- Issued:
- 2021-11-23
- Updated:
- 2021-11-23
RHSA-2021:4779 - Security Advisory
Synopsis
Important: kernel-rt security and bug fix update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update for kernel-rt is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
- kernel: use-after-free in drivers/infiniband/core/ucma.c ctx use-after-free (CVE-2020-36385)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
- BUG: scheduling while atomic: bz722926/3905/0x00000002 regresion case with zram (BZ#1833860)
- kernel-rt: update to the latest RHEL7.9.z10 source tree (BZ#2009077)
Solution
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
The system must be rebooted for this update to take effect.
Affected Products
- Red Hat Enterprise Linux for Real Time 7 x86_64
- Red Hat Enterprise Linux for Real Time for NFV 7 x86_64
Fixes
- BZ - 1833860 - BUG: scheduling while atomic: bz722926/3905/0x00000002 regresion case with zram
- BZ - 1974319 - CVE-2020-36385 kernel: use-after-free in drivers/infiniband/core/ucma.c ctx use-after-free
CVEs
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux for Real Time 7
| SRPM | |
|---|---|
| kernel-rt-3.10.0-1160.49.1.rt56.1189.el7.src.rpm | SHA-256: 592e19d6670ac86fe9033c1d1a763e9c78aa4fbf489c153dbee4b97052c20879 |
| x86_64 | |
| kernel-rt-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: 64f6ae268d999e499e60c45a5c8b554be163b98be4d3b4d043bc50159ffdf375 |
| kernel-rt-debug-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: f1dc52497ed0804c898cc281bf3f15f428110d015a03a46ef5ae102bd8a66870 |
| kernel-rt-debug-debuginfo-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: d27021c5ddafdf43a6cae61d6a0d264d5ca7b5b9547dcf709e604e7f996e1ff3 |
| kernel-rt-debug-devel-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: f365aebeb6de3074c887819ff6d8525f4db81f39e5d93acdda08b90e1fe6e128 |
| kernel-rt-debuginfo-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: 4e2b72b1857e575d784dede26af5e9b7469b2c0747febb1f8ef6065e2122f0a3 |
| kernel-rt-debuginfo-common-x86_64-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: 3ec179a15df1617c6c627debd2b448d7651dbb564e40b559b1757a84abc395d4 |
| kernel-rt-devel-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: 02a464aa38b4a9958b5bcbe579ffdaea038419f926992e867882ac5c31e5797b |
| kernel-rt-doc-3.10.0-1160.49.1.rt56.1189.el7.noarch.rpm | SHA-256: ed48d96b12262aa685986c49bb8d7728a6e7add50462d9b8b54c2512053b666e |
| kernel-rt-trace-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: a347687c73f3ae9546cf50ba8fba86af6d76d373de8b334a6e17c985e3805b5d |
| kernel-rt-trace-debuginfo-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: 660c614ac78dc6a8e2bb0e3038613a3c837f6f2268cf5df053db3c0fb54745ac |
| kernel-rt-trace-devel-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: d30a44cd7d4c43a7448656cb1151d8646c76345bc43deae8ef2978f5c186dc45 |
Red Hat Enterprise Linux for Real Time for NFV 7
| SRPM | |
|---|---|
| kernel-rt-3.10.0-1160.49.1.rt56.1189.el7.src.rpm | SHA-256: 592e19d6670ac86fe9033c1d1a763e9c78aa4fbf489c153dbee4b97052c20879 |
| x86_64 | |
| kernel-rt-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: 64f6ae268d999e499e60c45a5c8b554be163b98be4d3b4d043bc50159ffdf375 |
| kernel-rt-debug-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: f1dc52497ed0804c898cc281bf3f15f428110d015a03a46ef5ae102bd8a66870 |
| kernel-rt-debug-debuginfo-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: d27021c5ddafdf43a6cae61d6a0d264d5ca7b5b9547dcf709e604e7f996e1ff3 |
| kernel-rt-debug-devel-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: f365aebeb6de3074c887819ff6d8525f4db81f39e5d93acdda08b90e1fe6e128 |
| kernel-rt-debug-kvm-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: cf96ebeeba133a930ed0e3b1edf6e7696c7ce92653157ccf0d8c4897684c3db8 |
| kernel-rt-debug-kvm-debuginfo-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: a5905059895ca5f5f770f02d5d6a6f4886cb6e6d31e9cc791b26efe1888b1f40 |
| kernel-rt-debuginfo-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: 4e2b72b1857e575d784dede26af5e9b7469b2c0747febb1f8ef6065e2122f0a3 |
| kernel-rt-debuginfo-common-x86_64-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: 3ec179a15df1617c6c627debd2b448d7651dbb564e40b559b1757a84abc395d4 |
| kernel-rt-devel-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: 02a464aa38b4a9958b5bcbe579ffdaea038419f926992e867882ac5c31e5797b |
| kernel-rt-doc-3.10.0-1160.49.1.rt56.1189.el7.noarch.rpm | SHA-256: ed48d96b12262aa685986c49bb8d7728a6e7add50462d9b8b54c2512053b666e |
| kernel-rt-kvm-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: a78068694e2f47fa306b72fd6487bc305db947c7ee864ffc243cdcace9fe64c2 |
| kernel-rt-kvm-debuginfo-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: d57f47725105814b54fde57ecb5d28241d0b38ed518796cbd2eb97ac31b51000 |
| kernel-rt-trace-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: a347687c73f3ae9546cf50ba8fba86af6d76d373de8b334a6e17c985e3805b5d |
| kernel-rt-trace-debuginfo-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: 660c614ac78dc6a8e2bb0e3038613a3c837f6f2268cf5df053db3c0fb54745ac |
| kernel-rt-trace-devel-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: d30a44cd7d4c43a7448656cb1151d8646c76345bc43deae8ef2978f5c186dc45 |
| kernel-rt-trace-kvm-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: ae80192f14ce5ab964ad3a8c2a6877cea89796ee93b33738e2fc97b6a5e2adf2 |
| kernel-rt-trace-kvm-debuginfo-3.10.0-1160.49.1.rt56.1189.el7.x86_64.rpm | SHA-256: a2ef29ef6d0e5668f9d82281ee8400d13d8842ba38d5e62dbea9648c318d62ba |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
