerpc: incomplete Spectre-RSB mitigation leads to information exposure 1825116 - CVE-2020-10711 Kernel: NetLabel: null pointer dereference while receiving CIPSO packet with null category may cause kernel panic 1828149 - CVE-2020-11884 Kernel: s390: page table upgrade in secondary address mode may lead to privilege escalation 1832866 - CVE-2020-12657 kernel: use-after-free in block/bfq-iosched.c related to bfq_idle_slice_timer_body 6. Package List: Red Hat Enterprise Linux BaseOS E4S (v. 8.0): Source: kernel-4.18.0-80.23.2.el8_0.src.rpm aarch64: bpftool-4.18.0-80.23.2.el8_0.aarch64.rpm bpftool-debuginfo-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-core-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-cross-headers-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-debug-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-debug-core-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-debug-debuginfo-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-debug-devel-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-debug-modules-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-debug-modules-extra-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-debuginfo-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-debuginfo-common-aarch64-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-devel-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-headers-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-modules-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-modules-extra-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-tools-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-tools-debuginfo-4.18.0-80.23.2.el8_0.aarch64.rpm kernel-tools-libs-4.18.0-80.23.2.el8_0.aarch64.rpm perf-4.18.0-80.23.2.el8_0.aarch64.rpm perf-debuginfo-4.18.0-80.23.2.el8_0.aarch64.rpm python3-perf-4.18.0-80.23.2.el8_0.aarch64.rpm python3-perf-debuginfo-4.18.0-80.23.2.el8_0.aarch64.rpm noarch: kernel-abi-whitelists-4.18.0-80.23.2.el8_0.noarch.rpm kernel-doc-4.18.0-80.23.2.el8_0.noarch.rpm ppc64le: bpftool-4.18.0-80.23.2.el8_0.ppc64le.rpm bpftool-debuginfo-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-core-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-cross-headers-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-debug-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-debug-core-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-debug-debuginfo-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-debug-devel-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-debug-modules-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-debug-modules-extra-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-debuginfo-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-debuginfo-common-ppc64le-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-devel-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-headers-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-modules-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-modules-extra-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-tools-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-tools-debuginfo-4.18.0-80.23.2.el8_0.ppc64le.rpm kernel-tools-libs-4.18.0-80.23.2.el8_0.ppc64le.rpm perf-4.18.0-80.23.2.el8_0.ppc64le.rpm perf-debuginfo-4.18.0-80.23.2.el8_0.ppc64le.rpm python3-perf-4.18.0-80.23.2.el8_0.ppc64le.rpm python3-perf-debuginfo-4.18.0-80.23.2.el8_0.ppc64le.rpm s390x: bpftool-4.18.0-80.23.2.el8_0.s390x.rpm bpftool-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm kernel-4.18.0-80.23.2.el8_0.s390x.rpm kernel-core-4.18.0-80.23.2.el8_0.s390x.rpm kernel-cross-headers-4.18.0-80.23.2.el8_0.s390x.rpm kernel-debug-4.18.0-80.23.2.el8_0.s390x.rpm kernel-debug-core-4.18.0-80.23.2.el8_0.s390x.rpm kernel-debug-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm kernel-debug-devel-4.18.0-80.23.2.el8_0.s390x.rpm kernel-debug-modules-4.18.0-80.23.2.el8_0.s390x.rpm kernel-debug-modules-extra-4.18.0-80.23.2.el8_0.s390x.rpm kernel-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm kernel-debuginfo-common-s390x-4.18.0-80.23.2.el8_0.s390x.rpm kernel-devel-4.18.0-80.23.2.el8_0.s390x.rpm kernel-headers-4.18.0-80.23.2.el8_0.s390x.rpm kernel-modules-4.18.0-80.23.2.el8_0.s390x.rpm kernel-modules-extra-4.18.0-80.23.2.el8_0.s390x.rpm kernel-tools-4.18.0-80.23.2.el8_0.s390x.rpm kernel-tools-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm kernel-zfcpdump-4.18.0-80.23.2.el8_0.s390x.rpm kernel-zfcpdump-core-4.18.0-80.23.2.el8_0.s390x.rpm kernel-zfcpdump-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm kernel-zfcpdump-devel-4.18.0-80.23.2.el8_0.s390x.rpm kernel-zfcpdump-modules-4.18.0-80.23.2.el8_0.s390x.rpm kernel-zfcpdump-modules-extra-4.18.0-80.23.2.el8_0.s390x.rpm perf-4.18.0-80.23.2.el8_0.s390x.rpm perf-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm python3-perf-4.18.0-80.23.2.el8_0.s390x.rpm python3-perf-debuginfo-4.18.0-80.23.2.el8_0.s390x.rpm x86_64: bpftool-4.18.0-80.23.2.el8_0.x86_64.rpm bpftool-debuginfo-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-core-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-cross-headers-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-debug-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-debug-core-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-debug-debuginfo-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-debug-devel-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-debug-modules-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-debug-modules-extra-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-debuginfo-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-debuginfo-common-x86_64-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-devel-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-headers-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-modules-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-modules-extra-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-tools-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-tools-debuginfo-4.18.0-80.23.2.el8_0.x86_64.rpm kernel-tools-libs-4.18.0-80.23.2.el8_0.x86_64.rpm perf-4.18.0-80.23.2.el8_0.x86_64.rpm perf-debuginfo-4.18.0-80.23.2.el8_0.x86_64.rpm python3-perf-4.18.0-80.23.2.el8_0.x86_64.rpm python3-perf-debuginfo-4.18.0-80.23.2.el8_0.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2019-18660 https://access.redhat.com/security/cve/CVE-2020-10711 https://access.redhat.com/security/cve/CVE-2020-11884 https://access.redhat.com/security/cve/CVE-2020-12657 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/solutions/5142691 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. - -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXt/Y6tzjgjWX9erEAQiqZhAAiHOr3x74A4yMOGIjpisnciRlxCfya9hu 4ngUfnuzuH3QY4aC/JetlNzMMzaG79bgQwDnwiVZLyDjUD9X6LG71q0+EFWiesI9 fuiz1SUObGxXFOmiIbR2/rzkYoxVCJfoKFkby7BLaN7lr8jI2/Aq5b/6MfsSGcTH gF/XGTw3kSOAPJ/bfvRz43s+QS1egmelejC7hJGi0WDn0s9Ffr9AvrCPoH2Cd/u3 2bBkf6IQvVQbvPh8mHVn7AxPqLL+/7VZoOvADlAoMdqPAP/WGhLwfORlZT0f3D6A BYyugKPvzSK0UyNWOtkWPuQyH70InRWJPOewrstXWKnL6F9Nly3ehlodOMe0VJW2 8GETz3dY+aKUu9IHzS5Hu7XlI02JFhuV0RYiH/FwedCZmkOB0+oM5ff1iotuaton DFReBsZfQEz1UH19jwDkfTBOKyBoQdgFbmig/kI/QtpXEjWqnTJr92wKaaLsy4s4 G+g/lNRrJ/inCNl7nckVmtRxNYxXCT9FiDfH9OCZK+u8gJUb+GbLq0q6rH/whQ5/ Qxlnk19Mu4bB+HfV3Kv4E1yCjqGakCgDjrUrgIsrhPzu1yOOZ/tXzCk3B/b8MOyK +Snipswb00MKbbkb1+PT4lFyD97fGZ80DQqVKLzb5QHmoREs7Qan1A651h0essWV 9AjUFD+EOc4= =ghVW - -----END PGP SIGNATURE----- - -------------------------------------------------------------------------------- - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: kernel-rt security and bug fix update Advisory ID: RHSA-2020:2428-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:2428 Issue date: 2020-06-09 CVE Names: CVE-2020-12657 ===================================================================== 1. Summary: An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Real Time (v. 8) - x86_64 Red Hat Enterprise Linux Real Time for NFV (v. 8) - x86_64 3. Description: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix(es): * kernel: use-after-free in block/bfq-iosched.c related to bfq_idle_slice_timer_body (CVE-2020-12657) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * kernel: hw: provide reporting and microcode mitigation toggle for CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1827193) * kernel-rt: update RT source tree to the RHEL-8.2.z1 source tree (BZ#1816271) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1832866 - CVE-2020-12657 kernel: use-after-free in block/bfq-iosched.c related to bfq_idle_slice_timer_body 6. Package List: Red Hat Enterprise Linux Real Time for NFV (v. 8): Source: kernel-rt-4.18.0-193.6.3.rt13.59.el8_2.src.rpm x86_64: kernel-rt-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-core-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-core-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-debuginfo-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-devel-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-kvm-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-modules-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-modules-extra-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debuginfo-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debuginfo-common-x86_64-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-devel-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-kvm-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-modules-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-modules-extra-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm Red Hat Enterprise Linux Real Time (v. 8): Source: kernel-rt-4.18.0-193.6.3.rt13.59.el8_2.src.rpm x86_64: kernel-rt-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-core-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-core-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-debuginfo-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-devel-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-modules-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debug-modules-extra-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debuginfo-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-debuginfo-common-x86_64-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-devel-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-modules-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm kernel-rt-modules-extra-4.18.0-193.6.3.rt13.59.el8_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-12657 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/solutions/5142691 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. - -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXt/Tw9zjgjWX9erEAQiw9g/+NUR/j45n2VlNLJfm2sVAQIjK4rr9Hd8Q w7fKghxTWd5+YO6QIeh2wLH6RT8u5nS1mUSQ5MxvcEDl3GcPwaE6a3Lw4UQCFIfi yThSprmUAfBGEO4ATTgJ/CCMT+p5fYCJyABmT7NV3DGYioKcZNq+x9BZ5cuWbdwX 0Bm9JD7T8pGNdrDODtykxWtmTcErtbqZK6jgNVzwq2AvKqlVozmp85JPIIwN0aPV 3XNF7yVIjoBK+cDki0eXzGtoRbrs0ODD13M1g4UdhV6NrDvCuMTh+kTSvLTvZFDk dGTNuoVJIu2uCGnsk5fWrFR5JeGWVgd8pydCRD/ejdD9CsGQu8f+uB8iTw8n5UC6 ut80XlPTHm29Ltpw1ucUhO+eV8yGwg2IA1YS83vMLrAZENVKWc+JPb0Hpa/PLvek lUUD/f5D/7cd3bIERaMQcHahTZIAekYeRYdS/SdG8yfmIV/DhnK2eIwabejz9nZl XLtmlEOj1sH1G0vHGeC4cg5jWi5Th6JKTZ9SwEg2Fpm/5ib7xxDsmb1Ii0hCmcVd IEvbs2vWqn1A1dvd+wIzv+qpwLfv8FZeLClvUBrwHGDR8OJHq3ee3YcVR1usXWMP vza1paNY7lctiKmsf1nDoq3qOfIOec2SAnmqROvT9sYo5ADxag/Q+Vh4ofW9IZvL ANgK0EVtdYQ= =1NIU - -----END PGP SIGNATURE----- - -------------------------------------------------------------------------------- - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: kernel security and bug fix update Advisory ID: RHSA-2020:2427-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:2427 Issue date: 2020-06-09 CVE Names: CVE-2020-12657 ===================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat CodeReady Linux Builder (v. 8) - aarch64, ppc64le, x86_64 Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: use-after-free in block/bfq-iosched.c related to bfq_idle_slice_timer_body (CVE-2020-12657) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * kernel: hw: provide reporting and microcode mitigation toggle for CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1827191) * ipsec interfaces: fix sending with bpf_redirect() / AF_PACKET sockets (BZ#1821375) * IB/core: deadlock on rdma_nl_mutex when netlink triggers on-demand modprobe rdma_cm (BZ#1821381) * dm: fix excessive bio splitting that results in performance regressions (BZ#1821382) * system time jumps when hotplug vcpu on a long uptime guest (BZ#1822498) * [DELL 8.2 BUG]Ethernet : e1000e doesn't work after S2I (BZ#1825262) * NFSv3 sec=krb5p fails against an ONTAP server (BZ#1826219) * Stand-alone CPU Linpack test reports bad residual on HPC Cluster node(s) while running RHEL 8 (BZ#1827619) * [DELL 8.2 BUG]bluetooth Scanning block S3 and Suspend to idle (BZ#1827620) * RHEL8.2 Beta - SMC-R connection with vlan-id fails (BZ#1827631) * RHEL8.1 - RHEL8.1 kernel 4.18.0-147.3.1.el8.bz181950_test001.ppc64le+debug failed during LPM test (p8/p9):idahop08:LPM (vtpm) (BZ#1827632) * missing version.h dependency for modpost may cause build to fail (BZ#1828229) * efi: kernel panic during ltp fs test - read_all -d /sys -q -r 10 (BZ#1829527) * Let "isolcpus=" skip unknown sub-parameters (BZ#1832367) * RHEL8.0 - Very bad performance with small blocks in FC-IO found by SAP HANA on POWER tests on RHEL8.0 (compared to RHEL7.4) (BZ#1834517) * [FJ8.2 Bug]: [REG] NFS-client panic at nfs4_get_valid_delegation+0x1c/0x40 [nfsv4] (BZ#1837969) * [RHEL-8.3] upstream bonding driver refresh (BZ#1838477) * Enable xt_u32 module (BZ#1840799) * Move xt_u32 module to kernel-modules-extra (BZ#1840800) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1832866 - CVE-2020-12657 kernel: use-after-free in block/bfq-iosched.c related to bfq_idle_slice_timer_body 6. Package List: Red Hat Enterprise Linux BaseOS (v. 8): Source: kernel-4.18.0-193.6.3.el8_2.src.rpm aarch64: bpftool-4.18.0-193.6.3.el8_2.aarch64.rpm bpftool-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-core-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-cross-headers-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-debug-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-debug-core-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-debug-devel-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-debug-modules-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-debug-modules-extra-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-debuginfo-common-aarch64-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-devel-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-headers-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-modules-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-modules-extra-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-tools-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-tools-libs-4.18.0-193.6.3.el8_2.aarch64.rpm perf-4.18.0-193.6.3.el8_2.aarch64.rpm perf-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm python3-perf-4.18.0-193.6.3.el8_2.aarch64.rpm python3-perf-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm noarch: kernel-abi-whitelists-4.18.0-193.6.3.el8_2.noarch.rpm kernel-doc-4.18.0-193.6.3.el8_2.noarch.rpm ppc64le: bpftool-4.18.0-193.6.3.el8_2.ppc64le.rpm bpftool-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-core-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-cross-headers-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-debug-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-debug-core-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-debug-devel-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-debug-modules-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-debug-modules-extra-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-debuginfo-common-ppc64le-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-devel-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-headers-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-modules-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-modules-extra-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-tools-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-tools-libs-4.18.0-193.6.3.el8_2.ppc64le.rpm perf-4.18.0-193.6.3.el8_2.ppc64le.rpm perf-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm python3-perf-4.18.0-193.6.3.el8_2.ppc64le.rpm python3-perf-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm s390x: bpftool-4.18.0-193.6.3.el8_2.s390x.rpm bpftool-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm kernel-4.18.0-193.6.3.el8_2.s390x.rpm kernel-core-4.18.0-193.6.3.el8_2.s390x.rpm kernel-cross-headers-4.18.0-193.6.3.el8_2.s390x.rpm kernel-debug-4.18.0-193.6.3.el8_2.s390x.rpm kernel-debug-core-4.18.0-193.6.3.el8_2.s390x.rpm kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm kernel-debug-devel-4.18.0-193.6.3.el8_2.s390x.rpm kernel-debug-modules-4.18.0-193.6.3.el8_2.s390x.rpm kernel-debug-modules-extra-4.18.0-193.6.3.el8_2.s390x.rpm kernel-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm kernel-debuginfo-common-s390x-4.18.0-193.6.3.el8_2.s390x.rpm kernel-devel-4.18.0-193.6.3.el8_2.s390x.rpm kernel-headers-4.18.0-193.6.3.el8_2.s390x.rpm kernel-modules-4.18.0-193.6.3.el8_2.s390x.rpm kernel-modules-extra-4.18.0-193.6.3.el8_2.s390x.rpm kernel-tools-4.18.0-193.6.3.el8_2.s390x.rpm kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm kernel-zfcpdump-4.18.0-193.6.3.el8_2.s390x.rpm kernel-zfcpdump-core-4.18.0-193.6.3.el8_2.s390x.rpm kernel-zfcpdump-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm kernel-zfcpdump-devel-4.18.0-193.6.3.el8_2.s390x.rpm kernel-zfcpdump-modules-4.18.0-193.6.3.el8_2.s390x.rpm kernel-zfcpdump-modules-extra-4.18.0-193.6.3.el8_2.s390x.rpm perf-4.18.0-193.6.3.el8_2.s390x.rpm perf-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm python3-perf-4.18.0-193.6.3.el8_2.s390x.rpm python3-perf-debuginfo-4.18.0-193.6.3.el8_2.s390x.rpm x86_64: bpftool-4.18.0-193.6.3.el8_2.x86_64.rpm bpftool-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-core-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-cross-headers-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-debug-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-debug-core-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-debug-devel-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-debug-modules-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-debug-modules-extra-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-debuginfo-common-x86_64-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-devel-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-headers-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-modules-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-modules-extra-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-tools-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-tools-libs-4.18.0-193.6.3.el8_2.x86_64.rpm perf-4.18.0-193.6.3.el8_2.x86_64.rpm perf-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm python3-perf-4.18.0-193.6.3.el8_2.x86_64.rpm python3-perf-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm Red Hat CodeReady Linux Builder (v. 8): aarch64: bpftool-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-debuginfo-common-aarch64-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm kernel-tools-libs-devel-4.18.0-193.6.3.el8_2.aarch64.rpm perf-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm python3-perf-debuginfo-4.18.0-193.6.3.el8_2.aarch64.rpm ppc64le: bpftool-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-debuginfo-common-ppc64le-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm kernel-tools-libs-devel-4.18.0-193.6.3.el8_2.ppc64le.rpm perf-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm python3-perf-debuginfo-4.18.0-193.6.3.el8_2.ppc64le.rpm x86_64: bpftool-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-debug-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-debuginfo-common-x86_64-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-tools-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm kernel-tools-libs-devel-4.18.0-193.6.3.el8_2.x86_64.rpm perf-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm python3-perf-debuginfo-4.18.0-193.6.3.el8_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-12657 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/solutions/5142691 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. - -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXt/ex9zjgjWX9erEAQi6gw//ZxdJm9q6yGwJqkbBQaPmTOavx+Pw6h9R BUR5Wg07olIYIhEp7Xe058vMknLDdWk75sNfXPkcAy1QBxXAT+W3VRFjuvCgdvMY xNLssq8HURm2T3l11DFsK06xf7YIP2Q+FVAmeYGb1R+GHl+BnMYOkPVqo8FUbB87 83USFXYMwHpODQLCSUO45Xjj8MJxbM/xmfFrCxYB7C/V1M1M+iAnYSbnyZyOFBTW Mrj76oVSPgYjg/choPWxfvE9iOffisZgZ4jYbKCzBhbqL41uIH/NNOZpFiEQ59Vs GZ1SddzQyU4UAVttenELPSxjh86JSdFgAzIxWVFnEm9x3NFcQytuUSSKUIqpFwta stEc0qAFHUMpBw7olqfpLKH7+Xj2I/2uxLySRLE+VogFnhNtwKSSawvB7PzIceNC 4FBpGqtN7yDF79aUBnfp81080PuSL0GFMldDZU9sgKQU4+R7U+vZjJ9nGeuLxs46 IIm4nzuh2YAbgwPpch1myupMqvRWLXs02vAzdfMuUpqKs/d9CG/pxN7vU3wSFSDF Cbm3qXTythkae18G9ZU4e6brmwua+Lj/RjdT+XI2C8MUgI11igNAzYotGn3SS+5w sUlabzOQzNDy0ctcvRDFK47Ejqacp2UpG/iZf5hqJBQMwEHSP/YL/9Yi1HXhLC32 RtF4eH2ia/I= =TgsP - -----END PGP SIGNATURE----- - --------------------------END INCLUDED TEXT-------------------- You have received this e-mail bulletin as a result of your organisation's registration with AusCERT. The mailing list you are subscribed to is maintained within your organisation, so if you do not wish to continue receiving these bulletins you should contact your local IT manager. If you do not know who that is, please send an email to auscert@auscert.org.au and we will forward your request to the appropriate person. NOTE: Third Party Rights This security bulletin is provided as a service to AusCERT's members. As AusCERT did not write the document quoted above, AusCERT has had no control over its content. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. NOTE: This is only the original release of the security bulletin. It may not be updated when updates to the original are made. If downloading at a later date, it is recommended that the bulletin is retrieved directly from the author's website to ensure that the information is still current. Contact information for the authors of the original document is included in the Security Bulletin above. If you have any questions or need further information, please contact them directly. Previous advisories and external security bulletins can be retrieved from: https://www.auscert.org.au/bulletins/ =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQIVAwUBXuBS5uNLKJtyKPYoAQgmig//R5W4lxe/Id5KSEdUEzmXGf9N7zZFVMcc HLbqjN9sWcI4wE8T4fgQ45c4DE/g8Ild4NaADlj7fNPBAW+OWCd7XnnXh+T+/wLX QWTr8fyr0bz/KHWUlPpyoq3IuCfGIfmgEq5K5w5GzQRw0tIJK4RURiU0kloO3iwS AgC/0Ll1CDzDFVAHjxLkDDZ5J25DKTTaFS878qD9NTSPQDntbmCWdaWuPVtd1UiN a768+zFBN0Q85B98hzW+ZDsIFpGLae+xlxR0gxKQbpVHJQRjMuNNAK50b8ZOTGu4 uazGKwfq8DPO9RoJDe9/uqW93NcZyF8uzjcLfUsdh9ViC9y6ccLt89WvPlDIISpf SAcN8QbHYizB0IiMUaCTBQuzjR6qsXQx8Orc7VXikr9JXgKCA08FMMD2Q0W3VLuF bwJK9VjPYdPvvyVsTsRjmANqSHlJZopga/8kgEgcbgIW2sx+tD6jHrsViJKiyjMs YnvpdGdFyB36YFgQoWjtg4yShC+3IlvSYzFn08mNldK/IhWCmuLvKJjFRD/tmP0N gCixNpSm3lwbcqRx9Gr5yTToMoPrw9jmHkmg6Nu2MhiRsXI9/sLimzg5k50vqrMv oJCXjnNFa+qwyb68xZ/2ZT8db71DFM6E3Kt/8OFA98kY9WQmtTjw0o9l1oflkTfX 1hzgHVbNIQs= =pTud -----END PGP SIGNATURE-----