Red Hat Security Advisory: kernel security and bug fix update
🔗 CVE IDs covered (12)
📋 Description
CVE-2017-18595 — kernel: double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c CVE-2018-7191 — kernel: denial of service via ioctl call in network tun handling CVE-2018-20169 — kernel: usb: missing size check in the __usb_get_extra_descriptor() leading to DoS CVE-2019-3901 — kernel: perf_event_open() and execve() race in setuid programs allows a data leak CVE-2019-9503 — kernel: brcmfmac frame validation bypass CVE-2019-10639 — Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR CVE-2019-12382 — kernel: unchecked kstrdup of fwstr in drm_load_edid_firmware leads to denial of service CVE-2019-13233 — kernel: use-after-free in arch/x86/lib/insn-eval.c CVE-2019-14283 — kernel: integer overflow and OOB read in drivers/block/floppy.c CVE-2019-15916 — kernel: memory leak in register_queue_kobjects() in net/core/net-sysfs.c leads to denial of service CVE-2019-19768 — kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c CVE-2020-10711 — Kernel: NetLabel: null pointer dereference while receiving CIPSO packet with null category may cause kernel panic
🔗 References (15)
- selfhttps://access.redhat.com/errata/RHSA-2020:2522
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1660385
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1701245
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1701842
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1715554
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1716328
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1727756
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1729933
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1734243
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1750813
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1758671
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1786164
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1825116
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2522.json