Issued:
2019-11-14
Updated:
2019-11-14

RHSA-2019:3887 - Security Advisory

Synopsis

Important: kernel-rt security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel-rt is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

  • hardware: Intel GPU blitter manipulation can allow for arbitrary kernel memory write (CVE-2019-0155)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux for Real Time 7 x86_64
  • Red Hat Enterprise Linux for Real Time for NFV 7 x86_64

Fixes

  • BZ - 1724398 - CVE-2019-0155 hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write

Red Hat Enterprise Linux for Real Time 7

SRPM
kernel-rt-3.10.0-1062.4.3.rt56.1029.el7.src.rpm SHA-256: 33db3b92caba5617d8dde9c3eac5d426fde5fab331eabc962fbecb0e7a62dcf9
x86_64
kernel-rt-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: d623e8228a942594401a3c3a117d226cbfb8b874a51645194ed6e56c20130343
kernel-rt-debug-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 3d45e706eec01e3d7f3f0fa03806e4c4d658f0ba7297f21cfbedce8d4f3fd2ff
kernel-rt-debug-debuginfo-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 5a736b6c702fc4bdd60e4554c0de397d923a1755e652e3afbc47b2e86b885a15
kernel-rt-debug-devel-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: d6b3bec568bd91bf7a44c5906a1c7641e1db531be4d8eb796d196fde8458d3df
kernel-rt-debuginfo-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 2540be91b54c07b84046dfc495ff6024b607c3c92e807e733c51497da3a49b0a
kernel-rt-debuginfo-common-x86_64-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: e43e4084637627bd04754911c5e3a2a278bcbd4f8f6cd8969a549910669a2b15
kernel-rt-devel-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 4ccc97d0665c314737cb3d845a53532e065346ee4e10d401e987ffaaf1f57183
kernel-rt-doc-3.10.0-1062.4.3.rt56.1029.el7.noarch.rpm SHA-256: c95d2bbeeda01387258070c8292b7af4a311be321ac330eacb1f53863dec1449
kernel-rt-trace-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 1e955877d3ad2c9d066edb0cc1dc421c4fe2bb6ecfda22b42c3abd97b190170b
kernel-rt-trace-debuginfo-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: c669f8fa8e0802a8f7a034a53b7f1912b5f20d003ccb7174b5829c16a3f609c4
kernel-rt-trace-devel-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 3aab08730686ef0945dafd76a3163ce09ece7f10b0bc7dab71c3755c0d65ba90

Red Hat Enterprise Linux for Real Time for NFV 7

SRPM
kernel-rt-3.10.0-1062.4.3.rt56.1029.el7.src.rpm SHA-256: 33db3b92caba5617d8dde9c3eac5d426fde5fab331eabc962fbecb0e7a62dcf9
x86_64
kernel-rt-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: d623e8228a942594401a3c3a117d226cbfb8b874a51645194ed6e56c20130343
kernel-rt-debug-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 3d45e706eec01e3d7f3f0fa03806e4c4d658f0ba7297f21cfbedce8d4f3fd2ff
kernel-rt-debug-debuginfo-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 5a736b6c702fc4bdd60e4554c0de397d923a1755e652e3afbc47b2e86b885a15
kernel-rt-debug-devel-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: d6b3bec568bd91bf7a44c5906a1c7641e1db531be4d8eb796d196fde8458d3df
kernel-rt-debug-kvm-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 90e4ad5764b8340d5d636b2c2e04b2513f0e8b0b246514329f8230726ba46787
kernel-rt-debug-kvm-debuginfo-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: e1628d18ff7e5eb61de4a679d0bde1b0df52bd08d688cdd3113228897b148a77
kernel-rt-debuginfo-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 2540be91b54c07b84046dfc495ff6024b607c3c92e807e733c51497da3a49b0a
kernel-rt-debuginfo-common-x86_64-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: e43e4084637627bd04754911c5e3a2a278bcbd4f8f6cd8969a549910669a2b15
kernel-rt-devel-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 4ccc97d0665c314737cb3d845a53532e065346ee4e10d401e987ffaaf1f57183
kernel-rt-doc-3.10.0-1062.4.3.rt56.1029.el7.noarch.rpm SHA-256: c95d2bbeeda01387258070c8292b7af4a311be321ac330eacb1f53863dec1449
kernel-rt-kvm-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: e16098fbf81ab7149424e7c89de9f490e8973e16549e5d8c1168980687344625
kernel-rt-kvm-debuginfo-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: d562d8700811792bc5765137dbf4510f2cc9af9dbe2eb50047f53268859b48ae
kernel-rt-trace-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 1e955877d3ad2c9d066edb0cc1dc421c4fe2bb6ecfda22b42c3abd97b190170b
kernel-rt-trace-debuginfo-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: c669f8fa8e0802a8f7a034a53b7f1912b5f20d003ccb7174b5829c16a3f609c4
kernel-rt-trace-devel-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: 3aab08730686ef0945dafd76a3163ce09ece7f10b0bc7dab71c3755c0d65ba90
kernel-rt-trace-kvm-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: f5e625b8915431e923381986d0a412ff269aa073581f5388cd93d89377cdc850
kernel-rt-trace-kvm-debuginfo-3.10.0-1062.4.3.rt56.1029.el7.x86_64.rpm SHA-256: af833bbd666d92290994d6e9284fd65a4a92a190d869a0b3e3f61e696a15a02f

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.