The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * Kernel: KVM: error in exception handling leads to wrong debug stack value * Kernel: error in exception handling leads to DoS * Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation * kernel: Out-of-bounds write via userland offsets in ebt_entry struct in netfilter/ebtables.c * kernel: ptrace incorrect error handling leads to corruption and DoS * kernel: guest kernel crash during core dump on POWER9 host For more details about the security issue, including the impact, a CVSS score, and other related information, refer to the CVE page listed in the References section. Red Hat would like to thank Andy Lutomirski for reporting CVE-2018-1087 and CVE-2018-1000199 and Nick Peterson and Andy Lutomirski for reporting CVE-2018-8897. Bug Fix: These updated kernel packages include also numerous bug fixes. Space precludes documenting all of these bug fixes in this advisory. See the bug fix descriptions in the related Knowledge Article: https://access.redhat.com/articles/3431641