- Issued:
- 2020-04-07
- Updated:
- 2020-04-07
RHSA-2020:1378 - Security Advisory
Synopsis
Moderate: kernel-rt security and bug fix update
Type/Severity
Security Advisory: Moderate
Topic
An update for kernel-rt is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
- kernel: use-after-free caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver (CVE-2019-19527)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
- kernel-rt: update RT source tree to the RHEL-8.1.z3 source tree (BZ#1794136)
- [kernel-rt-debug] BUG: MAX_LOCKDEP_CHAINS too low! (BZ#1794199)
Solution
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
The system must be rebooted for this update to take effect.
Affected Products
- Red Hat Enterprise Linux for Real Time 8 x86_64
- Red Hat Enterprise Linux for Real Time for NFV 8 x86_64
- Red Hat Enterprise Linux for Real Time - Telecommunications Update Service 8.2 x86_64
- Red Hat Enterprise Linux for Real Time for NFV - Telecommunications Update Service 8.2 x86_64
Fixes
- BZ - 1783498 - CVE-2019-19527 kernel: use-after-free caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver
- BZ - 1794199 - [kernel-rt-debug] BUG: MAX_LOCKDEP_CHAINS too low! [rhel-8.1.0.z]
CVEs
References
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux for Real Time 8
| SRPM | |
|---|---|
| kernel-rt-4.18.0-147.8.1.rt24.101.el8_1.src.rpm | SHA-256: 37a7a52acf34cec10f976a35f28937053ead547c69fc10da0f59268fa0b1d0dd |
| x86_64 | |
| kernel-rt-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: bad2c22404874dcc0669ece90fbc925f75b46457fa7a415c9a123e64d0c8b8d5 |
| kernel-rt-core-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: be86a9ebc02d02b925ca536e755d245eee63c909925246b28c1ea2d01209e1db |
| kernel-rt-debug-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 60ee1e60a4c500e2e7747757ea39f868ca07920882443900cd2d50ece322843f |
| kernel-rt-debug-core-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 54ba8a457c23fc1e4b9fd3cc2e45f40fc60f197a44e27a41a95d3bfcb4640803 |
| kernel-rt-debug-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: a59bc8a4168fbb55c61c1e8a9e39053d205b23a3dc475308fdde7b3fda608571 |
| kernel-rt-debug-devel-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: ca56b9d84d6ea8d27afd70d00c521cee52e011c559480ce837a639f0f9aceadb |
| kernel-rt-debug-kvm-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: bb5a77d54eb3c3ebe81a55d54a0ee2f52932a3ff745b43e1f4e25bbf5af24962 |
| kernel-rt-debug-modules-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 7fa12bc59ca93bc2f17d0791ef16767c02eb0644aa77a02119118e5577cd3c2d |
| kernel-rt-debug-modules-extra-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 7903a250872b5f98c16a2e7e0f6930f242951578037e18e741a1bcf0182dc9f2 |
| kernel-rt-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: a574d9570eb856f38b01c95f44fbde305c8ab000ca0c9b016a8aae7431b1d5c3 |
| kernel-rt-debuginfo-common-x86_64-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 2a04cbf2b67e39c2be532c9cc2fe71092b8d837465036cb7b5b3cf8f281fec50 |
| kernel-rt-devel-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 69c3a636a695020b14c18df75bba16706da81f3a98b9476c039069d9170171d1 |
| kernel-rt-kvm-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 5e773d0cdedfc8997ecd41a6d38e5da645af309d91f57ef7eeafeff6ad65d2fe |
| kernel-rt-modules-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 3083fb19f7141a468c438e16d1e8fda3c56891b04d342bc817ab54c0adb48e81 |
| kernel-rt-modules-extra-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 5b3687cae90cc224a4576a76e9aaed6b489f32427465584bb3fd4478bc927b27 |
Red Hat Enterprise Linux for Real Time for NFV 8
| SRPM | |
|---|---|
| kernel-rt-4.18.0-147.8.1.rt24.101.el8_1.src.rpm | SHA-256: 37a7a52acf34cec10f976a35f28937053ead547c69fc10da0f59268fa0b1d0dd |
| x86_64 | |
| kernel-rt-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: bad2c22404874dcc0669ece90fbc925f75b46457fa7a415c9a123e64d0c8b8d5 |
| kernel-rt-core-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: be86a9ebc02d02b925ca536e755d245eee63c909925246b28c1ea2d01209e1db |
| kernel-rt-debug-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 60ee1e60a4c500e2e7747757ea39f868ca07920882443900cd2d50ece322843f |
| kernel-rt-debug-core-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 54ba8a457c23fc1e4b9fd3cc2e45f40fc60f197a44e27a41a95d3bfcb4640803 |
| kernel-rt-debug-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: a59bc8a4168fbb55c61c1e8a9e39053d205b23a3dc475308fdde7b3fda608571 |
| kernel-rt-debug-devel-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: ca56b9d84d6ea8d27afd70d00c521cee52e011c559480ce837a639f0f9aceadb |
| kernel-rt-debug-kvm-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 016dcd3d11d245d3045451efc331fda3d10a53abf61baf79fb75162ae7fb7791 |
| kernel-rt-debug-kvm-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: bb5a77d54eb3c3ebe81a55d54a0ee2f52932a3ff745b43e1f4e25bbf5af24962 |
| kernel-rt-debug-modules-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 7fa12bc59ca93bc2f17d0791ef16767c02eb0644aa77a02119118e5577cd3c2d |
| kernel-rt-debug-modules-extra-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 7903a250872b5f98c16a2e7e0f6930f242951578037e18e741a1bcf0182dc9f2 |
| kernel-rt-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: a574d9570eb856f38b01c95f44fbde305c8ab000ca0c9b016a8aae7431b1d5c3 |
| kernel-rt-debuginfo-common-x86_64-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 2a04cbf2b67e39c2be532c9cc2fe71092b8d837465036cb7b5b3cf8f281fec50 |
| kernel-rt-devel-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 69c3a636a695020b14c18df75bba16706da81f3a98b9476c039069d9170171d1 |
| kernel-rt-kvm-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 071108e204e94acdcedb93a4e85fad2788f4026bb3670f8407e2d2c5a2aa2cec |
| kernel-rt-kvm-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 5e773d0cdedfc8997ecd41a6d38e5da645af309d91f57ef7eeafeff6ad65d2fe |
| kernel-rt-modules-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 3083fb19f7141a468c438e16d1e8fda3c56891b04d342bc817ab54c0adb48e81 |
| kernel-rt-modules-extra-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 5b3687cae90cc224a4576a76e9aaed6b489f32427465584bb3fd4478bc927b27 |
Red Hat Enterprise Linux for Real Time - Telecommunications Update Service 8.2
| SRPM | |
|---|---|
| kernel-rt-4.18.0-147.8.1.rt24.101.el8_1.src.rpm | SHA-256: 37a7a52acf34cec10f976a35f28937053ead547c69fc10da0f59268fa0b1d0dd |
| x86_64 | |
| kernel-rt-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: bad2c22404874dcc0669ece90fbc925f75b46457fa7a415c9a123e64d0c8b8d5 |
| kernel-rt-core-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: be86a9ebc02d02b925ca536e755d245eee63c909925246b28c1ea2d01209e1db |
| kernel-rt-debug-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 60ee1e60a4c500e2e7747757ea39f868ca07920882443900cd2d50ece322843f |
| kernel-rt-debug-core-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 54ba8a457c23fc1e4b9fd3cc2e45f40fc60f197a44e27a41a95d3bfcb4640803 |
| kernel-rt-debug-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: a59bc8a4168fbb55c61c1e8a9e39053d205b23a3dc475308fdde7b3fda608571 |
| kernel-rt-debug-devel-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: ca56b9d84d6ea8d27afd70d00c521cee52e011c559480ce837a639f0f9aceadb |
| kernel-rt-debug-kvm-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: bb5a77d54eb3c3ebe81a55d54a0ee2f52932a3ff745b43e1f4e25bbf5af24962 |
| kernel-rt-debug-modules-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 7fa12bc59ca93bc2f17d0791ef16767c02eb0644aa77a02119118e5577cd3c2d |
| kernel-rt-debug-modules-extra-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 7903a250872b5f98c16a2e7e0f6930f242951578037e18e741a1bcf0182dc9f2 |
| kernel-rt-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: a574d9570eb856f38b01c95f44fbde305c8ab000ca0c9b016a8aae7431b1d5c3 |
| kernel-rt-debuginfo-common-x86_64-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 2a04cbf2b67e39c2be532c9cc2fe71092b8d837465036cb7b5b3cf8f281fec50 |
| kernel-rt-devel-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 69c3a636a695020b14c18df75bba16706da81f3a98b9476c039069d9170171d1 |
| kernel-rt-kvm-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 5e773d0cdedfc8997ecd41a6d38e5da645af309d91f57ef7eeafeff6ad65d2fe |
| kernel-rt-modules-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 3083fb19f7141a468c438e16d1e8fda3c56891b04d342bc817ab54c0adb48e81 |
| kernel-rt-modules-extra-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 5b3687cae90cc224a4576a76e9aaed6b489f32427465584bb3fd4478bc927b27 |
Red Hat Enterprise Linux for Real Time for NFV - Telecommunications Update Service 8.2
| SRPM | |
|---|---|
| kernel-rt-4.18.0-147.8.1.rt24.101.el8_1.src.rpm | SHA-256: 37a7a52acf34cec10f976a35f28937053ead547c69fc10da0f59268fa0b1d0dd |
| x86_64 | |
| kernel-rt-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: bad2c22404874dcc0669ece90fbc925f75b46457fa7a415c9a123e64d0c8b8d5 |
| kernel-rt-core-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: be86a9ebc02d02b925ca536e755d245eee63c909925246b28c1ea2d01209e1db |
| kernel-rt-debug-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 60ee1e60a4c500e2e7747757ea39f868ca07920882443900cd2d50ece322843f |
| kernel-rt-debug-core-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 54ba8a457c23fc1e4b9fd3cc2e45f40fc60f197a44e27a41a95d3bfcb4640803 |
| kernel-rt-debug-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: a59bc8a4168fbb55c61c1e8a9e39053d205b23a3dc475308fdde7b3fda608571 |
| kernel-rt-debug-devel-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: ca56b9d84d6ea8d27afd70d00c521cee52e011c559480ce837a639f0f9aceadb |
| kernel-rt-debug-kvm-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 016dcd3d11d245d3045451efc331fda3d10a53abf61baf79fb75162ae7fb7791 |
| kernel-rt-debug-kvm-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: bb5a77d54eb3c3ebe81a55d54a0ee2f52932a3ff745b43e1f4e25bbf5af24962 |
| kernel-rt-debug-modules-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 7fa12bc59ca93bc2f17d0791ef16767c02eb0644aa77a02119118e5577cd3c2d |
| kernel-rt-debug-modules-extra-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 7903a250872b5f98c16a2e7e0f6930f242951578037e18e741a1bcf0182dc9f2 |
| kernel-rt-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: a574d9570eb856f38b01c95f44fbde305c8ab000ca0c9b016a8aae7431b1d5c3 |
| kernel-rt-debuginfo-common-x86_64-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 2a04cbf2b67e39c2be532c9cc2fe71092b8d837465036cb7b5b3cf8f281fec50 |
| kernel-rt-devel-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 69c3a636a695020b14c18df75bba16706da81f3a98b9476c039069d9170171d1 |
| kernel-rt-kvm-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 071108e204e94acdcedb93a4e85fad2788f4026bb3670f8407e2d2c5a2aa2cec |
| kernel-rt-kvm-debuginfo-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 5e773d0cdedfc8997ecd41a6d38e5da645af309d91f57ef7eeafeff6ad65d2fe |
| kernel-rt-modules-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 3083fb19f7141a468c438e16d1e8fda3c56891b04d342bc817ab54c0adb48e81 |
| kernel-rt-modules-extra-4.18.0-147.8.1.rt24.101.el8_1.x86_64.rpm | SHA-256: 5b3687cae90cc224a4576a76e9aaed6b489f32427465584bb3fd4478bc927b27 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.