(RHSA-2020:5023) Moderate: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

• kernel: buffer over write in vgacon_scroll (CVE-2020-14331)

• kernel: net-sysfs: *_queue_add_kobject refcount issue (CVE-2019-20811)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

• [OSP13,mlx5] SRIOV VF still sending traffic when PF is down (BZ#1733181)

• gpf panic in virtio_check_driver_offered_fxature+6 when running sg_inq on a dm map for a lost virtio_blk (BZ#1811893)

• GPF panic in qlt_free_session_done+626 (BZ#1826127)

• [ Brazos ] “Core(s) per socket” and “Socket” values are interchanged in lscpu output. (kernel) (BZ#1826306)

• megaraid Aero: call trace observed during reboots (BZ#1828312)

• Crash in mptscsih_io_done() due to buffer overrun in sense_buf_pool (BZ#1829803)

• The qedf driver fails to re-establish the online F/C port state when the downstream F/C port is toggled unless a LIP is forced (BZ#1836443)

• tcp_fragment() limit causes packet drop under normal TCP load (BZ#1847765)

• ip link command shows state as UNKNOWN for MACVLAN interface (BZ#1848950)

• Lenovo TS 7Z60 Cooper Lake: PCI BAR firmware bug (BZ#1849223)

• [RHEL-7/mlx4] ipoib_flush ipoib_ib_dev_flush_light [ib_ipoib] (BZ#1858707)

• Uprobes crashes processes under GDB - SIGTRAP and SIGSEGV (BZ#1861396)

• kernel-3.10.0-1127.19.1.el7.x86_64 crashes after an SSH connection attempt when running as a Xen PV guest on AMD Epyc Rome (BZ#1882468)

• Null ptr deref after nf_reinject->nf_queue_entry_release_refs hits Attempt to release error doing inet_sock_destruct() (BZ#1885682)

Users of kernel are advised to upgrade to these updated packages, which fix these bugs.