CESA-2020:0375 -- centos 7 kernel,python-perf,perf,bpftoolID: oval:org.secpod.oval:def:205436 | Date: (C)2020-02-07 (M)2024-04-17 |
Class: PATCH | Family: unix |
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix: * kernel: heap overflow in mwifiex_update_vs_ie function of Marvell WiFi driver * kernel: heap-based buffer overflow in mwifiex_process_country_ie function in drivers/net/wireless/marvell/mwifiex/sta_ioctl.c * kernel: heap overflow in marvell/mwifiex/tdls.c * kernel: buffer overflow in cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c * kernel: incomplete fix for race condition between mmget_not_zero/get_task_mm and core dumping in CVE-2019-11599 For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Bug Fix: * patchset for x86/atomic: Fix smp_mb__{before,after}_atomic [kernel-rt] * kernel-rt: update to the RHEL7.7.z batch#4 source tree * kvm nx_huge_pages_recovery_ratio=0 is needed to meet KVM-RT low latency requirement * kernel-rt: hard lockup panic in during execution of CFS bandwidth period timer
Product: |
kernel |
python-perf |
perf |
bpftool |