Red Hat Updates
1765Warning Date
Severity Level
Warning Number
Target Sector
26 May, 2020
● High
2020-1279
All
Description:
Red Hat has released security updates to address multiple vulnerabilities in the following products:
- Linux kernel
- Red Hat Enterprise Linux Server - AUS 7.2 x86_64
- Red Hat Enterprise Linux Server - AUS 7.3 x86_64
- Red Hat Enterprise Linux Server - TUS 7.3 x86_64
- Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.3 ppc64le
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.3 x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.6 x86_64
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 7.6 s390x
- Red Hat Enterprise Linux for Power, big endian - Extended Update Support 7.6 ppc64
- Red Hat Enterprise Linux EUS Compute Node 7.6 x86_64
- Red Hat Enterprise Linux Server - AUS 7.6 x86_64
- Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.6 ppc64le
- Red Hat Enterprise Linux Server - TUS 7.6 x86_64
- Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.6 ppc64le
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.6 x86_64
- Red Hat Virtualization Host - Extended Update Support 4.2 for RHEL 7.6 x86_64
- ipmitool
- Red Hat Enterprise Linux Server - AUS 7.3 x86_64
- Red Hat Enterprise Linux Server - TUS 7.3 x86_64
- Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.3 ppc64le
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.3 x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.6 x86_64
- Red Hat Enterprise Linux Server - AUS 7.6 x86_64
- Red Hat Enterprise Linux Server - TUS 7.6 x86_64
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.6 x86_64
- kpatch-patch
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.6 x86_64
- Red Hat Enterprise Linux Server - AUS 7.6 x86_64
- Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.6 ppc64le
- Red Hat Enterprise Linux Server - TUS 7.6 x86_64
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.6 x86_64
- openvswitch2.13
- Red Hat Enterprise Linux Fast Datapath 8 x86_64
- Red Hat Enterprise Linux Fast Datapath (for IBM z Systems) 8 s390x
- Red Hat Enterprise Linux Fast Datapath 8 x86_64
- Red Hat Enterprise Linux Fast Datapath (for IBM z Systems) 7 s390x
- openvswitch
- Red Hat Enterprise Linux Fast Datapath 7 x86_64
- Red Hat Virtualization - Extended Update Support 4.2 for RHEL 7.6 x86_64
- Red Hat Enterprise Linux Fast Datapath (for RHEL Server for IBM Power LE) 7 ppc64le
- Red Hat Enterprise Linux Fast Datapath (for IBM z Systems) 7 s390x
Threats:
The vulnerabilities cause Buffer overflow which may allow the attacker to execute arbitrary code.
Best practice and Recommendations:
The CERT team encourages users to review Red Hat security advisory and apply the necessary updates:
- https://access.redhat.com/errata/RHSA-2020:2285
- https://access.redhat.com/errata/RHSA-2020:2276
- https://access.redhat.com/errata/RHSA-2020:2277
- https://access.redhat.com/errata/RHSA-2020:2286
- https://access.redhat.com/errata/RHSA-2020:2289
- https://access.redhat.com/errata/RHSA-2020:2291
- https://access.redhat.com/errata/RHSA-2020:2295
- https://access.redhat.com/errata/RHSA-2020:2296
- https://access.redhat.com/errata/RHSA-2020:2297
- https://access.redhat.com/errata/RHSA-2020:2298