RHSA-2020:0839: Important: kernel-rt security and bug fix update
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.Security Fix(es): kernel: Count overflow in FUSE request leading to use-after-free issues. (CVE-2019-11487) kernel: rtlp2pnoaie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow (CVE-2019-17666) Kernel: KVM: export MSRIA32TSXCTRL to guest - incomplete fix for TAA (CVE-2019-11135) (CVE-2019-19338) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Bug Fix(es): kernel-rt: update to the RHEL7.7.z batch#5 source tree (BZ#1794131)
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2020:0839?
RHSA-2020:0839 has been classified as a moderate severity vulnerability.
How do I fix RHSA-2020:0839?
To fix RHSA-2020:0839, update the kernel-rt packages to version 3.10.0-1062.18.1.rt56.1044.el7.
What is the nature of the vulnerability in RHSA-2020:0839?
The vulnerability in RHSA-2020:0839 is due to a count overflow in FUSE requests, leading to potential use-after-free issues.
Which software is affected by RHSA-2020:0839?
The affected software includes various kernel-rt packages, specifically versions prior to 3.10.0-1062.18.1.rt56.1044.el7.
Is there a risk of exploitation for RHSA-2020:0839?
Yes, the count overflow vulnerability could be exploited to execute arbitrary code, increasing its risk profile.