Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Products & Services

    Products

    Support

    • Production Support
    • Development Support
    • Product Life Cycles

    Services

    • Consulting
    • Technical Account Management
    • Training & Certifications

    Documentation

    • Red Hat Enterprise Linux
    • Red Hat JBoss Enterprise Application Platform
    • Red Hat OpenStack Platform
    • Red Hat OpenShift Container Platform
    All Documentation

    Ecosystem Catalog

    • Red Hat Partner Ecosystem
    • Partner Resources
  • Tools

    Tools

    • Troubleshoot a product issue
    • Packages
    • Errata

    Customer Portal Labs

    • Configuration
    • Deployment
    • Security
    • Troubleshoot
    All labs

    Red Hat Insights

    Increase visibility into IT operations to detect and resolve technical issues before they impact your business.

    Learn More
    Go to Insights
  • Security

    Red Hat Product Security Center

    Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities.

    Product Security Center

    Security Updates

    • Security Advisories
    • Red Hat CVE Database
    • Security Labs

    Keep your systems secure with Red Hat's specialized responses to security vulnerabilities.

    View Responses

    Resources

    • Security Blog
    • Security Measurement
    • Severity Ratings
    • Backporting Policies
    • Product Signing (GPG) Keys
  • Community

    Customer Portal Community

    • Discussions
    • Private Groups
    Community Activity

    Customer Events

    • Red Hat Convergence
    • Red Hat Summit

    Stories

    • Red Hat Subscription Value
    • You Asked. We Acted.
    • Open Source Communities
Or troubleshoot an issue.

Select Your Language

  • English
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Virtualization
  • Red Hat Identity Management
  • Red Hat Directory Server
  • Red Hat Certificate System
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Update Infrastructure
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat CloudForms
  • Red Hat OpenStack Platform
  • Red Hat OpenShift Container Platform
  • Red Hat OpenShift Data Science
  • Red Hat OpenShift Online
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat Single Sign On
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Thorntail
  • Red Hat build of Eclipse Vert.x
  • Red Hat build of OpenJDK
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Integration
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
  • Red Hat JBoss Data Virtualization
  • Red Hat Process Automation
  • Red Hat Process Automation Manager
  • Red Hat Decision Manager
All Products
Red Hat Product Errata RHSA-2019:2609 - Security Advisory
Issued:
2019-09-03
Updated:
2019-09-03

RHSA-2019:2609 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: kernel-rt security and bug fix update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel-rt is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

  • kernel: hw: Spectre SWAPGS gadget vulnerability (CVE-2019-1125)
  • kernel: brcmfmac heap buffer overflow in brcmf_wowl_nd_results (CVE-2019-9500)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • BUG: scheduling while atomic in zswap (BZ#1737372)
  • kernel-rt: update to the RHEL7.7.z batch#1 source tree (BZ#1740918)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux for Real Time 7 x86_64
  • Red Hat Enterprise Linux for Real Time for NFV 7 x86_64

Fixes

  • BZ - 1701224 - CVE-2019-9500 kernel: brcmfmac heap buffer overflow in brcmf_wowl_nd_results
  • BZ - 1724389 - CVE-2019-1125 kernel: hw: Spectre SWAPGS gadget vulnerability
  • BZ - 1737372 - BUG: scheduling while atomic in zswap [rhel-7.7.z]
  • BZ - 1740918 - kernel-rt: update to the RHEL7.7.z batch#1 source tree

CVEs

  • CVE-2019-1125
  • CVE-2019-9500

References

  • https://access.redhat.com/security/updates/classification/#important
  • https://access.redhat.com/articles/4329821
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for Real Time 7

SRPM
kernel-rt-3.10.0-1062.1.1.rt56.1024.el7.src.rpm SHA-256: 2a404c032bec443ebd8dd5c0c0396619ca541b1cfbf5daf1d1bdb9b20d74ddfb
x86_64
kernel-rt-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: b73a6b4ddeaadc3b4b289132b0d2c9e6084346ccd206e00f754cad6d56319e90
kernel-rt-debug-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: de9270ed03c6990a873f134bb0ed42f3bd5d156f00d560de65a95741f11051c0
kernel-rt-debug-debuginfo-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: 27143c912fb55f001df38c12dd7ca97ac464aa028ccaf95a9334017d26c4e754
kernel-rt-debug-devel-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: 68db3860819ef70165217a76d9fc30a542c499f3fc18b5bbcaaa8f0cc2cd4c29
kernel-rt-debuginfo-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: e66054e2a2c1058614119adfc6911e98a13c0e645966f11f03665ca28927f261
kernel-rt-debuginfo-common-x86_64-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: 536d3be303dcbbffbe912e9277ccf0b8e366d909d98f9e72270551dd39db4722
kernel-rt-devel-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: 46ad6307cb82d9a32ff7eed270a8865d0424ae7b346cda310da775d802824c97
kernel-rt-doc-3.10.0-1062.1.1.rt56.1024.el7.noarch.rpm SHA-256: 48e441f9b41cbdf0cd1d3dbae8cee8f84c793f14094123222cd19aadb600a22b
kernel-rt-trace-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: c5591df1c9dc2d4f49c88a2219f1ab5a95486394cbebb6b764d4291b91036d55
kernel-rt-trace-debuginfo-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: cf68e3910bab0bb115c211a73f83df78b851e2bc964c6436ddd0aa982e1dffaa
kernel-rt-trace-devel-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: e4d66e08ee176e766dfbbae0bd8317efbd9f95f1d2f5e9e88850ea1361d93667

Red Hat Enterprise Linux for Real Time for NFV 7

SRPM
kernel-rt-3.10.0-1062.1.1.rt56.1024.el7.src.rpm SHA-256: 2a404c032bec443ebd8dd5c0c0396619ca541b1cfbf5daf1d1bdb9b20d74ddfb
x86_64
kernel-rt-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: b73a6b4ddeaadc3b4b289132b0d2c9e6084346ccd206e00f754cad6d56319e90
kernel-rt-debug-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: de9270ed03c6990a873f134bb0ed42f3bd5d156f00d560de65a95741f11051c0
kernel-rt-debug-debuginfo-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: 27143c912fb55f001df38c12dd7ca97ac464aa028ccaf95a9334017d26c4e754
kernel-rt-debug-devel-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: 68db3860819ef70165217a76d9fc30a542c499f3fc18b5bbcaaa8f0cc2cd4c29
kernel-rt-debug-kvm-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: 7a6be18872382964e59e1889205a0334c39d9c82551f7668d4fa8095139aa8e5
kernel-rt-debug-kvm-debuginfo-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: 2e0a5ab381d16e448f541a512675c7a9d0fbf051d01949e2b1fd1af1666f0051
kernel-rt-debuginfo-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: e66054e2a2c1058614119adfc6911e98a13c0e645966f11f03665ca28927f261
kernel-rt-debuginfo-common-x86_64-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: 536d3be303dcbbffbe912e9277ccf0b8e366d909d98f9e72270551dd39db4722
kernel-rt-devel-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: 46ad6307cb82d9a32ff7eed270a8865d0424ae7b346cda310da775d802824c97
kernel-rt-doc-3.10.0-1062.1.1.rt56.1024.el7.noarch.rpm SHA-256: 48e441f9b41cbdf0cd1d3dbae8cee8f84c793f14094123222cd19aadb600a22b
kernel-rt-kvm-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: 392c41f9586a68da03bb9cdd18c22274778b19c942a012959ecb9c068bb598da
kernel-rt-kvm-debuginfo-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: 3a1270857b621ab2b0c1f648ae3047954cecb23c066c2f96ed31194bd279fedc
kernel-rt-trace-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: c5591df1c9dc2d4f49c88a2219f1ab5a95486394cbebb6b764d4291b91036d55
kernel-rt-trace-debuginfo-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: cf68e3910bab0bb115c211a73f83df78b851e2bc964c6436ddd0aa982e1dffaa
kernel-rt-trace-devel-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: e4d66e08ee176e766dfbbae0bd8317efbd9f95f1d2f5e9e88850ea1361d93667
kernel-rt-trace-kvm-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: b04316fca1b3cb1315670b5de112baa0a598b264e3a75ea2d4618c933019d736
kernel-rt-trace-kvm-debuginfo-3.10.0-1062.1.1.rt56.1024.el7.x86_64.rpm SHA-256: ddaea8ccfcfdc93f8654d515ecd1500bea2aac2ff3bf91cfd41316908b668c11

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

About

  • Red Hat Subscription Value
  • About Red Hat
  • Red Hat Jobs
Copyright © 2023 Red Hat, Inc.
  • Privacy Statement
  • Customer Portal Terms of Use
  • All Policies and Guidelines
Red Hat Summit
Twitter