Stay Vigilant with Timely Linux Security Advisories

Loading...

security advisoryRed Hatupdate

RedHat: RHSA-2019-3843-01 Important Kernel Update for Enterprise Linux

An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, . -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security update Advisory ID: RHSA-2019:3843-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:3843 Issue date: 2019-11-12 CVE Names: CVE-2018-12207 CVE-2019-11135 ==================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server AUS (v. 6.5) - noarch, x86_64 Red Hat Enterprise Linux Server Optional AUS (v. 6.5) - x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * hw: Machine Check Error on Page Size Change (IFU) (CVE-2018-12207) * hw: TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed(https://bugzilla.redhat.com/): 1646768 - CVE-2018-12207 hw: Machine Check Error on Page Size Change (IPU) 1753062 - CVE-2019-11135 hw: TSX Transaction Asynchronous Abort (TAA) 6. Package List: Red Hat Enterprise Linux Server AUS (v. 6.5): Source: kernel-2.6.32-431.96.3.el6.src.rpm noarch: kernel-abi-whitelists-2.6.32-431.96.3.el6.noarch.rpm kernel-doc-2.6.32-431.96.3.el6.noarch.rpm kernel-firmware-2.6.32-431.96.3.el6.noarch.rpm x86_64: kernel-2.6.32-431.96.3.el6.x86_64.rpm kernel-debug-2.6.32-431.96.3.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-431.96.3.el6.x86_64.rpm kernel-debug-devel-2.6.32-431.96.3.el6.x86_64.rpm kernel-debuginfo-2.6.32-431.96.3.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-431.96.3.el6.x86_64.rpm kernel-devel-2.6.32-431.96.3.el6.x86_64.rpm kernel-headers-2.6.32-431.96.3.el6.x86_64.rpm perf-2.6.32-431.96.3.el6.x86_64.rpm perf-debuginfo-2.6.32-431.96.3.el6.x86_64.rpm python-perf-debuginfo-2.6.32-431.96.3.el6.x86_64.rpm Red Hat Enterprise Linux Server Optional AUS (v. 6.5): Source: kernel-2.6.32-431.96.3.el6.src.rpm x86_64: kernel-debug-debuginfo-2.6.32-431.96.3.el6.x86_64.rpm kernel-debuginfo-2.6.32-431.96.3.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-431.96.3.el6.x86_64.rpm perf-debuginfo-2.6.32-431.96.3.el6.x86_64.rpm python-perf-2.6.32-431.96.3.el6.x86_64.rpm python-perf-debuginfo-2.6.32-431.96.3.el6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2018-12207 https://access.redhat.com/security/cve/CVE-2019-11135 https://access.redhat.com/security/updates/classification#important https://access.redhat.com/security/vulnerabilities/ifu-page-mce https://access.redhat.com/articles/tsx-asynchronousabort 8. Contact: The Red Hat security contact is . More contact details athttps://access.redhat.com/security/team/contact Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE-----Version: GnuPG v1 iQIVAwUBXcsf6tzjgjWX9erEAQhcqw/+LJgUfTBTLoJxYGtyXpxxyROuFMqA12Pt a9nGRv4GqsJOTszuy+o9PlVUIs+y7JuPXclSpBZTxdamXScG3IbJ5Tk7iZGAiJWb PlWuiczI+dc6MgPAN+tis9Qmc74gRRhrdjdpbTTEV1GS0gQMeM/xjwf4Hr8Q6HJ0 afD8gkoNzFUYuYt+iEw/BUY5JNpBPhnvNwtwvl7ewGuoHq4ZKCr/1BDD/mQMWZy0 b5gL470zGqdYoGFln2g2HDNvmlE95TFJImkTot0+VmRZH+ornJh1wvUYXazTjU+D mOQVvmPTSuEzBgu7VH6a8rDaV7tbgehWUe7x4igcFWL0Rj2nAYSL6poug1Fq2zgQ 7xkF7stD66tLJcoBSsxMkeXcFUHiCuSo71QxVoEmnQZ6bssPw0vohxyLaYhEH8W0 69ZOv/NO9J28Ck41IwEa3bqPOC+e3DnRQa+0rv2RcYOwRkWmLwgajv8O7f0+R8Vl iDzMDxhbNT5iADGUF9YMxfBVhXUoY4gRHTxEplGHrryYsmi5vzfbYnEuqoSET4yi jprS4d89XnvaH/uH2oCrZOKwA8sD4yMLbxGODBERZpTCuiTLnLmafSGgTIkYYVZe Enm0opVs0jBo3i0NT99deQheOcBR49VcDwhL9vL4Ig0DzR07I16TlNEFBuYH9nQ9 jLR9Gdq7vTo=/713 -----END PGP SIGNATURE-------RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Kernel patch for Red Hat Enterprise Linux addressing severe security vulnerabilities. Incorporates essential remedies for significant concerns.. Kernel Update, Red Hat Security, Linux Advisory, Important Fixes, Enterprise Linux. . Severity: Important. LinuxSecurity.com Team

Nov 12, 2019 •Important Red Hat

security advisorykernel updateRed Hat Enterprise Linux

RedHat Enterprise Linux 7.6 RHSA-2019:3837-01 Important: Kernel Update

An update for kernel is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, . -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security update Advisory ID: RHSA-2019:3837-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:3837 Issue date: 2019-11-12 CVE Names: CVE-2018-12207 CVE-2019-0154 CVE-2019-11135 ==================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux ComputeNode EUS (v. 7.6) - noarch, x86_64 Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6) - x86_64 Red Hat Enterprise Linux Server EUS (v. 7.6) - noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional EUS (v. 7.6) - ppc64, ppc64le, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * hw: Machine Check Error on Page Size Change (IFU) (CVE-2018-12207) * hw: TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135) * hw: Intel GPU Denial Of Service while accessing MMIO in lower power state (CVE-2019-0154) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s)listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1646768 - CVE-2018-12207 hw: Machine Check Error on Page Size Change (IPU) 1724393 - CVE-2019-0154 hw: Intel GPU Denial Of Service while accessing MMIO in lower power state 1753062 - CVE-2019-11135 hw: TSX Transaction Asynchronous Abort (TAA) 6. Package List: Red Hat Enterprise Linux ComputeNode EUS (v. 7.6): Source: kernel-3.10.0-957.38.2.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-957.38.2.el7.noarch.rpm kernel-doc-3.10.0-957.38.2.el7.noarch.rpm x86_64: bpftool-3.10.0-957.38.2.el7.x86_64.rpm kernel-3.10.0-957.38.2.el7.x86_64.rpm kernel-debug-3.10.0-957.38.2.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm kernel-debug-devel-3.10.0-957.38.2.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.38.2.el7.x86_64.rpm kernel-devel-3.10.0-957.38.2.el7.x86_64.rpm kernel-headers-3.10.0-957.38.2.el7.x86_64.rpm kernel-tools-3.10.0-957.38.2.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm kernel-tools-libs-3.10.0-957.38.2.el7.x86_64.rpm perf-3.10.0-957.38.2.el7.x86_64.rpm perf-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm python-perf-3.10.0-957.38.2.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6): x86_64: kernel-debug-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.38.2.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-957.38.2.el7.x86_64.rpm perf-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm Red Hat EnterpriseLinux Server EUS (v.7.6): Source: kernel-3.10.0-957.38.2.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-957.38.2.el7.noarch.rpm kernel-doc-3.10.0-957.38.2.el7.noarch.rpm ppc64: kernel-3.10.0-957.38.2.el7.ppc64.rpm kernel-bootwrapper-3.10.0-957.38.2.el7.ppc64.rpm kernel-debug-3.10.0-957.38.2.el7.ppc64.rpm kernel-debug-debuginfo-3.10.0-957.38.2.el7.ppc64.rpm kernel-debug-devel-3.10.0-957.38.2.el7.ppc64.rpm kernel-debuginfo-3.10.0-957.38.2.el7.ppc64.rpm kernel-debuginfo-common-ppc64-3.10.0-957.38.2.el7.ppc64.rpm kernel-devel-3.10.0-957.38.2.el7.ppc64.rpm kernel-headers-3.10.0-957.38.2.el7.ppc64.rpm kernel-tools-3.10.0-957.38.2.el7.ppc64.rpm kernel-tools-debuginfo-3.10.0-957.38.2.el7.ppc64.rpm kernel-tools-libs-3.10.0-957.38.2.el7.ppc64.rpm perf-3.10.0-957.38.2.el7.ppc64.rpm perf-debuginfo-3.10.0-957.38.2.el7.ppc64.rpm python-perf-3.10.0-957.38.2.el7.ppc64.rpm python-perf-debuginfo-3.10.0-957.38.2.el7.ppc64.rpm ppc64le: kernel-3.10.0-957.38.2.el7.ppc64le.rpm kernel-bootwrapper-3.10.0-957.38.2.el7.ppc64le.rpm kernel-debug-3.10.0-957.38.2.el7.ppc64le.rpm kernel-debug-debuginfo-3.10.0-957.38.2.el7.ppc64le.rpm kernel-debuginfo-3.10.0-957.38.2.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-957.38.2.el7.ppc64le.rpm kernel-devel-3.10.0-957.38.2.el7.ppc64le.rpm kernel-headers-3.10.0-957.38.2.el7.ppc64le.rpm kernel-tools-3.10.0-957.38.2.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-957.38.2.el7.ppc64le.rpm kernel-tools-libs-3.10.0-957.38.2.el7.ppc64le.rpm perf-3.10.0-957.38.2.el7.ppc64le.rpm perf-debuginfo-3.10.0-957.38.2.el7.ppc64le.rpm python-perf-3.10.0-957.38.2.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-957.38.2.el7.ppc64le.rpm s390x: kernel-3.10.0-957.38.2.el7.s390x.rpm kernel-debug-3.10.0-957.38.2.el7.s390x.rpm kernel-debug-debuginfo-3.10.0-957.38.2.el7.s390x.rpm kernel-debug-devel-3.10.0-957.38.2.el7.s390x.rpm kernel-debuginfo-3.10.0-957.38.2.el7.s390x.rpm kernel-debuginfo-common-s390x-3.10.0-957.38.2.el7.s390x.rpm kernel-devel-3.10.0-957.38.2.el7.s390x.rpm kernel-headers-3.10.0-957.38.2.el7.s390x.rpm kernel-kdump-3.10.0-957.38.2.el7.s390x.rpm kernel-kdump-debuginfo-3.10.0-957.38.2.el7.s390x.rpm kernel-kdump-devel-3.10.0-957.38.2.el7.s390x.rpm perf-3.10.0-957.38.2.el7.s390x.rpm perf-debuginfo-3.10.0-957.38.2.el7.s390x.rpm python-perf-3.10.0-957.38.2.el7.s390x.rpm python-perf-debuginfo-3.10.0-957.38.2.el7.s390x.rpm x86_64: bpftool-3.10.0-957.38.2.el7.x86_64.rpm kernel-3.10.0-957.38.2.el7.x86_64.rpm kernel-debug-3.10.0-957.38.2.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm kernel-debug-devel-3.10.0-957.38.2.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.38.2.el7.x86_64.rpm kernel-devel-3.10.0-957.38.2.el7.x86_64.rpm kernel-headers-3.10.0-957.38.2.el7.x86_64.rpm kernel-tools-3.10.0-957.38.2.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm kernel-tools-libs-3.10.0-957.38.2.el7.x86_64.rpm perf-3.10.0-957.38.2.el7.x86_64.rpm perf-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm python-perf-3.10.0-957.38.2.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional EUS (v.7.6): ppc64: kernel-debug-debuginfo-3.10.0-957.38.2.el7.ppc64.rpm kernel-debuginfo-3.10.0-957.38.2.el7.ppc64.rpm kernel-debuginfo-common-ppc64-3.10.0-957.38.2.el7.ppc64.rpm kernel-tools-debuginfo-3.10.0-957.38.2.el7.ppc64.rpm kernel-tools-libs-devel-3.10.0-957.38.2.el7.ppc64.rpm perf-debuginfo-3.10.0-957.38.2.el7.ppc64.rpm python-perf-debuginfo-3.10.0-957.38.2.el7.ppc64.rpm ppc64le: kernel-debug-debuginfo-3.10.0-957.38.2.el7.ppc64le.rpm kernel-debug-devel-3.10.0-957.38.2.el7.ppc64le.rpm kernel-debuginfo-3.10.0-957.38.2.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-957.38.2.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-957.38.2.el7.ppc64le.rpm kernel-tools-libs-devel-3.10.0-957.38.2.el7.ppc64le.rpm perf-debuginfo-3.10.0-957.38.2.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-957.38.2.el7.ppc64le.rpm x86_64: kernel-debug-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.38.2.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-957.38.2.el7.x86_64.rpm perf-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.38.2.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2018-12207 https://access.redhat.com/security/cve/CVE-2019-0154 https://access.redhat.com/security/cve/CVE-2019-11135 https://access.redhat.com/security/updates/classification#important https://access.redhat.com/security/vulnerabilities/ifu-page-mce https://access.redhat.com/articles/tsx-asynchronousabort https://access.redhat.com/solutions/i915-graphics 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE-----Version: GnuPGv1 iQIVAwUBXcsZ1dzjgjWX9erEAQgUOA/9Fa+5RMJYOBRfAeQagg7CB0GBHbYS05+V 8VH5/4cDsXh9DwZ4nKusBmZrvwdhMtzNVgEfw5zGAAsIEDHyAqiMhdaA42bmroee ITQISqoEQVXZp4xVvPRdgPzIQSzEGD9yW3VOt45Wy+inupSnlJwlT3L9qEi6tgSC 8NU2gG+Of3/xX6JDI3KJPGTWL2MQcJxYJ0h1sgaP9zBJmRZyVB6tLYl6f3dPSoGU MmcWWULrWxTAqZ2K20yvVupnUIiABTh2sXZR8scTQrwR9xoEI2Nwe6N2mr97Fb3F rg1adgdZSEB/wnRFMN+gtaBuwuAOaCATIKRC2i/Dj9Ui54zi1whxlzHgiblxrdQi /XDWgT/kE3jgV93U6CExq4LSx2SRubNP5RTfq137U4nGoHcvEHnKsJ4zzTYQFN4d PPM4Dzkf5679zDwue90YBoKiYY9z9NPdHTDOWSDXrfRo/KUSM8u87PcCxFGzJ1v3 kNjEU6PqU4T9l2vAz6bkEWtxCuEJSaOfDVQbWDV+osCurSoHScmQkvqD9+dwWqF7 QNIN7qTjWrJXVxMsZRkPeQ0GYzx37dupX7Iaan8aOm3GniHPDlSoBexDUh1yTw4i eJWZ0xe5/a+CsYjygH91zMY8h+hh7du3zCZybDRgM0F/nAP0VjYqVdxG4eCLS81d 4A4fqvplnak=oaMk -----END PGP SIGNATURE-------RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Red Hat's critical kernel patch tackles security vulnerabilities such as Denial of Service and hardware check failures.. RedHat Kernel Update, Important Security Advisory, Linux Enterprise Update, Denial Of Service. . Severity: Important. LinuxSecurity.com Team

Nov 12, 2019 •Important Red Hat

security advisoryupdateimportant

Red Hat 7: RHSA-2019-3860 Important: Virtualization Host Security Fix

An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7 and Red Hat Virtualization 4.2 for Red Hat Enterprise Linux 7.6 EUS. . -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: redhat-release-virtualization-host and redhat-virtualization-host update Advisory ID: RHSA-2019:3860-01 Product: Red Hat Virtualization Advisory URL: https://access.redhat.com/errata/RHSA-2019:3860 Issue date: 2019-11-12 CVE Names: CVE-2018-12207 CVE-2019-11135 ==================================================================== 1. Summary: An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7 and Red Hat Virtualization 4.2 for Red Hat Enterprise Linux 7.6 EUS. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: RHEL 7-based RHEV-H for RHEV 4 (build requirements) - noarch, x86_64 RHEL 7-based RHEV-H for RHEV 4.2 (build requirements) - noarch, x86_64 Red Hat Virtualization 4 Hypervisor for RHEL 7 - noarch Red Hat Virtualization 4.2 Hypervisor for RHEL 7.6 EUS - noarch, x86_64 3. Description: The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface formonitoring the host's resources and performing administrative tasks. The ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. Security Fix(es): * hw: Machine Check Error on Page Size Change (IFU) (CVE-2018-12207) * hw: TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/2974891 5. Bugs fixed (https://bugzilla.redhat.com/): 1646768 - CVE-2018-12207 hw: Machine Check Error on Page Size Change (IPU) 1753062 - CVE-2019-11135 hw: TSX Transaction Asynchronous Abort (TAA) 6. Package List: Red Hat Virtualization 4.2 Hypervisor for RHEL 7.6 EUS: Source: redhat-release-virtualization-host-4.2-16.1.el7.src.rpm redhat-virtualization-host-4.2-20191107.0.el7_6.src.rpm noarch: redhat-virtualization-host-image-update-4.2-20191107.0.el7_6.noarch.rpm redhat-virtualization-host-image-update-placeholder-4.2-16.1.el7.noarch.rpm x86_64: redhat-release-virtualization-host-4.2-16.1.el7.x86_64.rpm redhat-release-virtualization-host-content-4.2-16.1.el7.x86_64.rpm RHEL 7-based RHEV-H for RHEV 4.2 (build requirements): Source: redhat-release-virtualization-host-4.2-16.1.el7.src.rpm noarch: redhat-virtualization-host-image-update-placeholder-4.2-16.1.el7.noarch.rpm x86_64: redhat-release-virtualization-host-4.2-16.1.el7.x86_64.rpm Red Hat Virtualization 4 Hypervisor forRHEL 7: Source: redhat-virtualization-host-4.3.6-20191108.0.el7_7.src.rpm noarch: redhat-virtualization-host-image-update-4.3.6-20191108.0.el7_7.noarch.rpm RHEL 7-based RHEV-H for RHEV 4 (build requirements): Source: redhat-release-virtualization-host-4.3.6-5.el7ev.src.rpm redhat-virtualization-host-4.3.6-20191108.0.el7_7.src.rpm noarch: redhat-virtualization-host-image-update-4.3.6-20191108.0.el7_7.noarch.rpm redhat-virtualization-host-image-update-placeholder-4.3.6-5.el7ev.noarch.rpm x86_64: redhat-release-virtualization-host-4.3.6-5.el7ev.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2018-12207 https://access.redhat.com/security/cve/CVE-2019-11135 https://access.redhat.com/security/updates/classification#important https://access.redhat.com/security/vulnerabilities/ifu-page-mce https://access.redhat.com/articles/tsx-asynchronousabort 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE-----Version: GnuPG v1 iQIVAwUBXcsR2tzjgjWX9erEAQiAUA/9E2bx3AwclSdnlsmxzpAWVPiIsGROQ/7/ MIwr58ZcGsC+lXzV7nCo8maOmuDX8nBsJBgct5Jcnh+ZfNCFFDCvstDkLvBVwZsD VN0OIRlxkk7yPowfkrQo8N0wkEIwL+2WIBSdO0ubolhjiLSPxjwl6UvLwnemEHIo 1kfU7/RJD1V8K8jdF5TezPVNSYBOgBFR6kflt6TlSlO3rgQDs17qSrMIZ+PU0g9B lEkOwMSw9UPQsDhaamWD5oUdVy9BO1/CexnIK8dainxasj/D+j2S6X95vICx8nHi WCM90CvOmwLWalwrqAJdTxwlrgvbfBzSeF24Ry2L4oGODH2YFoBMYIZGDTa6op4/ EIotVNsTKKJTdawmGJ/ehIJ0lAbErFwhh126qmPBAi7PvAaVk+g+S7GFMU4XPl38 q08ZPN94dX1BOYRGxctYFgqHz32h11K1cHvSVBwm22XmnNAIZ8nYk4IShzIp3b8M yz2Sn8qXXyNGv2IVVuEK/PfdQAqtjp5576/zNhUC03Ntsx8nc5QqtdVUDJOPbOLN k2SVRUy0mR65vJb2qBGoGzGHsd2QAkJMaPfKFRikgnoEfI6C8yhaLby/mFQOmFtD OKzGxoVvzBTPTU6/9vCvv9xb280qhiDs0dSJwtICLkXaQ3M3/hJsu1XZp/T7tjp1 MW2wQ4SJYW4=zKEr -----END PGPSIGNATURE-------RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Crucial patch released for Red Hat Virtualization servers to mitigate severe security vulnerabilities.. red hat virtualization, redhat release, security advisory, machine check error, transaction async abort. . Severity: Important. LinuxSecurity.com Team

Nov 12, 2019 •Important Red Hat

security advisoryRed Hatupdate

Red Hat Enterprise Linux 8: RHSA-2019-3832-01 Critical Kernel DoS Issue

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability . -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security update Advisory ID: RHSA-2019:3832-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:3832 Issue date: 2019-11-12 CVE Names: CVE-2018-12207 CVE-2019-0154 CVE-2019-11135 ==================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat CodeReady Linux Builder (v. 8) - aarch64, ppc64le, x86_64 Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * hw: Machine Check Error on Page Size Change (IFU) (CVE-2018-12207) * hw: TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135) * hw: Intel GPU Denial Of Service while accessing MMIO in lower power state (CVE-2019-0154) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described inthis advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1646768 - CVE-2018-12207 hw: Machine Check Error on Page Size Change (IPU) 1724393 - CVE-2019-0154 hw: Intel GPU Denial Of Service while accessing MMIO in lower power state 1753062 - CVE-2019-11135 hw: TSX Transaction Asynchronous Abort (TAA) 6. Package List: Red Hat Enterprise Linux BaseOS (v.8): Source: kernel-4.18.0-147.0.2.el8_1.src.rpm aarch64: bpftool-4.18.0-147.0.2.el8_1.aarch64.rpm bpftool-debuginfo-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-core-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-cross-headers-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-debug-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-debug-core-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-debug-debuginfo-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-debug-devel-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-debug-modules-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-debug-modules-extra-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-debuginfo-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-debuginfo-common-aarch64-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-devel-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-headers-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-modules-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-modules-extra-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-tools-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-tools-debuginfo-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-tools-libs-4.18.0-147.0.2.el8_1.aarch64.rpm perf-4.18.0-147.0.2.el8_1.aarch64.rpm perf-debuginfo-4.18.0-147.0.2.el8_1.aarch64.rpm python3-perf-4.18.0-147.0.2.el8_1.aarch64.rpm python3-perf-debuginfo-4.18.0-147.0.2.el8_1.aarch64.rpm noarch: kernel-abi-whitelists-4.18.0-147.0.2.el8_1.noarch.rpm kernel-doc-4.18.0-147.0.2.el8_1.noarch.rpm ppc64le: bpftool-4.18.0-147.0.2.el8_1.ppc64le.rpm bpftool-debuginfo-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-core-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-cross-headers-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-debug-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-debug-core-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-debug-debuginfo-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-debug-devel-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-debug-modules-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-debug-modules-extra-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-debuginfo-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-debuginfo-common-ppc64le-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-devel-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-headers-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-modules-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-modules-extra-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-tools-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-tools-debuginfo-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-tools-libs-4.18.0-147.0.2.el8_1.ppc64le.rpm perf-4.18.0-147.0.2.el8_1.ppc64le.rpm perf-debuginfo-4.18.0-147.0.2.el8_1.ppc64le.rpm python3-perf-4.18.0-147.0.2.el8_1.ppc64le.rpm python3-perf-debuginfo-4.18.0-147.0.2.el8_1.ppc64le.rpm s390x: bpftool-4.18.0-147.0.2.el8_1.s390x.rpm bpftool-debuginfo-4.18.0-147.0.2.el8_1.s390x.rpm kernel-4.18.0-147.0.2.el8_1.s390x.rpm kernel-core-4.18.0-147.0.2.el8_1.s390x.rpm kernel-cross-headers-4.18.0-147.0.2.el8_1.s390x.rpm kernel-debug-4.18.0-147.0.2.el8_1.s390x.rpm kernel-debug-core-4.18.0-147.0.2.el8_1.s390x.rpm kernel-debug-debuginfo-4.18.0-147.0.2.el8_1.s390x.rpm kernel-debug-devel-4.18.0-147.0.2.el8_1.s390x.rpm kernel-debug-modules-4.18.0-147.0.2.el8_1.s390x.rpm kernel-debug-modules-extra-4.18.0-147.0.2.el8_1.s390x.rpm kernel-debuginfo-4.18.0-147.0.2.el8_1.s390x.rpm kernel-debuginfo-common-s390x-4.18.0-147.0.2.el8_1.s390x.rpm kernel-devel-4.18.0-147.0.2.el8_1.s390x.rpm kernel-headers-4.18.0-147.0.2.el8_1.s390x.rpm kernel-modules-4.18.0-147.0.2.el8_1.s390x.rpm kernel-modules-extra-4.18.0-147.0.2.el8_1.s390x.rpm kernel-tools-4.18.0-147.0.2.el8_1.s390x.rpm kernel-tools-debuginfo-4.18.0-147.0.2.el8_1.s390x.rpm kernel-zfcpdump-4.18.0-147.0.2.el8_1.s390x.rpm kernel-zfcpdump-core-4.18.0-147.0.2.el8_1.s390x.rpm kernel-zfcpdump-debuginfo-4.18.0-147.0.2.el8_1.s390x.rpm kernel-zfcpdump-devel-4.18.0-147.0.2.el8_1.s390x.rpm kernel-zfcpdump-modules-4.18.0-147.0.2.el8_1.s390x.rpm kernel-zfcpdump-modules-extra-4.18.0-147.0.2.el8_1.s390x.rpm perf-4.18.0-147.0.2.el8_1.s390x.rpm perf-debuginfo-4.18.0-147.0.2.el8_1.s390x.rpm python3-perf-4.18.0-147.0.2.el8_1.s390x.rpm python3-perf-debuginfo-4.18.0-147.0.2.el8_1.s390x.rpm x86_64: bpftool-4.18.0-147.0.2.el8_1.x86_64.rpm bpftool-debuginfo-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-core-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-cross-headers-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-debug-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-debug-core-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-debug-debuginfo-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-debug-devel-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-debug-modules-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-debug-modules-extra-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-debuginfo-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-debuginfo-common-x86_64-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-devel-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-headers-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-modules-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-modules-extra-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-tools-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-tools-debuginfo-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-tools-libs-4.18.0-147.0.2.el8_1.x86_64.rpm perf-4.18.0-147.0.2.el8_1.x86_64.rpm perf-debuginfo-4.18.0-147.0.2.el8_1.x86_64.rpm python3-perf-4.18.0-147.0.2.el8_1.x86_64.rpm python3-perf-debuginfo-4.18.0-147.0.2.el8_1.x86_64.rpm Red Hat CodeReady Linux Builder (v.8): aarch64: bpftool-debuginfo-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-debug-debuginfo-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-debuginfo-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-debuginfo-common-aarch64-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-tools-debuginfo-4.18.0-147.0.2.el8_1.aarch64.rpm kernel-tools-libs-devel-4.18.0-147.0.2.el8_1.aarch64.rpm perf-debuginfo-4.18.0-147.0.2.el8_1.aarch64.rpm python3-perf-debuginfo-4.18.0-147.0.2.el8_1.aarch64.rpm ppc64le: bpftool-debuginfo-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-debug-debuginfo-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-debuginfo-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-debuginfo-common-ppc64le-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-tools-debuginfo-4.18.0-147.0.2.el8_1.ppc64le.rpm kernel-tools-libs-devel-4.18.0-147.0.2.el8_1.ppc64le.rpm perf-debuginfo-4.18.0-147.0.2.el8_1.ppc64le.rpm python3-perf-debuginfo-4.18.0-147.0.2.el8_1.ppc64le.rpm x86_64: bpftool-debuginfo-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-debug-debuginfo-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-debuginfo-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-debuginfo-common-x86_64-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-tools-debuginfo-4.18.0-147.0.2.el8_1.x86_64.rpm kernel-tools-libs-devel-4.18.0-147.0.2.el8_1.x86_64.rpm perf-debuginfo-4.18.0-147.0.2.el8_1.x86_64.rpm python3-perf-debuginfo-4.18.0-147.0.2.el8_1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2018-12207 https://access.redhat.com/security/cve/CVE-2019-0154 https://access.redhat.com/security/cve/CVE-2019-11135 https://access.redhat.com/security/updates/classification#important https://access.redhat.com/security/vulnerabilities/ifu-page-mce https://access.redhat.com/articles/tsx-asynchronousabort https://access.redhat.com/solutions/i915-graphics 8. Contact: The Red Hat security contact is . More contact detailsat https://access.redhat.com/security/team/contact Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE-----Version: GnuPG v1 iQIVAwUBXcsOG9zjgjWX9erEAQiGxA//VROACYJL+ZH0aACoRU6dUwr+1sp8zHgZ WgV8puUbE8jqiHIGfsNoke2vq124EDTttaq3LKhqVQ88+/1fhy8XYPgupXSs2+y9 WtrtCclwbE2sj92nrw0r8vD3TLHfDwFQX9UaEp7f5BPf37GEqYURxGWtPuyVOdSZ ZR5U4nAFOfCpa11EFdggZhK2lvqjqK5hJ8eGyUni5Ko/6yVBh2jTywHkfqDiIuaI BpzQDH/EJkG+l9D7kODCBEM44IPWj9eOEOZSgVZBhjWoeD3nvV5OB79wiAdal3Wm YWGc1zd20sEgMfrpv/Bm2m4l+9S5iL7vCvX6TLlf6f3+iBodzPaLarj5dh6LgfRd HMkKwDev3kb/sps9WivHLBdT5bVaQ6O4MWt1H9gbUpvnASLJBh7MIXtdP9kyExzr LRT2tEyQjNSkwtNfPxf39Wy5OWuRNdL+Y18CvCX7RqhdLv2aex1pC4huDLmxqkHQ 0xQXAt0dA0x5CC+2eCURUlmMimStOzCNy/zgwxERzjPEBxbUqSwq6rXigpsdDb+u oCEbiu6nF/bWen1LjCAfnqYfTgemyerz3cuvDX6BUkjMmopD4csoTb4MFEF1Z1xB zxLWWp1MCT6PUuUrRgWMBF+vdXMW/G+cG8KdhJ0ZlYmaR2QYV0UqAoaiOUL/SdsV qKTt4i+ISVc=Z21j -----END PGP SIGNATURE-------RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Crucial kernel upgrade for Red Hat Enterprise Linux arrives, addressing significant security vulnerabilities. System reboot is necessary.. Red Hat Linux, Kernel Fix, Security Update, Important Advisory, Linux Kernel Security. . Severity: Important. LinuxSecurity.com Team

Nov 12, 2019 •Important Red Hat

Stay Secure with the Latest Linux Advisories

Debian LTS openssl Important Use-After-Free NULL Pointer Issues DLA-4624-1

Ubuntu 20.04 alsa-lib Important Denial of Service Fix USN-8044-2

Ubuntu 26.04 LTS node-shell-quote Important Denial of Service CVE-2026-9277

Mageia 9 Suricata Critical Performance Security Issues MGASA-2026-0181

Mageia 9 PackageKit Important TOCTOU Race Escalation CVE-2026-41651

Mageia 9 Unbound Critical Remote Code Execution Advisory 2026-0034

Ubuntu 26.04 LTS Netatalk Multiple Security Issues USN-8395-1

Fedora 43 mingw-objfw 1.5.5 Update Security Fix FEDORA-2026-de23fedf3e

Fedora 43 objfw Important Update 1.5.5 Bug Fixes June 2026

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

RedHat: RHSA-2019-3843-01 Important Kernel Update for Enterprise Linux

RedHat Enterprise Linux 7.6 RHSA-2019:3837-01 Important: Kernel Update

Red Hat 7: RHSA-2019-3860 Important: Virtualization Host Security Fix

Red Hat Enterprise Linux 8: RHSA-2019-3832-01 Critical Kernel DoS Issue

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Debian LTS openssl Important Use-After-Free NULL Pointer Issues DLA-4624-1

Ubuntu 20.04 alsa-lib Important Denial of Service Fix USN-8044-2

Ubuntu 26.04 LTS node-shell-quote Important Denial of Service CVE-2026-9277

Mageia 9 Suricata Critical Performance Security Issues MGASA-2026-0181

Mageia 9 PackageKit Important TOCTOU Race Escalation CVE-2026-41651

Mageia 9 Unbound Critical Remote Code Execution Advisory 2026-0034

Ubuntu 26.04 LTS Netatalk Multiple Security Issues USN-8395-1

Fedora 43 mingw-objfw 1.5.5 Update Security Fix FEDORA-2026-de23fedf3e

Fedora 43 objfw Important Update 1.5.5 Bug Fixes June 2026

Refine advisories

severity

Topics

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!