RHSA-2021:1272: Important: kernel security, bug fix, and enhancement update
The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>Security Fix(es):<br><li> kernel: Use after free via PI futex state (CVE-2021-3347)</li> <li> kernel: out-of-bounds read in libiscsi module (CVE-2021-27364)</li> <li> kernel: heap buffer overflow in the iSCSI subsystem (CVE-2021-27365)</li> <li> kernel: iscsi: unrestricted access to sessions and handles (CVE-2021-27363)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> System Crash / Core dump while deleting VMs (BZ#1897687)</li> <li> various patches to stabilize the OPAL error log processing and the powernv dump processing (ESS) (BZ#1907302)</li> <li> Unable to receive the signal registered using mqnotify(). (BZ#1926111)</li> <li> SCTP "Address already in use" when no active endpoints from RHEL 8.2 onwards (BZ#1927522)</li> <li> enable CONFIGRANDOMTRUSTCPU (BZ#1928027)</li> <li> [mm] mm, oom: remove oomlock from oomreaper (BZ#1929739)</li> <li> Configuring the system with non-RT kernel will hang the system (BZ#1930737)</li> <li> fNIC driver needs a patch fix that addresses crash (BZ#1932460)</li> <li> OVS mistakenly using local IP as tundst for VXLAN packets (?) (BZ#1944670)</li> Enhancement(s):<br><li> mlx5: Hairpin Support in Switch Mode (BZ#1924690)</li> <li> Trace mode enablement in IMC to facilitate perf-kvm support (perf:) (BZ#1929696)</li> <li> ice: Enable Flow Director Support (BZ#1930780)</li>
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2021:1272?
The severity of RHSA-2021:1272 is classified as important due to multiple kernel vulnerabilities that could allow for privilege escalation or information disclosure.
How do I fix RHSA-2021:1272?
To fix RHSA-2021:1272, you should update your kernel to version 4.18.0-193.51.1.el8_2 or later.
What vulnerabilities are addressed in RHSA-2021:1272?
RHSA-2021:1272 addresses several vulnerabilities including CVE-2021-3347 and CVE-2021-27364 which involve use-after-free and out-of-bounds reads respectively.
Which systems are impacted by RHSA-2021:1272?
Systems running affected versions of the Linux kernel and related packages, particularly those in the Red Hat Enterprise Linux 8.2 environment, are impacted by RHSA-2021:1272.
Is there any workaround for RHSA-2021:1272?
No effective workaround is available for RHSA-2021:1272, so applying the kernel updates is the recommended action.