Oval Definition:
oval:com.redhat.rhsa:def:20214356
Revision Date
:
2021-11-09
Version
:
661
Title
:
RHSA-2021:4356: kernel security, bug fix, and enhancement update (Moderate)
Description
:
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
kernel: out-of-bounds reads in pinctrl subsystem (CVE-2020-0427)
kernel: Improper input validation in some Intel(R) Ethernet E810 Adapter drivers (CVE-2020-24502)
kernel: Insufficient access control in some Intel(R) Ethernet E810 Adapter drivers (CVE-2020-24503)
kernel: Uncontrolled resource consumption in some Intel(R) Ethernet E810 Adapter drivers (CVE-2020-24504)
kernel: Fragmentation cache not cleared on reconnection (CVE-2020-24586)
kernel: Reassembling fragments encrypted under different keys (CVE-2020-24587)
kernel: wifi frame payload being parsed incorrectly as an L2 frame (CVE-2020-24588)
kernel: Forwarding EAPOL from unauthenticated wifi client (CVE-2020-26139)
kernel: accepting plaintext data frames in protected networks (CVE-2020-26140)
kernel: not verifying TKIP MIC of fragmented frames (CVE-2020-26141)
kernel: accepting fragmented plaintext frames in protected networks (CVE-2020-26143)
kernel: accepting unencrypted A-MSDU frames that start with RFC1042 header (CVE-2020-26144)
kernel: accepting plaintext broadcast fragments as full frames (CVE-2020-26145)
kernel: powerpc: RTAS calls can be used to compromise kernel integrity (CVE-2020-27777)
kernel: locking inconsistency in tty_io.c and tty_jobctrl.c can lead to a read-after-free (CVE-2020-29660)
kernel: buffer overflow in mwifiex_cmd_802_11_ad_hoc_start function via a long SSID value (CVE-2020-36158)
kernel: slab out-of-bounds read in hci_extended_inquiry_result_evt() (CVE-2020-36386)
kernel: Improper access control in BlueZ may allow information disclosure vulnerability. (CVE-2021-0129)
kernel: Use-after-free in ndb_queue_rq() in drivers/block/nbd.c (CVE-2021-3348)
kernel: Linux kernel eBPF RINGBUF map oversized allocation (CVE-2021-3489)
kernel: double free in bluetooth subsystem when the HCI device initialization fails (CVE-2021-3564)
kernel: use-after-free in function hci_sock_bound_ioctl() (CVE-2021-3573)
kernel: eBPF 32-bit source register truncation on div/mod (CVE-2021-3600)
kernel: DoS in rb_per_cpu_empty() (CVE-2021-3679)
kernel: Mounting overlayfs inside an unprivileged user namespace can reveal files (CVE-2021-3732)
kernel: heap overflow in __cgroup_bpf_run_filter_getsockopt() (CVE-2021-20194)
kernel: Race condition in sctp_destroy_sock list_del (CVE-2021-23133)
kernel: fuse: stall on CPU can occur because a retry loop continually finds the same bad inode (CVE-2021-28950)
kernel: System crash in intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c (CVE-2021-28971)
kernel: protection can be bypassed to leak content of kernel memory (CVE-2021-29155)
kernel: improper input validation in tipc_nl_retrieve_key function in net/tipc/node.c (CVE-2021-29646)
kernel: lack a full memory barrier may lead to DoS (CVE-2021-29650)
kernel: local escalation of privileges in handling of eBPF programs (CVE-2021-31440)
kernel: protection of stack pointer against speculative pointer arithmetic can be bypassed to leak content of kernel memory (CVE-2021-31829)
kernel: out-of-bounds reads and writes due to enforcing incorrect limits for pointer arithmetic operations by BPF verifier (CVE-2021-33200)
kernel: reassembling encrypted fragments with non-consecutive packet numbers (CVE-2020-26146)
kernel: reassembling mixed encrypted/plaintext fragments (CVE-2020-26147)
kernel: the copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check (CVE-2020-29368)
kernel: flowtable list del corruption with kernel BUG at lib/list_debug.c:50 (CVE-2021-3635)
kernel: NULL pointer dereference in llsec_key_alloc() in net/mac802154/llsec.c (CVE-2021-3659)
kernel: setsockopt System Call Untrusted Pointer Dereference Information Disclosure (CVE-2021-20239)
kernel: out of bounds array access in drivers/md/dm-ioctl.c (CVE-2021-31916)
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
CVE-2019-14615
CVE-2020-0427
CVE-2020-24502
CVE-2020-24503
CVE-2020-24504
CVE-2020-24586
CVE-2020-24587
CVE-2020-24588
CVE-2020-26139
CVE-2020-26140
CVE-2020-26141
CVE-2020-26143
CVE-2020-26144
CVE-2020-26145
CVE-2020-26146
CVE-2020-26147
CVE-2020-27777
CVE-2020-29368
CVE-2020-29660
CVE-2020-36158
CVE-2020-36312
CVE-2020-36386
CVE-2021-0129
CVE-2021-20194
CVE-2021-20239
CVE-2021-23133
CVE-2021-28950
CVE-2021-28971
CVE-2021-29155
CVE-2021-29646
CVE-2021-29650
CVE-2021-31440
CVE-2021-31829
CVE-2021-31916
CVE-2021-33033
CVE-2021-33098
CVE-2021-33200
CVE-2021-3348
CVE-2021-3489
CVE-2021-3564
CVE-2021-3573
CVE-2021-3600
CVE-2021-3635
CVE-2021-3659
CVE-2021-3679
CVE-2021-3732
RHSA-2021:4356
Platform(s)
:
Red Hat Enterprise Linux 8
Product(s)
:
Definition Synopsis
Red Hat Enterprise Linux must be installed
OR
Package Information
Red Hat Enterprise Linux 8 is installed
OR
Red Hat CoreOS 4 is installed
AND
kernel earlier than 0:4.18.0-348.el8 is currently running
OR
kernel earlier than 0:4.18.0-348.el8 is set to boot up on next boot
AND
bpftool is earlier than 0:4.18.0-348.el8
AND
bpftool is signed with Red Hat redhatrelease2 key
kernel is earlier than 0:4.18.0-348.el8
AND
kernel is signed with Red Hat redhatrelease2 key
kernel-abi-stablelists is earlier than 0:4.18.0-348.el8
AND
kernel-abi-stablelists is signed with Red Hat redhatrelease2 key
kernel-core is earlier than 0:4.18.0-348.el8
AND
kernel-core is signed with Red Hat redhatrelease2 key
kernel-cross-headers is earlier than 0:4.18.0-348.el8
AND
kernel-cross-headers is signed with Red Hat redhatrelease2 key
kernel-debug is earlier than 0:4.18.0-348.el8
AND
kernel-debug is signed with Red Hat redhatrelease2 key
kernel-debug-core is earlier than 0:4.18.0-348.el8
AND
kernel-debug-core is signed with Red Hat redhatrelease2 key
kernel-debug-devel is earlier than 0:4.18.0-348.el8
AND
kernel-debug-devel is signed with Red Hat redhatrelease2 key
kernel-debug-modules is earlier than 0:4.18.0-348.el8
AND
kernel-debug-modules is signed with Red Hat redhatrelease2 key
kernel-debug-modules-extra is earlier than 0:4.18.0-348.el8
AND
kernel-debug-modules-extra is signed with Red Hat redhatrelease2 key
kernel-devel is earlier than 0:4.18.0-348.el8
AND
kernel-devel is signed with Red Hat redhatrelease2 key
kernel-doc is earlier than 0:4.18.0-348.el8
AND
kernel-doc is signed with Red Hat redhatrelease2 key
kernel-headers is earlier than 0:4.18.0-348.el8
AND
kernel-headers is signed with Red Hat redhatrelease2 key
kernel-modules is earlier than 0:4.18.0-348.el8
AND
kernel-modules is signed with Red Hat redhatrelease2 key
kernel-modules-extra is earlier than 0:4.18.0-348.el8
AND
kernel-modules-extra is signed with Red Hat redhatrelease2 key
kernel-tools is earlier than 0:4.18.0-348.el8
AND
kernel-tools is signed with Red Hat redhatrelease2 key
kernel-tools-libs is earlier than 0:4.18.0-348.el8
AND
kernel-tools-libs is signed with Red Hat redhatrelease2 key
kernel-tools-libs-devel is earlier than 0:4.18.0-348.el8
AND
kernel-tools-libs-devel is signed with Red Hat redhatrelease2 key
kernel-zfcpdump is earlier than 0:4.18.0-348.el8
AND
kernel-zfcpdump is signed with Red Hat redhatrelease2 key
kernel-zfcpdump-core is earlier than 0:4.18.0-348.el8
AND
kernel-zfcpdump-core is signed with Red Hat redhatrelease2 key
kernel-zfcpdump-devel is earlier than 0:4.18.0-348.el8
AND
kernel-zfcpdump-devel is signed with Red Hat redhatrelease2 key
kernel-zfcpdump-modules is earlier than 0:4.18.0-348.el8
AND
kernel-zfcpdump-modules is signed with Red Hat redhatrelease2 key
kernel-zfcpdump-modules-extra is earlier than 0:4.18.0-348.el8
AND
kernel-zfcpdump-modules-extra is signed with Red Hat redhatrelease2 key
perf is earlier than 0:4.18.0-348.el8
AND
perf is signed with Red Hat redhatrelease2 key
python3-perf is earlier than 0:4.18.0-348.el8
AND
python3-perf is signed with Red Hat redhatrelease2 key
BACK