Red Hat Product Errata RHSA-2020:1353 - Security Advisory

Issued:: 2020-04-07
Updated:: 2020-04-07

RHSA-2020:1353 - Security Advisory

Overview
Updated Packages

Synopsis

Important: kernel-rt security and bug fix update

Type/Severity

Security Advisory: Important

Topic

An update for kernel-rt is now available for Red Hat Enterprise MRG 2.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

kernel: heap overflow in mwifiex_update_vs_ie() function of Marvell WiFi driver (CVE-2019-14816)
kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow (CVE-2019-17666)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

update the MRG 2.5.z 3.10 realtime-kernel sources (BZ#1810602)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

MRG Realtime 2 x86_64

Fixes

BZ - 1744149 - CVE-2019-14816 kernel: heap overflow in mwifiex_update_vs_ie() function of Marvell WiFi driver
BZ - 1763690 - CVE-2019-17666 kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow
BZ - 1810602 - update the MRG 2.5.z 3.10 realtime-kernel sources

CVEs

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

MRG Realtime 2

SRPM
kernel-rt-3.10.0-693.65.1.rt56.663.el6rt.src.rpm	SHA-256: 644f7ef07320eb1a4447a2b18291829c505ecd4f23244d80118e95e1cf5a32c2
x86_64
kernel-rt-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: 29ef461f7517b3b7a60b9f48824d76f526b07837ec6d406bcff28b94171ee061
kernel-rt-debug-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: ebf317b745174c1cc337b10838e4139f2c1194584da7c18cc271217f6dc114eb
kernel-rt-debug-debuginfo-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: 5d2d92962fa9542fa69d5ba26c0c4ae682afac634f5d92afac44ccf27d26ca98
kernel-rt-debug-devel-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: 8a6832bfd82382644e572c8f78a61c3306126eb78ab7c530e6c0762080b3c9af
kernel-rt-debuginfo-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: 5ef0e9a07d14ed1f323fda127aee16e3e65a0a8ab76e2b04ce54cb0c3d4dac46
kernel-rt-debuginfo-common-x86_64-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: a7d4ef38ed6113bc3861b7c3bcc2f71cbab2e1bffbc8bfbd53013ca6cee35506
kernel-rt-devel-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: 7127c6fbc4d217c652affb26b58b2d5d938892b1804feb58489be1b4417d2302
kernel-rt-doc-3.10.0-693.65.1.rt56.663.el6rt.noarch.rpm	SHA-256: cfd3489d9ba50f6e14dfa9d0416c586f2ea44656056fe940ec1fc37bef44cc46
kernel-rt-firmware-3.10.0-693.65.1.rt56.663.el6rt.noarch.rpm	SHA-256: ea0e15a3f0db4793f0a78869abe2bb43e5cc65d70d6fac9ee782c33aff8dc266
kernel-rt-trace-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: d3e39f8f465e1e93944995e21377b8421d4991b520bbbc9cef4543410fc33ef4
kernel-rt-trace-debuginfo-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: fb24dfc384ad752b26f13f7e5e4efc3bc96f87911912b1479e0c12db81931348
kernel-rt-trace-devel-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: 70cd28b3f9c7f1800f23760896e2780bb8b96d68e472396526a837916017b177
kernel-rt-vanilla-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: 0d21386b7477438b21dfc7772f65ce53421a979f506319cee2eae26d3865d4bc
kernel-rt-vanilla-debuginfo-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: a7d0cf39f1faa77335fa7016eb6f260b4739cee2e80720340d557cfc686231e7
kernel-rt-vanilla-devel-3.10.0-693.65.1.rt56.663.el6rt.x86_64.rpm	SHA-256: 8ff0ea6f037d313b570036d343afd3b28ebbae2bc66284c04799195dd77560ac

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation

Services

Tools

Red Hat Insights

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories