Red Hat Security Advisory: kernel-alt security and bug fix update
🔗 CVE IDs covered (8)
📋 Description
CVE-2018-16871 — kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence CVE-2019-3459 — kernel: Heap address information leak while using L2CAP_GET_CONF_OPT CVE-2019-3460 — kernel: Heap address information leak while using L2CAP_PARSE_CONF_RSP CVE-2019-11884 — kernel: sensitive information disclosure from kernel stack memory via HIDPCONNADD command CVE-2019-15030 — kernel: powerpc: local user can read vector registers of other users' processes via a Facility Unavailable exception CVE-2019-15916 — kernel: memory leak in register_queue_kobjects() in net/core/net-sysfs.c leads to denial of service CVE-2019-17666 — kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow CVE-2019-18805 — kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c
🔗 References (11)
- selfhttps://access.redhat.com/errata/RHSA-2020:0740
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1655162
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1663176
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1663179
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1709837
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1750813
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1759313
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1763690
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1771496
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0740.json