Endpoint Vulnerability

RHSA-2020:5026: kernel-rt security and bug fix update (Moderate)

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix(es): * kernel: kernel: buffer over write in vgacon_scroll (CVE-2020-14331) * kernel: net-sysfs: *_queue_add_kobject refcount issue (CVE-2019-20811) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * [RHEL-7.9] net/ipv6/ip6_flowlabel.c:85 suspicious rcu_dereference_check() usage! (kernel-rt-debug) (BZ#1836846) * md/raid: sleeping function called from invalid context triggered by CKI storage/swraid/trim test (BZ#1857872) * Infinite looping when trying to acquire eventpoll->mtx during eventpoll_release_file, 2nd try (BZ#1877695) * kernel-rt: update to the latest RHEL7.9.z1 source tree (BZ#1883995)

Affected Products

kernel