RHSA-2020:0204: Important: kernel security and bug fix update
The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>Security Fix(es):<br><li> hw: Machine Check Error on Page Size Change (IFU) (CVE-2018-12207)</li> <li> hw: TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135)</li> <li> kernel: nfs: use-after-free in svcprocesscommon() (CVE-2018-16884)</li> <li> hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write (CVE-2019-0155)</li> <li> Kernel: vhostnet: infinite loop while receiving packets leads to DoS (CVE-2019-3900)</li> <li> Kernel: page cache side channel attacks (CVE-2019-5489)</li> <li> hardware: bluetooth: BR/EDR encryption key negotiation attacks (KNOB) (CVE-2019-9506)</li> <li> kernel: Heap overflow in mwifiexuapparsetailies function in drivers/net/wireless/marvell/mwifiex/ie.c (CVE-2019-10126)</li> <li> kernel: heap overflow in mwifiexupdatevsie() function of Marvell WiFi driver (CVE-2019-14816)</li> <li> Kernel: KVM: OOB memory access via mmio ring buffer (CVE-2019-14821)</li> <li> kernel: heap overflow in marvell/mwifiex/tdls.c (CVE-2019-14901)</li> <li> hw: Intel GPU Denial Of Service while accessing MMIO in lower power state (CVE-2019-0154)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> Backport TCP follow-up for small buffers (BZ#1739184)</li> <li> TCP performance regression after CVE-2019-11478 bug fix (BZ#1743170)</li> <li> RHEL8.0 - bnx2x link down, caused by transmit timeouts during load test (Marvell/Cavium/QLogic) (L3:) (BZ#1743548)</li> <li> block: blk-mq improvement (BZ#1780567)</li> <li> RHEL8.0 - Regression to RHEL7.6 by changing forcelatency found during RHEL8.0 validation for SAP HANA on POWER (BZ#1781111)</li> <li> blk-mq: overwirte performance drops on real MQ device (BZ#1782183)</li> <li> RHEL8: creating vport takes lot of memory i.e 2GB per vport which leads to drain out system memory quickly. (BZ#1782705)</li>
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2020:0204?
The severity of RHSA-2020:0204 is classified as important due to multiple security issues impacting the Linux kernel.
How do I fix RHSA-2020:0204?
To fix RHSA-2020:0204, you should update to the latest kernel version, specifically 4.18.0-80.15.1.el8_0.
What vulnerabilities are addressed in RHSA-2020:0204?
RHSA-2020:0204 addresses vulnerabilities including CVE-2018-12207 and CVE-2019-11135, among others.
Which packages are affected by RHSA-2020:0204?
Affected packages include kernel, bpftool, and several kernel-related packages on Red Hat Enterprise Linux.
Is a reboot required after applying the fix for RHSA-2020:0204?
Yes, a reboot is required after applying the fix for RHSA-2020:0204 to ensure the new kernel is loaded.