7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.014 Low
EPSS
Percentile
86.5%
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
kernel: nfs: use-after-free in svc_process_common() (CVE-2018-16884)
Kernel: vhost_net: infinite loop while receiving packets leads to DoS (CVE-2019-3900)
Kernel: page cache side channel attacks (CVE-2019-5489)
hardware: bluetooth: BR/EDR encryption key negotiation attacks (KNOB) (CVE-2019-9506)
kernel: Heap overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/marvell/mwifiex/ie.c (CVE-2019-10126)
Kernel: KVM: OOB memory access via mmio ring buffer (CVE-2019-14821)
kernel: Information Disclosure in crypto_report_one in crypto/crypto_user.c (CVE-2018-19854)
kernel: usb: missing size check in the __usb_get_extra_descriptor() leading to DoS (CVE-2018-20169)
kernel: Heap address information leak while using L2CAP_GET_CONF_OPT (CVE-2019-3459)
kernel: Heap address information leak while using L2CAP_PARSE_CONF_RSP (CVE-2019-3460)
kernel: SCTP socket buffer memory leak leading to denial of service (CVE-2019-3874)
kernel: denial of service vector through vfio DMA mappings (CVE-2019-3882)
kernel: null-pointer dereference in hci_uart_set_flow_control (CVE-2019-10207)
kernel: fix race condition between mmget_not_zero()/get_task_mm() and core dumping (CVE-2019-11599)
kernel: fs/ext4/extents.c leads to information disclosure (CVE-2019-11833)
kernel: sensitive information disclosure from kernel stack memory via HIDPCONNADD command (CVE-2019-11884)
kernel: use-after-free in arch/x86/lib/insn-eval.c (CVE-2019-13233)
kernel: memory leak in register_queue_kobjects() in net/core/net-sysfs.c leads to denial of service (CVE-2019-15916)
kernel: Linux stack ASLR implementation Integer overflow (CVE-2015-1593)
kernel: oob memory read in hso_probe in drivers/net/usb/hso.c (CVE-2018-19985)
Kernel: KVM: leak of uninitialized stack contents to guest (CVE-2019-7222)
Kernel: net: weak IP ID generation leads to remote device tracking (CVE-2019-10638)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.1 Release Notes linked from the References section.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 8 | aarch64 | kernel-debuginfo-common-aarch64 | < 4.18.0-147.el8 | kernel-debuginfo-common-aarch64-4.18.0-147.el8.aarch64.rpm |
RedHat | 8 | ppc64le | kernel-tools-libs | < 4.18.0-147.el8 | kernel-tools-libs-4.18.0-147.el8.ppc64le.rpm |
RedHat | 8 | aarch64 | kernel-tools-debuginfo | < 4.18.0-147.el8 | kernel-tools-debuginfo-4.18.0-147.el8.aarch64.rpm |
RedHat | 8 | s390x | bpftool | < 4.18.0-147.el8 | bpftool-4.18.0-147.el8.s390x.rpm |
RedHat | 8 | x86_64 | python3-perf | < 4.18.0-147.el8 | python3-perf-4.18.0-147.el8.x86_64.rpm |
RedHat | 8 | s390x | kernel-debug-modules-extra | < 4.18.0-147.el8 | kernel-debug-modules-extra-4.18.0-147.el8.s390x.rpm |
RedHat | 8 | ppc64le | kernel-devel | < 4.18.0-147.el8 | kernel-devel-4.18.0-147.el8.ppc64le.rpm |
RedHat | 8 | s390x | kernel-zfcpdump | < 4.18.0-147.el8 | kernel-zfcpdump-4.18.0-147.el8.s390x.rpm |
RedHat | 8 | ppc64le | kernel-debug-modules | < 4.18.0-147.el8 | kernel-debug-modules-4.18.0-147.el8.ppc64le.rpm |
RedHat | 8 | s390x | kernel-tools | < 4.18.0-147.el8 | kernel-tools-4.18.0-147.el8.s390x.rpm |
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.014 Low
EPSS
Percentile
86.5%