RHSA-2021:2726HighCVSS 7.8
Red Hat Security Advisory: kernel-rt security and bug fix update
🔗 CVE IDs covered (5)
📋 Description
CVE-2019-20934 — kernel: use-after-free in show_numa_stats function CVE-2020-11668 — kernel: mishandles invalid descriptors in drivers/media/usb/gspca/xirlink_cit.c CVE-2021-33033 — kernel: use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c CVE-2021-33034 — kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan CVE-2021-33909 — kernel: size_t-to-int conversion vulnerability in the filesystem layer
🔗 References (9)
- selfhttps://access.redhat.com/errata/RHSA-2021:2726
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://access.redhat.com/security/vulnerabilities/RHSB-2021-006
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1824792
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1902788
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1961300
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1961305
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1970273
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_2726.json