RHSA-2020:0174: Important: kernel-alt security and bug fix update
The kernel-alt packages provide the Linux kernel version 4.x.<br>Security Fix(es):<br><li> Kernel: speculative bounds check bypass store (CVE-2018-3693)</li> <li> kernel: Use-after-free due to race condition in AFPACKET implementation (CVE-2018-18559)</li> <li> kernel: Heap overflow in mwifiexupdatebssdescwithie function in marvell/mwifiex/scan.c (CVE-2019-3846)</li> <li> kernel: afalgrelease() in crypto/afalg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfssetattr (CVE-2019-8912)</li> <li> kernel: Heap overflow in mwifiexuapparsetailies function in drivers/net/wireless/marvell/mwifiex/ie.c (CVE-2019-10126)</li> <li> kernel: Count overflow in FUSE request leading to use-after-free issues. (CVE-2019-11487)</li> <li> kernel: heap overflow in mwifiexupdatevsie() function of Marvell WiFi driver (CVE-2019-14816)</li> <li> kernel: buffer overflow in cfg80211mgdwextgiwessid in net/wireless/wext-sme.c (CVE-2019-17133)</li> <li> kernel: heap overflow in mwifiexsetuaprates() function of Marvell Wifi Driver leading to DoS (CVE-2019-14814)</li> <li> kernel: heap-overflow in mwifiexsetwmmparams() function of Marvell WiFi driver leading to DoS (CVE-2019-14815)</li> <li> kernel: (powerpc) incomplete Spectre-RSB mitigation leads to information exposure (CVE-2019-18660)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> Kernel panic on job cleanup, related to SySgetdents64 (BZ#1702057)</li> <li> Kernel modules generated incorrectly when system is localized to non-English language (BZ#1705285)</li> <li> RHEL-Alt-7.6 - Fixup tlbie vs store ordering issue on POWER9 (BZ#1756270)</li>
Affected Software
Remediation
Event History
Frequently Asked Questions
What vulnerabilities are associated with RHSA-2020:0174?
RHSA-2020:0174 addresses vulnerabilities such as speculative bounds check bypass (CVE-2018-3693) and a use-after-free error in the AF_PACKET implementation (CVE-2018-18559).
What is the severity of RHSA-2020:0174?
The severity of RHSA-2020:0174 is considered high due to the potential for exploitation of the vulnerabilities involved.
How do I fix RHSA-2020:0174?
To fix RHSA-2020:0174, update affected packages to the remedied versions 4.14.0-115.17.1.el7a or later.
Which software is affected by RHSA-2020:0174?
Affected software includes various kernel-alt packages and their dependencies, specifically versions up to 4.14.0-115.17.1.el7a.
What system types are impacted by RHSA-2020:0174?
RHSA-2020:0174 impacts Red Hat Enterprise Linux systems using specific kernel versions across different architectures.