Red Hat Product Errata RHSA-2019:3936 - Security Advisory

Issued:: 2019-11-20
Updated:: 2019-11-20

RHSA-2019:3936 - Security Advisory

Overview
Updated Packages

Synopsis

Important: kpatch-patch security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kpatch-patch is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.

Security Fix(es):

hw: Machine Check Error on Page Size Change (IFU) (CVE-2018-12207)
hw: TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135)

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.2 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.1 x86_64
Red Hat Enterprise Linux Server - AUS 8.6 x86_64
Red Hat Enterprise Linux Server - AUS 8.4 x86_64
Red Hat Enterprise Linux Server - AUS 8.2 x86_64
Red Hat Enterprise Linux Server - TUS 8.6 x86_64
Red Hat Enterprise Linux Server - TUS 8.4 x86_64
Red Hat Enterprise Linux Server - TUS 8.2 x86_64
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4 x86_64
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.2 x86_64
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.1 x86_64

Fixes

BZ - 1646768 - CVE-2018-12207 hw: Machine Check Error on Page Size Change (IFU)
BZ - 1753062 - CVE-2019-11135 hw: TSX Transaction Asynchronous Abort (TAA)

CVEs

References

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 8

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.2

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.1

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux Server - AUS 8.6

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux Server - AUS 8.4

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux Server - AUS 8.2

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux Server - TUS 8.6

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux Server - TUS 8.4

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux Server - TUS 8.2

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.2

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.1

SRPM
kpatch-patch-4_18_0-147-1-3.el8_1.src.rpm	SHA-256: 555e6d48cc19ebc3b068e5f2c4aaf763f58253e30f5be4ef3b342d29b3b2b46e
x86_64
kpatch-patch-4_18_0-147-1-3.el8_1.x86_64.rpm	SHA-256: 4b4005f310e2383a7230543df5963c24c7b2a85e70d81c314bbb2523064267cd
kpatch-patch-4_18_0-147-debuginfo-1-3.el8_1.x86_64.rpm	SHA-256: ef0bbd72d159f9f185aefb94252b8bdc19bd2811b7980b5be5b0c2ce12353e62
kpatch-patch-4_18_0-147-debugsource-1-3.el8_1.x86_64.rpm	SHA-256: d845369f6d4c504f35fbff64db5c8e60e0734218cb4202cb26c399a58ec3d7d7

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation