Security Warnings

Classification
These posts contain security warnings, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Red Hat Updates

103

Warning Date: 7 April, 2021

Severity Level ● High

Warning Number: 2021-2722

Target Sector: All

Description:

Red Hat has released security updates to address several vulnerabilities in the following products:

  • kernel
    • Red Hat Enterprise Linux for Power, little endian
    • Red Hat Enterprise Linux Desktop
    • Red Hat Enterprise Linux Server
    • Red Hat Virtualization Host
    • Red Hat Enterprise Linux Workstation
    • Red Hat Enterprise Linux for Power, big endian
    • Red Hat Enterprise Linux for Scientific Computing
    • Red Hat Enterprise Linux for IBM z Systems
  • libldb
    • Red Hat Enterprise Linux for Power, little endian
    • Red Hat Enterprise Linux Desktop
    • Red Hat Enterprise Linux Server
    • Red Hat Enterprise Linux Workstation
    • Red Hat Gluster Storage Server for On-premise
    • Red Hat Enterprise Linux for Power, big endian
    • Red Hat Enterprise Linux for Scientific Computing
    • Red Hat Enterprise Linux for IBM z Systems
  • flatpak
    • Red Hat Enterprise Linux for ARM 64 - Extended Update Support
    • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support
    • Red Hat Enterprise Linux for Power, little endian - Extended Update Support
    • Red Hat Enterprise Linux for x86_64 - Extended Update Support
    • Red Hat Enterprise Linux Server - AUS
    • Red Hat Enterprise Linux Server - TUS
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions
  • kernel-rt
    • Red Hat Enterprise Linux for Real Time for NFV
    • Red Hat Enterprise Linux for Real Time
  • 389-ds:1.4
    • Red Hat Enterprise Linux for x86_64

Threats:

Attacker could exploit these vulnerabilities by doing the following:

  • Buffer overflow
  • Unauthorized disclosure of information
  • Escalation of privilege

Best practice and Recommendations:

The CERT team encourages users to review Red Hat security advisory and apply the necessary updates:

Last updated at 7 April, 2021