Red Hat Product Errata RHSA-2020:1378 - Security Advisory

Issued:: 2020-04-07
Updated:: 2020-04-07

RHSA-2020:1378 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: kernel-rt security and bug fix update

Type/Severity

Security Advisory: Moderate

Topic

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

kernel: use-after-free caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver (CVE-2019-19527)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

kernel-rt: update RT source tree to the RHEL-8.1.z3 source tree (BZ#1794136)
[kernel-rt-debug] BUG: MAX_LOCKDEP_CHAINS too low! (BZ#1794199)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

Red Hat Enterprise Linux for Real Time 8 x86_64
Red Hat Enterprise Linux for Real Time for NFV 8 x86_64

Fixes

BZ - 1783498 - CVE-2019-19527 kernel: use-after-free caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver
BZ - 1794199 - [kernel-rt-debug] BUG: MAX_LOCKDEP_CHAINS too low! [rhel-8.1.0.z]

CVEs

CVE-2019-19527

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for Real Time 8

SRPM
kernel-rt-4.18.0-147.8.1.rt24.101.el8_1.src.rpm	SHA-256: 37a7a52acf34cec10f976a35f28937053ead547c69fc10da0f59268fa0b1d0dd
x86_64
kernel-rt-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: bad2c22404874dcc0669ece90fbc925f75b46457fa7a415c9a123e64d0c8b8d5
kernel-rt-core-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: be86a9ebc02d02b925ca536e755d245eee63c909925246b28c1ea2d01209e1db
kernel-rt-debug-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 60ee1e60a4c500e2e7747757ea39f868ca07920882443900cd2d50ece322843f
kernel-rt-debug-core-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 54ba8a457c23fc1e4b9fd3cc2e45f40fc60f197a44e27a41a95d3bfcb4640803
kernel-rt-debug-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: a59bc8a4168fbb55c61c1e8a9e39053d205b23a3dc475308fdde7b3fda608571
kernel-rt-debug-devel-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: ca56b9d84d6ea8d27afd70d00c521cee52e011c559480ce837a639f0f9aceadb
kernel-rt-debug-kvm-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: bb5a77d54eb3c3ebe81a55d54a0ee2f52932a3ff745b43e1f4e25bbf5af24962
kernel-rt-debug-modules-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 7fa12bc59ca93bc2f17d0791ef16767c02eb0644aa77a02119118e5577cd3c2d
kernel-rt-debug-modules-extra-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 7903a250872b5f98c16a2e7e0f6930f242951578037e18e741a1bcf0182dc9f2
kernel-rt-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: a574d9570eb856f38b01c95f44fbde305c8ab000ca0c9b016a8aae7431b1d5c3
kernel-rt-debuginfo-common-x86_64-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 2a04cbf2b67e39c2be532c9cc2fe71092b8d837465036cb7b5b3cf8f281fec50
kernel-rt-devel-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 69c3a636a695020b14c18df75bba16706da81f3a98b9476c039069d9170171d1
kernel-rt-kvm-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 5e773d0cdedfc8997ecd41a6d38e5da645af309d91f57ef7eeafeff6ad65d2fe
kernel-rt-modules-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 3083fb19f7141a468c438e16d1e8fda3c56891b04d342bc817ab54c0adb48e81
kernel-rt-modules-extra-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 5b3687cae90cc224a4576a76e9aaed6b489f32427465584bb3fd4478bc927b27

Red Hat Enterprise Linux for Real Time for NFV 8

SRPM
kernel-rt-4.18.0-147.8.1.rt24.101.el8_1.src.rpm	SHA-256: 37a7a52acf34cec10f976a35f28937053ead547c69fc10da0f59268fa0b1d0dd
x86_64
kernel-rt-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: bad2c22404874dcc0669ece90fbc925f75b46457fa7a415c9a123e64d0c8b8d5
kernel-rt-core-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: be86a9ebc02d02b925ca536e755d245eee63c909925246b28c1ea2d01209e1db
kernel-rt-debug-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 60ee1e60a4c500e2e7747757ea39f868ca07920882443900cd2d50ece322843f
kernel-rt-debug-core-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 54ba8a457c23fc1e4b9fd3cc2e45f40fc60f197a44e27a41a95d3bfcb4640803
kernel-rt-debug-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: a59bc8a4168fbb55c61c1e8a9e39053d205b23a3dc475308fdde7b3fda608571
kernel-rt-debug-devel-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: ca56b9d84d6ea8d27afd70d00c521cee52e011c559480ce837a639f0f9aceadb
kernel-rt-debug-kvm-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 016dcd3d11d245d3045451efc331fda3d10a53abf61baf79fb75162ae7fb7791
kernel-rt-debug-kvm-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: bb5a77d54eb3c3ebe81a55d54a0ee2f52932a3ff745b43e1f4e25bbf5af24962
kernel-rt-debug-modules-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 7fa12bc59ca93bc2f17d0791ef16767c02eb0644aa77a02119118e5577cd3c2d
kernel-rt-debug-modules-extra-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 7903a250872b5f98c16a2e7e0f6930f242951578037e18e741a1bcf0182dc9f2
kernel-rt-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: a574d9570eb856f38b01c95f44fbde305c8ab000ca0c9b016a8aae7431b1d5c3
kernel-rt-debuginfo-common-x86_64-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 2a04cbf2b67e39c2be532c9cc2fe71092b8d837465036cb7b5b3cf8f281fec50
kernel-rt-devel-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 69c3a636a695020b14c18df75bba16706da81f3a98b9476c039069d9170171d1
kernel-rt-kvm-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 071108e204e94acdcedb93a4e85fad2788f4026bb3670f8407e2d2c5a2aa2cec
kernel-rt-kvm-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 5e773d0cdedfc8997ecd41a6d38e5da645af309d91f57ef7eeafeff6ad65d2fe
kernel-rt-modules-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 3083fb19f7141a468c438e16d1e8fda3c56891b04d342bc817ab54c0adb48e81
kernel-rt-modules-extra-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm	SHA-256: 5b3687cae90cc224a4576a76e9aaed6b489f32427465584bb3fd4478bc927b27

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation

Services

Tools

Red Hat Insights

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories