The official site for Saudi CERT
Red Hat Updates
3090
Warning Date
Severity Level
Warning Number
Target Sector
5 November, 2020
● High
2020-2015
All
Description:
Red Hat has released security updates to address several vulnerabilities in the following products:
- cryptsetup
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- Red Hat Enterprise Linux for ARM 64 - Extended Update Support
- Red Hat Enterprise Linux for Power, little endian - Extended Update Support
- Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support
- nodejs:12
- Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- Red Hat Enterprise Linux for Power, little endian - Extended Update Support
- Red Hat Enterprise Linux for ARM 64 - Extended Update Support
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions
- freetype
- Red Hat Enterprise Linux for Power, little endian
- Red Hat Enterprise Linux Desktop
- Red Hat Enterprise Linux Server
- Red Hat Enterprise Linux for Scientific Computing
- Red Hat Enterprise Linux for Power, big endian
- Red Hat Enterprise Linux for IBM z Systems
- Red Hat Enterprise Linux Workstation
- libX11
- Red Hat Enterprise Linux for Power, little endian
- Red Hat Enterprise Linux for IBM z Systems
- Red Hat Enterprise Linux for Scientific Computing
- Red Hat Enterprise Linux for Power, big endian
- Red Hat Enterprise Linux Desktop
- Red Hat Enterprise Linux Server
- Red Hat Enterprise Linux Workstation
- thunderbird
- Red Hat Enterprise Linux Workstation
- Red Hat Enterprise Linux for Power, little endian
- Red Hat Enterprise Linux Desktop
- Red Hat Enterprise Linux Server
- Red Hat Enterprise Linux for x86_64
- Red Hat Enterprise Linux for ARM 64
- Red Hat Enterprise Linux for Power, little endian
- xorg-x11-server
- Red Hat Enterprise Linux Desktop
- Red Hat Enterprise Linux for Power, little endian
- Red Hat Enterprise Linux Server
- Red Hat Enterprise Linux Workstation
- Red Hat Enterprise Linux for Power, big endian
- Red Hat Enterprise Linux for Scientific Computing
- Red Hat Enterprise Linux for IBM z Systems
- Red Hat JBoss Enterprise Application Platform 7.3
- Red Hat JBoss Enterprise Application Platform 7.3.3
- Red Hat Single Sign-On 7.4.3
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Unauthorized disclosure of information
- Bypass of a protection mechanism
- Denial of service attack (DoS)
- Memory corruption
- Execute arbitrary code
Best practice and Recommendations:
The CERT team encourages users to review Red Hat security advisory and apply the necessary updates:
- https://access.redhat.com/errata/RHSA-2020:4900
- https://access.redhat.com/errata/RHSA-2020:4903
- https://access.redhat.com/errata/RHSA-2020:4907
- https://access.redhat.com/errata/RHSA-2020:4908
- https://access.redhat.com/errata/RHSA-2020:4909
- https://access.redhat.com/errata/RHSA-2020:4910
- https://access.redhat.com/errata/RHSA-2020:4913
- https://access.redhat.com/errata/RHSA-2020:4922
- https://access.redhat.com/errata/RHSA-2020:4923
- https://access.redhat.com/errata/RHSA-2020:4929
- https://access.redhat.com/errata/RHSA-2020:4930
- https://access.redhat.com/errata/RHSA-2020:4931
- https://access.redhat.com/errata/RHSA-2020:4932
Rate the content
Share the page
