RHSA-2021:1379: Important: kernel-alt security and bug fix update
The kernel-alt packages provide the Linux kernel version 4.x.Security Fix(es): kernel: Use after free via PI futex state (CVE-2021-3347) kernel: out-of-bounds read in libiscsi module (CVE-2021-27364) kernel: heap buffer overflow in the iSCSI subsystem (CVE-2021-27365) kernel: powerpc: guest can cause DoS on POWER9 KVM hosts (CVE-2020-11669) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Bug Fix(es): Kernel oops when resizing ext4 filesystem [rhel-alt-7.6.z] (BZ#1790900) [ipv6][ipsec]:unregisternetdevice: waiting for lo to become free. Usage count = 4 (BZ#1920805)
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2021:1379?
The severity of RHSA-2021:1379 is considered moderate due to multiple vulnerabilities in the kernel.
How do I fix RHSA-2021:1379?
To fix RHSA-2021:1379, update to kernel-alt, kernel, or other affected packages to version 4.14.0-115.36.1.el7a.
What vulnerabilities are addressed in RHSA-2021:1379?
RHSA-2021:1379 addresses vulnerabilities such as a use-after-free issue (CVE-2021-3347) and an out-of-bounds read (CVE-2021-27364).
Which software packages are affected by RHSA-2021:1379?
Affected software packages include kernel-alt, kernel, kernel-debug, and several associated kernel modules.
Is RHSA-2021:1379 critical for my system's security?
Yes, updating to address RHSA-2021:1379 is critical for maintaining the security and stability of affected systems.