Issued:: 2019-06-04
Updated:: 2019-06-04

RHSA-2019:1350 - Low: kernel-alt security and bug fix update

Synopsis

Low: kernel-alt security and bug fix update

Type/Severity

Security Advisory Low

Topic

An update for kernel-alt is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-alt packages provide the Linux kernel version 4.x.

Security Fix(es):

kernel: NULL pointer dereference in fs/xfs/libxfs/xfs_inode_buf.c (CVE-2018-13095)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

[rhel-alt] Could not remove the function from /sys/kernel/debug/tracing/kprobe_events (BZ#1677171)
RHEL-ALT-7.6z: usage of stale vma in do_fault() can lead to a crash (BZ#1679243)
RHEL-Alt-7.6 - Backport support for software count cache flush Spectre v2 mitigation (BZ#1692682)
RHEL-Alt-7.6 - [LTC Test][SR-IOV]: Guest with VF pass-through crashes during reboot operation in a loop. (kvm) (libvirt/kernel) (BZ#1693146)
RHEL-Alt-7.6 - Tolerate new s390x crypto hardware for migration (BZ#1695643)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

Product	Version	Arch
Red Hat Enterprise Linux for Power 9	7	ppc64le
Red Hat Enterprise Linux for IBM System z (Structure A)	7	s390x
Red Hat Enterprise Linux for ARM 64	7	aarch64

Updated Packages

kernel-alt-4.14.0-115.8.1.el7a.src.rpm
kernel-devel-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-debug-debuginfo-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-tools-debuginfo-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-tools-libs-devel-4.14.0-115.8.1.el7a.aarch64.rpm
kernel-debug-devel-4.14.0-115.8.1.el7a.aarch64.rpm
perf-4.14.0-115.8.1.el7a.s390x.rpm
perf-debuginfo-4.14.0-115.8.1.el7a.aarch64.rpm
python-perf-4.14.0-115.8.1.el7a.aarch64.rpm
python-perf-4.14.0-115.8.1.el7a.s390x.rpm
kernel-headers-4.14.0-115.8.1.el7a.s390x.rpm
python-perf-debuginfo-4.14.0-115.8.1.el7a.s390x.rpm
kernel-headers-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-kdump-debuginfo-4.14.0-115.8.1.el7a.s390x.rpm
kernel-headers-4.14.0-115.8.1.el7a.aarch64.rpm
kernel-tools-4.14.0-115.8.1.el7a.aarch64.rpm
kernel-debuginfo-common-s390x-4.14.0-115.8.1.el7a.s390x.rpm
kernel-tools-libs-4.14.0-115.8.1.el7a.aarch64.rpm
python-perf-debuginfo-4.14.0-115.8.1.el7a.aarch64.rpm
kernel-tools-debuginfo-4.14.0-115.8.1.el7a.aarch64.rpm
python-perf-debuginfo-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-abi-whitelists-4.14.0-115.8.1.el7a.noarch.rpm
kernel-debug-4.14.0-115.8.1.el7a.aarch64.rpm
kernel-debuginfo-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-debug-devel-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-debug-devel-4.14.0-115.8.1.el7a.s390x.rpm
perf-debuginfo-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-kdump-4.14.0-115.8.1.el7a.s390x.rpm
kernel-4.14.0-115.8.1.el7a.s390x.rpm
kernel-tools-libs-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-debug-debuginfo-4.14.0-115.8.1.el7a.s390x.rpm
kernel-debuginfo-4.14.0-115.8.1.el7a.s390x.rpm
kernel-tools-libs-devel-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-debuginfo-common-ppc64le-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-bootwrapper-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-debug-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-debug-debuginfo-4.14.0-115.8.1.el7a.aarch64.rpm
perf-4.14.0-115.8.1.el7a.aarch64.rpm
kernel-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-doc-4.14.0-115.8.1.el7a.noarch.rpm
kernel-debuginfo-4.14.0-115.8.1.el7a.aarch64.rpm
kernel-debuginfo-common-aarch64-4.14.0-115.8.1.el7a.aarch64.rpm
perf-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-devel-4.14.0-115.8.1.el7a.s390x.rpm
perf-debuginfo-4.14.0-115.8.1.el7a.s390x.rpm
kernel-4.14.0-115.8.1.el7a.aarch64.rpm
kernel-kdump-devel-4.14.0-115.8.1.el7a.s390x.rpm
python-perf-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-devel-4.14.0-115.8.1.el7a.aarch64.rpm
kernel-tools-4.14.0-115.8.1.el7a.ppc64le.rpm
kernel-debug-4.14.0-115.8.1.el7a.s390x.rpm

Fixes

This content is not included.BZ - 1597775

CVEs

CVE-2018-13095

References

https://access.redhat.com/security/updates/classification/#low

Additional information

The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.