Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Products & Services

    Products

    Support

    • Production Support
    • Development Support
    • Product Life Cycles

    Services

    • Consulting
    • Technical Account Management
    • Training & Certifications

    Documentation

    • Red Hat Enterprise Linux
    • Red Hat JBoss Enterprise Application Platform
    • Red Hat OpenStack Platform
    • Red Hat OpenShift Container Platform
    All Documentation

    Ecosystem Catalog

    • Red Hat Partner Ecosystem
    • Partner Resources
  • Tools

    Tools

    • Troubleshoot a product issue
    • Packages
    • Errata

    Customer Portal Labs

    • Configuration
    • Deployment
    • Security
    • Troubleshoot
    All labs

    Red Hat Insights

    Increase visibility into IT operations to detect and resolve technical issues before they impact your business.

    Learn More
    Go to Insights
  • Security

    Red Hat Product Security Center

    Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities.

    Product Security Center

    Security Updates

    • Security Advisories
    • Red Hat CVE Database
    • Security Labs

    Keep your systems secure with Red Hat's specialized responses to security vulnerabilities.

    View Responses

    Resources

    • Security Blog
    • Security Measurement
    • Severity Ratings
    • Backporting Policies
    • Product Signing (GPG) Keys
  • Community

    Customer Portal Community

    • Discussions
    • Private Groups
    Community Activity

    Customer Events

    • Red Hat Convergence
    • Red Hat Summit

    Stories

    • Red Hat Subscription Value
    • You Asked. We Acted.
    • Open Source Communities
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift Container Platform
  • Red Hat OpenShift Data Science
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat Single Sign On
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHSA-2021:4768 - Security Advisory
Issued:
2021-11-23
Updated:
2021-11-23

RHSA-2021:4768 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: kernel security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: use-after-free in drivers/infiniband/core/ucma.c ctx use-after-free (CVE-2020-36385)
  • kernel: SVM nested virtualization issue in KVM (AVIC support) (CVE-2021-3653)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux Server - AUS 7.3 x86_64

Fixes

  • BZ - 1974319 - CVE-2020-36385 kernel: use-after-free in drivers/infiniband/core/ucma.c ctx use-after-free
  • BZ - 1983686 - CVE-2021-3653 kernel: SVM nested virtualization issue in KVM (AVIC support)

CVEs

  • CVE-2020-36385
  • CVE-2021-3653

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 7.3

SRPM
kernel-3.10.0-514.95.1.el7.src.rpm SHA-256: 8b5db5326bb6352306e612e771f0ff238c0a7d7aa57bda9f16433a360fc095c2
x86_64
kernel-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 3770eaf25b61f1e345ef57f7b0f993fb1fecd873552bba6f8dd51c8dcaf69f8e
kernel-abi-whitelists-3.10.0-514.95.1.el7.noarch.rpm SHA-256: a79d785bc3b704eb36c70628e2b197c6c88f6931aa04ec4957ad2117b5fbacd5
kernel-debug-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 865bc2fc25215122371e752b931d14a10e825f83ece448ffd872e2b39ad1c60c
kernel-debug-debuginfo-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 66e8fa81d6176fabb80c88860aaad3a7a3afeafe594b0077102fc32ecf1a10e7
kernel-debug-debuginfo-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 66e8fa81d6176fabb80c88860aaad3a7a3afeafe594b0077102fc32ecf1a10e7
kernel-debug-devel-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: fc831c413465e7c326d6047a6605bf7fd30b52bf71f8fb3f5f02c7aab9f8ed9b
kernel-debuginfo-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 55b2dbdf4ff33bcfb05818fc34cf7ae324f159322f9d77623cb03eff44971821
kernel-debuginfo-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 55b2dbdf4ff33bcfb05818fc34cf7ae324f159322f9d77623cb03eff44971821
kernel-debuginfo-common-x86_64-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 962c977e497f50c754cad499d78b74554f7b3d1196ea03f1dff031f429fb75a2
kernel-debuginfo-common-x86_64-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 962c977e497f50c754cad499d78b74554f7b3d1196ea03f1dff031f429fb75a2
kernel-devel-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: d46c14b311670c87ce7469e820c9f79619dd9e4c7f2d0f4027c8fd1c235cb0c9
kernel-doc-3.10.0-514.95.1.el7.noarch.rpm SHA-256: a0617c2ac7e37565b28b1b00169d165a2744e011ff30dff078cef740d5796f2f
kernel-headers-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 435b8c2e207b9a9f4a0969f9267cab443b3631566d2d379343181b5d362ece81
kernel-tools-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 9c008198db1f25a9bd0220daa5947db2176badcae3fa8e08119bd316eb60b125
kernel-tools-debuginfo-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: afa890b9f2a32c0c9125122adf703323a276d36ae0b3f5fc6ff2147bc5a54d6f
kernel-tools-debuginfo-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: afa890b9f2a32c0c9125122adf703323a276d36ae0b3f5fc6ff2147bc5a54d6f
kernel-tools-libs-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 96750029e9e21b5c0e7f71cfc982d70963ec9255b618e44361127f127ce49237
kernel-tools-libs-devel-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: aec96767a40451f89b1590474f210bc96e7ba481dd63cf24c6a2b01728835adf
perf-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: cceb4f1a08dbff48f86da8cd1bc150747f962d1d78a81d2f0c03712e98f87767
perf-debuginfo-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: bd4d9f399d27569f2874677df2fbb5dbe3e660f2cbee78f335534863e9a18320
perf-debuginfo-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: bd4d9f399d27569f2874677df2fbb5dbe3e660f2cbee78f335534863e9a18320
python-perf-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 483831b8b5a6cfc6ff9c1b1693e4e81e18e9bacb52c1add426f5eeb6c7785865
python-perf-debuginfo-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 7170dffbdd5a8efe5e15aaa5c1040e78929dbd07b4c4b79571d1fc6e1419987f
python-perf-debuginfo-3.10.0-514.95.1.el7.x86_64.rpm SHA-256: 7170dffbdd5a8efe5e15aaa5c1040e78929dbd07b4c4b79571d1fc6e1419987f

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

About

  • Red Hat Subscription Value
  • About Red Hat
  • Red Hat Jobs
2023
  • Privacy Statement
  • Terms of Use
  • All Policies and Guidelines
We've updated our <a href='http://www.redhat.com/en/about/privacy-policy' class='privacy-policy'>Privacy Statement</a> effective September 15, 2023.
Red Hat Summit Red Hat Summit
Twitter