RHSA-2020:1347: Important: kernel security and bug fix update
The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>Security Fix(es):<br><li> kernel: heap overflow in mwifiexupdatevsie() function of Marvell WiFi driver (CVE-2019-14816)</li> <li> kernel: rtlp2pnoaie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow (CVE-2019-17666)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> [xfstests]: copyfilerange cause corruption on rhel-7 (BZ#1797965)</li> <li> port show-kabi to python3 (BZ#1806926)</li>
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2020:1347?
RHSA-2020:1347 has a high severity due to heap overflow vulnerabilities that could lead to code execution.
How do I fix RHSA-2020:1347?
To fix RHSA-2020:1347, update the kernel packages to version 3.10.0-693.65.1.el7 or later.
What vulnerabilities are addressed in RHSA-2020:1347?
RHSA-2020:1347 addresses a heap overflow in the mwifiex_update_vs_ie() function of the Marvell WiFi driver and other issues.
Which systems are affected by RHSA-2020:1347?
RHSA-2020:1347 affects Red Hat Enterprise Linux 7 systems running specific kernel versions prior to 3.10.0-693.65.1.el7.
Is there a workaround for RHSA-2020:1347?
There are no official workarounds for RHSA-2020:1347; updating to the patched version is recommended.