7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
0.036 Low
EPSS
Percentile
91.7%
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
kernel: Memory corruption due to incorrect socket cloning (CVE-2018-9568)
kernel: MIDI driver race condition leads to a double-free (CVE-2018-10902)
kernel: Use-after-free due to race condition in AF_PACKET implementation (CVE-2018-18559)
Kernel: vhost_net: infinite loop while receiving packets leads to DoS (CVE-2019-3900)
Kernel: page cache side channel attacks (CVE-2019-5489)
Kernel: KVM: potential use-after-free via kvm_ioctl_create_device() (CVE-2019-6974)
Kernel: KVM: nVMX: use-after-free of the hrtimer for emulation of the preemption timer (CVE-2019-7221)
kernel: Inifinite loop vulnerability in mm/madvise.c:madvise_willneed() function allows local denial of service (CVE-2017-18208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
A cluster node has multiple hung “mv” processes that are accessing a gfs2 filesystem. (BZ#1716321)
Growing unreclaimable slab memory (BZ#1741918)
[LLNL 7.5 Bug] slab leak causing a crash when using kmem control group (BZ#1748236)
kernel build: parallelize redhat/mod-sign.sh (BZ#1755328)
kernel build: speed up module compression step (BZ#1755337)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 7 | ppc64le | perf-debuginfo | < 3.10.0-862.44.2.el7 | perf-debuginfo-3.10.0-862.44.2.el7.ppc64le.rpm |
RedHat | 7 | ppc64 | kernel-tools-debuginfo | < 3.10.0-862.44.2.el7 | kernel-tools-debuginfo-3.10.0-862.44.2.el7.ppc64.rpm |
RedHat | 7 | s390x | kernel-kdump | < 3.10.0-862.44.2.el7 | kernel-kdump-3.10.0-862.44.2.el7.s390x.rpm |
RedHat | 7 | x86_64 | kernel-tools-libs | < 3.10.0-862.44.2.el7 | kernel-tools-libs-3.10.0-862.44.2.el7.x86_64.rpm |
RedHat | 7 | x86_64 | kernel-tools-debuginfo | < 3.10.0-862.44.2.el7 | kernel-tools-debuginfo-3.10.0-862.44.2.el7.x86_64.rpm |
RedHat | 7 | ppc64le | kernel-tools | < 3.10.0-862.44.2.el7 | kernel-tools-3.10.0-862.44.2.el7.ppc64le.rpm |
RedHat | 7 | ppc64le | python-perf | < 3.10.0-862.44.2.el7 | python-perf-3.10.0-862.44.2.el7.ppc64le.rpm |
RedHat | 7 | x86_64 | kernel-tools | < 3.10.0-862.44.2.el7 | kernel-tools-3.10.0-862.44.2.el7.x86_64.rpm |
RedHat | 7 | x86_64 | perf | < 3.10.0-862.44.2.el7 | perf-3.10.0-862.44.2.el7.x86_64.rpm |
RedHat | 7 | ppc64 | perf-debuginfo | < 3.10.0-862.44.2.el7 | perf-debuginfo-3.10.0-862.44.2.el7.ppc64.rpm |
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
0.036 Low
EPSS
Percentile
91.7%