Red Hat Security Advisory: kernel security, bug fix, and enhancement update
🔗 CVE IDs covered (25)
📋 Description
CVE-2015-9289 — kernel: out of bound read in DVB connexant driver. CVE-2017-17807 — kernel: Missing permissions check for request_key() destination allows local attackers to add keys to keyring without Write permission CVE-2018-7191 — kernel: denial of service via ioctl call in network tun handling CVE-2018-19985 — kernel: oob memory read in hso_probe in drivers/net/usb/hso.c CVE-2018-20169 — kernel: usb: missing size check in the __usb_get_extra_descriptor() leading to DoS CVE-2019-3901 — kernel: perf_event_open() and execve() race in setuid programs allows a data leak CVE-2019-5108 — kernel: triggering AP to send IAPP location updates for stations before the required authentication process has completed can lead to DoS CVE-2019-9503 — kernel: brcmfmac frame validation bypass CVE-2019-10207 — kernel: null-pointer dereference in hci_uart_set_flow_control CVE-2019-10638 — Kernel: net: weak IP ID generation leads to remote device tracking CVE-2019-10639 — Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR CVE-2019-11190 — kernel: ASLR bypass for setuid binaries due to late install_exec_creds() CVE-2019-11884 — kernel: sensitive information disclosure from kernel stack memory via HIDPCONNADD command CVE-2019-12382 — kernel: unchecked kstrdup of fwstr in drm_load_edid_firmware leads to denial of service CVE-2019-13233 — kernel: use-after-free in arch/x86/lib/insn-eval.c CVE-2019-13648 — kernel: denial of service in arch/powerpc/kernel/signal_32.c and arch/powerpc/kernel/signal_64.c via sigreturn() system call CVE-2019-14283 — kernel: integer overflow and OOB read in drivers/block/floppy.c CVE-2019-14814 — kernel: heap overflow in mwifiex_set_uap_rates() function of Marvell Wifi Driver leading to DoS CVE-2019-14815 — kernel: heap-overflow in mwifiex_set_wmm_params() function of Marvell WiFi driver leading to DoS CVE-2019-15090 — kernel: An out-of-bounds read in drivers/scsi/qedi/qedi_dbg.c leading to crash or information disclosure CVE-2019-15214 — kernel: use-after-free in sound/core/init.c and sound/core/info.c CVE-2019-15221 — kernel: Null pointer dereference in the sound/usb/line6/pcm.c CVE-2019-15916 — kernel: memory leak in register_queue_kobjects() in net/core/net-sysfs.c leads to denial of service CVE-2019-16746 — kernel: buffer-overflow hardening in WiFi beacon validation code. CVE-2019-18660 — kernel: powerpc: incomplete Spectre-RSB mitigation leads to information exposure
🔗 References (38)
- selfhttps://access.redhat.com/errata/RHSA-2020:1016
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.8_release_notes/index
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1507149
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1528335
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1651706
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1660385
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1666106
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1694201
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1699856
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1701245
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1701842
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1702264
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1709837
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1710751
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1711520
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1715554
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1716328
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1722706
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1727756
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1729931
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1729933
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1733347
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1733874
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1734243
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1735630
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1735655
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1749390
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1750577
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1750813
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1757325
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1757872
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1758001
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1760294
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1760306
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1770404
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1777825
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_1016.json