Red Hat Security Advisory: kernel-rt security and bug fix update
🔗 CVE IDs covered (19)
📋 Description
CVE-2015-9289 — kernel: out of bound read in DVB connexant driver. CVE-2017-17807 — kernel: Missing permissions check for request_key() destination allows local attackers to add keys to keyring without Write permission CVE-2018-7191 — kernel: denial of service via ioctl call in network tun handling CVE-2018-19985 — kernel: oob memory read in hso_probe in drivers/net/usb/hso.c CVE-2018-20169 — kernel: usb: missing size check in the __usb_get_extra_descriptor() leading to DoS CVE-2019-3901 — kernel: perf_event_open() and execve() race in setuid programs allows a data leak CVE-2019-9503 — kernel: brcmfmac frame validation bypass CVE-2019-10207 — kernel: null-pointer dereference in hci_uart_set_flow_control CVE-2019-10638 — Kernel: net: weak IP ID generation leads to remote device tracking CVE-2019-10639 — Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR CVE-2019-11190 — kernel: ASLR bypass for setuid binaries due to late install_exec_creds() CVE-2019-11884 — kernel: sensitive information disclosure from kernel stack memory via HIDPCONNADD command CVE-2019-12382 — kernel: unchecked kstrdup of fwstr in drm_load_edid_firmware leads to denial of service CVE-2019-13233 — kernel: use-after-free in arch/x86/lib/insn-eval.c CVE-2019-14283 — kernel: integer overflow and OOB read in drivers/block/floppy.c CVE-2019-14815 — kernel: heap-overflow in mwifiex_set_wmm_params() function of Marvell WiFi driver leading to DoS CVE-2019-15221 — kernel: Null pointer dereference in the sound/usb/line6/pcm.c CVE-2019-15916 — kernel: memory leak in register_queue_kobjects() in net/core/net-sysfs.c leads to denial of service CVE-2019-16746 — kernel: buffer-overflow hardening in WiFi beacon validation code.
🔗 References (29)
- selfhttps://access.redhat.com/errata/RHSA-2020:1070
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.8_release_notes/index
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1528335
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1550584
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1660385
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1666106
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1690543
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1696087
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1699438
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1699856
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1701245
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1701842
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1708718
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1709837
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1715554
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1716328
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1727756
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1729931
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1729933
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1733874
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1734243
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1735655
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1741775
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1750813
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1751083
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1760306
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1772894
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_1070.json