rhsa-2020_2104
Vulnerability from csaf_redhat
Published
2020-05-12 15:16
Modified
2024-11-22 14:59
Summary
Red Hat Security Advisory: kernel-alt security and bug fix update
Notes
Topic
An update for kernel-alt is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The kernel-alt packages provide the Linux kernel version 4.x.
Security Fix(es):
* kernel: double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c (CVE-2017-18595)
* kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c (CVE-2019-19768)
* Kernel: NetLabel: null pointer dereference while receiving CIPSO packet with null category may cause kernel panic (CVE-2020-10711)
* kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c (CVE-2017-18551)
* kernel: out of bounds write in i2c driver leads to local escalation of privilege (CVE-2019-9454)
* kernel: denial of service in in xfs_setattr_nonsize in fs/xfs/xfs_iops.c (CVE-2019-15538)
* kernel: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c (CVE-2019-19447)
* kernel: a malicious USB device in the drivers/input/ff-memless.c leads to use-after-free (CVE-2019-19524)
* kernel: out-of-bounds read in set_fdc in drivers/block/floppy.c (CVE-2020-9383)
* kernel: null pointer dereference in dlpar_parse_cc_property in arch/powerrc/platforms/pseries/dlpar.c causing denial of service (CVE-2019-12614)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* [7.5-alt][ext4/xfstests generic/468] fix fdatasync(2) after fallocate(2) operation (upstream fixed) [rhel-alt-7.6.z] (BZ#1554273)
* [RHEL-ALT-7.6.z][arm64] CN99xx: DIMM errors not populated in EDAC sysfs (BZ#1778697)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for kernel-alt is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel-alt packages provide the Linux kernel version 4.x.\n\nSecurity Fix(es):\n\n* kernel: double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c (CVE-2017-18595)\n\n* kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c (CVE-2019-19768)\n\n* Kernel: NetLabel: null pointer dereference while receiving CIPSO packet with null category may cause kernel panic (CVE-2020-10711)\n\n* kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c (CVE-2017-18551)\n\n* kernel: out of bounds write in i2c driver leads to local escalation of privilege (CVE-2019-9454)\n\n* kernel: denial of service in in xfs_setattr_nonsize in fs/xfs/xfs_iops.c (CVE-2019-15538)\n\n* kernel: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c (CVE-2019-19447)\n\n* kernel: a malicious USB device in the drivers/input/ff-memless.c leads to use-after-free (CVE-2019-19524)\n\n* kernel: out-of-bounds read in set_fdc in drivers/block/floppy.c (CVE-2020-9383)\n\n* kernel: null pointer dereference in dlpar_parse_cc_property in arch/powerrc/platforms/pseries/dlpar.c causing denial of service (CVE-2019-12614)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* [7.5-alt][ext4/xfstests generic/468] fix fdatasync(2) after fallocate(2) operation (upstream fixed) [rhel-alt-7.6.z] (BZ#1554273)\n\n* [RHEL-ALT-7.6.z][arm64] CN99xx: DIMM errors not populated in EDAC sysfs (BZ#1778697)", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2020:2104", "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "1718176", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1718176" }, { "category": "external", "summary": "1746777", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1746777" }, { "category": "external", "summary": "1757368", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757368" }, { "category": "external", "summary": "1758671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1758671" }, { "category": "external", "summary": "1781679", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1781679" }, { "category": "external", "summary": "1783459", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1783459" }, { "category": "external", "summary": "1786164", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1786164" }, { "category": "external", "summary": "1810685", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1810685" }, { "category": "external", "summary": "1818818", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1818818" }, { "category": "external", "summary": "1825116", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825116" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2104.json" } ], "title": "Red Hat Security Advisory: kernel-alt security and bug fix update", "tracking": { "current_release_date": "2024-11-22T14:59:00+00:00", "generator": { "date": "2024-11-22T14:59:00+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2020:2104", "initial_release_date": "2020-05-12T15:16:03+00:00", "revision_history": [ { "date": "2020-05-12T15:16:03+00:00", "number": "1", "summary": "Initial version" }, { "date": "2020-05-12T15:16:03+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T14:59:00+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product": { "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-bootwrapper@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-tools@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-tools-libs@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "perf-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "perf-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "perf-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/python-perf@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64le@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/python-perf-debuginfo@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@4.14.0-115.21.2.el7a?arch=ppc64le" } } }, { "category": "product_version", "name": "kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "product": { "name": "kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "product_id": "kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.14.0-115.21.2.el7a?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "product": { "name": "kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "product_id": "kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-abi-whitelists@4.14.0-115.21.2.el7a?arch=noarch" } } }, { "category": "product_version", "name": "kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "product": { "name": "kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "product_id": "kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@4.14.0-115.21.2.el7a?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-alt-0:4.14.0-115.21.2.el7a.src", "product": { "name": "kernel-alt-0:4.14.0-115.21.2.el7a.src", "product_id": "kernel-alt-0:4.14.0-115.21.2.el7a.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-alt@4.14.0-115.21.2.el7a?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch" }, "product_reference": "kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-alt-0:4.14.0-115.21.2.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src" }, "product_reference": "kernel-alt-0:4.14.0-115.21.2.el7a.src", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:4.14.0-115.21.2.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch" }, "product_reference": "kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "perf-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "python-perf-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch" }, "product_reference": "kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-alt-0:4.14.0-115.21.2.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src" }, "product_reference": "kernel-alt-0:4.14.0-115.21.2.el7a.src", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:4.14.0-115.21.2.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch" }, "product_reference": "kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "perf-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "python-perf-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" }, { "category": "default_component_of", "full_product_name": { "name": "python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" }, "product_reference": "python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "relates_to_product_reference": "7Server-optional-RHELALT-7.6" } ] }, "vulnerabilities": [ { "cve": "CVE-2017-18551", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2019-08-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1757368" } ], "notes": [ { "category": "description", "text": "An out of bounds (OOB) memory access flaw was found in i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c in I2C subsystem. A read request for length (data-\u003eblock[0]) greater than \u0027I2C_SMBUS_BLOCK_MAX + 1\u0027 may cause underlying I2C driver write out of array\u0027s boundary. This could allow a local attacker with special user privilege (or root) to crash the system or leak kernel internal information.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-18551" }, { "category": "external", "summary": "RHBZ#1757368", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757368" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-18551", "url": "https://www.cve.org/CVERecord?id=CVE-2017-18551" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-18551", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-18551" } ], "release_date": "2019-08-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-05-12T15:16:03+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "category": "workaround", "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c" }, { "cve": "CVE-2017-18595", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2019-10-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1758671" } ], "notes": [ { "category": "description", "text": "A flaw was found in the allocate_trace_buffer in kernel/trace/trace.c in the debug subsystem, when failure to allocate a dynamic percpu area, a resource cleanup is called. The pointer (buf-\u003ebuffer) still holds the address and is not set to NULL, which can cause a use-after-free problem, leading to a dangling pointer issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-18595" }, { "category": "external", "summary": "RHBZ#1758671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1758671" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-18595", "url": "https://www.cve.org/CVERecord?id=CVE-2017-18595" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-18595", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-18595" } ], "release_date": "2019-09-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-05-12T15:16:03+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "category": "workaround", "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update as soon as possible.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c" }, { "cve": "CVE-2019-9454", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2019-09-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1818818" } ], "notes": [ { "category": "description", "text": "An out-of-bounds write flaw was found in the i2c driver in the Linux kernel. This flaw allows an attacker to escalate privileges with system execution privileges. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: out of bounds write in i2c driver leads to local escalation of privilege", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9454" }, { "category": "external", "summary": "RHBZ#1818818", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1818818" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9454", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9454" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9454", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9454" } ], "release_date": "2019-09-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-05-12T15:16:03+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "category": "workaround", "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: out of bounds write in i2c driver leads to local escalation of privilege" }, { "cve": "CVE-2019-12614", "discovery_date": "2019-06-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1718176" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way Linux kernel\u0027s Dynamic Logical Partitioning (DLPAR) functionality on PowerPC systems handled low memory conditions on device discovery. An attacker who can change the LPAR configuration and incur low memory conditions at the same time could use this flaw to crash the system.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: null pointer dereference in dlpar_parse_cc_property in arch/powerrc/platforms/pseries/dlpar.c causing denial of service", "title": "Vulnerability summary" }, { "category": "other", "text": "An attacker needs to be highly privileged to exploit this issue. He either needs to trigger LPAR configuration change (or wait for such event to happen) and incur low memory conditions at the same time. It could be argued that possessing privileges required to exploit this issue could have the same impact as the issue itself.\n\nThe indications say that this issue was found by static code analysing tool which looks for memory allocations without failure checks and not actually reproduced on a running system. The CVE assignment also looks automated and following the \"better be safe than sorry\" approach.\n\nAs such, this issue is theoretical in nature and Low impact at best.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-12614" }, { "category": "external", "summary": "RHBZ#1718176", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1718176" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-12614", "url": "https://www.cve.org/CVERecord?id=CVE-2019-12614" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-12614", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-12614" } ], "release_date": "2019-06-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-05-12T15:16:03+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "category": "workaround", "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 4.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: null pointer dereference in dlpar_parse_cc_property in arch/powerrc/platforms/pseries/dlpar.c causing denial of service" }, { "cve": "CVE-2019-15538", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-26T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1746777" } ], "notes": [ { "category": "description", "text": "A flaw was found in the XFS file system in the Linux kernel. An acquired ILOCK was not freed/unlock when the call to xfs_qm_vop_chown_reserve fails and the lock is still held and can lead to denial to access for that device. This is primarily a local denial of service but could result in a remote denial of service if the XFS file system is exported as an NFS file system.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: denial of service in in xfs_setattr_nonsize in fs/xfs/xfs_iops.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-15538" }, { "category": "external", "summary": "RHBZ#1746777", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1746777" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-15538", "url": "https://www.cve.org/CVERecord?id=CVE-2019-15538" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-15538", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15538" } ], "release_date": "2019-08-25T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-05-12T15:16:03+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "category": "workaround", "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: denial of service in in xfs_setattr_nonsize in fs/xfs/xfs_iops.c" }, { "cve": "CVE-2019-19447", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2019-12-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1781679" } ], "notes": [ { "category": "description", "text": "A flaw was found in the Linux kernel\u0027s ext4_unlink function. An attacker could corrupt memory or escalate privileges when deleting a file from a recently unmounted specially crafted ext4 filesystem, including local, USB, and iSCSI.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-19447" }, { "category": "external", "summary": "RHBZ#1781679", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1781679" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-19447", "url": "https://www.cve.org/CVERecord?id=CVE-2019-19447" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19447", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19447" }, { "category": "external", "summary": "https://bugzilla.kernel.org/show_bug.cgi?id=205433", "url": "https://bugzilla.kernel.org/show_bug.cgi?id=205433" }, { "category": "external", "summary": "https://github.com/bobfuzzer/CVE/tree/master/CVE-2019-19447", "url": "https://github.com/bobfuzzer/CVE/tree/master/CVE-2019-19447" } ], "release_date": "2019-12-10T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-05-12T15:16:03+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "category": "workaround", "details": "Ext4 filesytems are built into the kernel so it is not possible to prevent the kernel module from loading. However, this flaw can be prevented by disallowing mounting of untrusted filesystems.\n\nAs mounting is a privileged operation, (except for device hotplug) removing the ability for mounting and unmounting will prevent this flaw from being exploited.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c" }, { "cve": "CVE-2019-19524", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2019-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1783459" } ], "notes": [ { "category": "description", "text": "A use-after-free flaw was found in the Linux kernel\u2019s input device driver functionality when unplugging a device. A user with physical access could use this flaw to crash the system.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: a malicious USB device in the drivers/input/ff-memless.c leads to use-after-free", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-19524" }, { "category": "external", "summary": "RHBZ#1783459", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1783459" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-19524", "url": "https://www.cve.org/CVERecord?id=CVE-2019-19524" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19524", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19524" } ], "release_date": "2019-11-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-05-12T15:16:03+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "category": "workaround", "details": "To mitigate this issue for the Red Hat Enterprise Linux 7 or higher version, prevent module ff-memless from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to prevent it from loading automatically.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 4.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: a malicious USB device in the drivers/input/ff-memless.c leads to use-after-free" }, { "cve": "CVE-2019-19768", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2019-12-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1786164" } ], "notes": [ { "category": "description", "text": "A use-after-free vulnerability was found in the Linux kernel\u2019s implementation of blktrace in the __blk_add_trace function. A local attacker with permissions to run block trace instructions against a device can create a situation where the core block_trace object is used after it is freed. The attacker can pre-groom memory to race this use-after-free to create a condition where the memory is corrupted and cause privilege escalation.\r\n\r\nThe ability to create this condition requires elevated privileges, and it has been decided that this change in Red Hat Enterprise Linux 5 and 6 would risk introducing possible regressions and will not be backported.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-19768" }, { "category": "external", "summary": "RHBZ#1786164", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1786164" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-19768", "url": "https://www.cve.org/CVERecord?id=CVE-2019-19768" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-19768", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19768" } ], "release_date": "2019-11-29T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-05-12T15:16:03+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:2104" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c" }, { "cve": "CVE-2020-9383", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "discovery_date": "2020-02-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1810685" } ], "notes": [ { "category": "description", "text": "An out-of-bounds (OOB) memory access flaw was found in the floppy driver module in the Linux kernel. A bounds check failure allows a local attacker to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: out-of-bounds read in set_fdc in drivers/block/floppy.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-9383" }, { "category": "external", "summary": "RHBZ#1810685", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1810685" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-9383", "url": "https://www.cve.org/CVERecord?id=CVE-2020-9383" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-9383", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-9383" } ], "release_date": "2020-02-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-05-12T15:16:03+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "category": "workaround", "details": "Mitigation for this issue is to skip loading the affected floppy driver module onto the system till we have a fix available, this can be done by a blacklist mechanism, this will ensure the driver is not loaded at the boot time.\n~~~\nHow do I blacklist a kernel module to prevent it from loading automatically?\nhttps://access.redhat.com/solutions/41278 \n~~~", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "version": "3.1" }, "products": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: out-of-bounds read in set_fdc in drivers/block/floppy.c" }, { "acknowledgments": [ { "names": [ "Matthew Sheets" ], "organization": "gd-ms.com" } ], "cve": "CVE-2020-10711", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2020-04-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1825116" } ], "notes": [ { "category": "description", "text": "A NULL pointer dereference flaw was found in the Linux kernel\u0027s SELinux subsystem. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol\u0027s category bitmap into the SELinux extensible bitmap via the\u0027 ebitmap_netlbl_import\u0027 routine. While processing the CIPSO restricted bitmap tag in the \u0027cipso_v4_parsetag_rbm\u0027 routine, it sets the security attribute to indicate that the category bitmap is present, even if it has not been allocated. This issue leads to a NULL pointer dereference issue while importing the same category bitmap into SELinux. This flaw allows a remote network user to crash the system kernel, resulting in a denial of service.", "title": "Vulnerability description" }, { "category": "summary", "text": "Kernel: NetLabel: null pointer dereference while receiving CIPSO packet with null category may cause kernel panic", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of the kernel packages as shipped with the Red Hat Enterprise Linux 6 starting with the Red Hat Enterprise Linux 6.7 GA version kernel-2.6.32-573 . Prior Red Hat Enterprise Linux 6 kernel versions are not affected.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-10711" }, { "category": "external", "summary": "RHBZ#1825116", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825116" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-10711", "url": "https://www.cve.org/CVERecord?id=CVE-2020-10711" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10711", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10711" } ], "release_date": "2020-05-12T12:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-05-12T15:16:03+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "category": "workaround", "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\n\nThis issue can only be resolved by applying updates.", "product_ids": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "7Server-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.21.2.el7a.src", "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.21.2.el7a.noarch", "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.21.2.el7a.ppc64le", "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.21.2.el7a.ppc64le" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "Kernel: NetLabel: null pointer dereference while receiving CIPSO packet with null category may cause kernel panic" } ] }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.