The official site for Saudi CERT
Red Hat Update
2451
Warning Date
Severity Level
Warning Number
Target Sector
2 April, 2020
● Medium
2020-1091
All
Description:
Red Hat has released security updates to address vulnerabilities in the following products:
Threats:
- kernel
- Red Hat Enterprise Linux Workstation
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- advancecomp
- Red Hat Enterprise Linux Workstation
- wireshark
- Red Hat Enterprise Linux Workstation
- libosinfo
- Red Hat Enterprise Linux Workstation
- kernel-rt
- Red Hat Enterprise Linux for Real Time
- samba
- Red Hat Enterprise Linux Resilient Storage for x86_64
- python-twisted-web
- Red Hat Enterprise Linux Workstation
- qemu-kvm-ma
- Red Hat Enterprise Linux for IBM z Systems
- libreoffice
- Red Hat Enterprise Linux Workstation
- nbdkit
- Red Hat Enterprise Linux Server
- qemu-kvm-rhev
- Red Hat Virtualization Manager
- dpdk
- Red Hat Enterprise Linux Server
- podman
- Red Hat Enterprise Linux Workstation
- skopeo
- Red Hat Enterprise Linux Workstation
- buildah
- Red Hat Enterprise Linux Workstation
- docker
- Red Hat Enterprise Linux Server
- virt:8.1
- Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM System Z)
- Red Hat Enterprise Linux Advanced Virtualization
- Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM Power LE)
- Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for ARM 64)
- systemd
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- procps-ng
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- nss-softokn
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- python
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- DL1
- Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions
- chromium-browser
- Red Hat Enterprise Linux Workstation
- OpenShift Container Platform 4.3.9 ose-openshift-apiserver-container
- Red Hat OpenShift Container Platform
- OpenShift Container Platform 4.3.9 ose-openshift-controller-manager-container
- Red Hat OpenShift Container Platform
Attacker could exploit these vulnerabilities by doing the following:
- Unauthorized disclosure of information
- Bypass of a protection mechanism
- Denial of service attack (DoS)
- Execute arbitrary code
Best practice and Recommendations:
The CERT team encourages users to review Red Hat security advisory and apply the necessary updates:
- https://access.redhat.com/errata/RHSA-2020:1016
- https://access.redhat.com/errata/RHSA-2020:1037
- https://access.redhat.com/errata/RHSA-2020:1047
- https://access.redhat.com/errata/RHSA-2020:1051
- https://access.redhat.com/errata/RHSA-2020:1070
- https://access.redhat.com/errata/RHSA-2020:1084
- https://access.redhat.com/errata/RHSA-2020:1091
- https://access.redhat.com/errata/RHSA-2020:1150
- https://access.redhat.com/errata/RHSA-2020:1151
- https://access.redhat.com/errata/RHSA-2020:1167
- https://access.redhat.com/errata/RHSA-2020:1209
- https://access.redhat.com/errata/RHSA-2020:1216
- https://access.redhat.com/errata/RHSA-2020:1226
- https://access.redhat.com/errata/RHSA-2020:1227
- https://access.redhat.com/errata/RHSA-2020:1230
- https://access.redhat.com/errata/RHSA-2020:1231
- https://access.redhat.com/errata/RHSA-2020:1234
- https://access.redhat.com/errata/RHSA-2020:1261
- https://access.redhat.com/errata/RHSA-2020:1264
- https://access.redhat.com/errata/RHSA-2020:1265
- https://access.redhat.com/errata/RHSA-2020:1266
- https://access.redhat.com/errata/RHSA-2020:1267
- https://access.redhat.com/errata/RHSA-2020:1268
- https://access.redhat.com/errata/RHSA-2020:1269
- https://access.redhat.com/errata/RHSA-2020:1270
- https://access.redhat.com/errata/RHSA-2020:0933
- https://access.redhat.com/errata/RHSA-2020:0934
- https://access.redhat.com/errata/RHSA-2020:0962
- https://access.redhat.com/errata/RHSA-2020:0928
- https://access.redhat.com/errata/RHSA-2020:0866
Rate the content
Share the page
