RHSA-2020:2429: Important: kernel security and bug fix update
The kernel packages contain the Linux kernel, the core of any Linux operating system.Security Fix(es): Kernel: NetLabel: null pointer dereference while receiving CIPSO packet with null category may cause kernel panic (CVE-2020-10711) Kernel: s390: page table upgrade in secondary address mode may lead to privilege escalation (CVE-2020-11884) kernel: use-after-free in block/bfq-iosched.c related to bfqidleslicetimerbody (CVE-2020-12657) kernel: powerpc: incomplete Spectre-RSB mitigation leads to information exposure (CVE-2019-18660) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Bug Fix(es): kernel: hw: provide reporting and microcode mitigation toggle for CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1840684) missing version.h dependency for modpost may cause build to fail (BZ#1828227) efi: kernel panic during ltp fs test - readall -d /sys -q -r 10 (BZ#1829525)
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2020:2429?
RHSA-2020:2429 is rated as a moderate severity vulnerability affecting the Linux kernel.
How do I fix RHSA-2020:2429?
To fix RHSA-2020:2429, update your kernel package to version 4.18.0-80.23.2.el8_0 or later.
What type of systems are affected by RHSA-2020:2429?
RHSA-2020:2429 affects Red Hat Enterprise Linux 8 systems using the specified kernel versions.
What vulnerabilities are addressed in RHSA-2020:2429?
RHSA-2020:2429 addresses vulnerabilities including a null pointer dereference in NetLabel processing (CVE-2020-10711).
Is it necessary to reboot my system after applying the RHSA-2020:2429 patch?
Yes, a reboot is typically required to apply the kernel updates from RHSA-2020:2429.