ID

VAR-201911-1627

CVE

CVE-2019-0155

TITLE

plural Intel Vulnerability related to privilege management in products

DESCRIPTION

Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Gold Series; Intel(R) Celeron(R) Processor J, N, G3900 and G4900 Series; Intel(R) Atom(R) Processor A and E3900 Series; Intel(R) Xeon(R) Processor E3-1500 v5 and v6, E-2100 and E-2200 Processor Families; Intel(R) Graphics Driver for Windows before 26.20.100.6813 (DCH) or 26.20.100.6812 and before 21.20.x.5077 (aka15.45.5077), i915 Linux Driver for Intel(R) Processor Graphics before versions 5.4-rc7, 5.3.11, 4.19.84, 4.14.154, 4.9.201, 4.4.201 may allow an authenticated user to potentially enable escalation of privilege via local access. plural Intel The product contains a privilege management vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. A security vulnerability exists in the Intel graphics hardware (GPU) due to the program's inadequate access controls. ========================================================================== Ubuntu Security Notice USN-4184-2 November 13, 2019 linux, linux-hwe, linux-oem-osp1 vulnerability and regression ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 19.04 - Ubuntu 18.04 LTS Summary: Several issues were fixed in the Linux kernel. Software Description: - linux: Linux kernel - linux-hwe: Linux hardware enablement (HWE) kernel - linux-oem-osp1: Linux kernel for OEM processors Details: USN-4184-1 fixed vulnerabilities in the Linux kernel. It was discovered that the kernel fix for CVE-2019-0155 (i915 missing Blitter Command Streamer check) was incomplete on 64-bit Intel x86 systems. Also, the update introduced a regression that broke KVM guests where extended page tables (EPT) are disabled or not supported. This update addresses both issues. We apologize for the inconvenience. Original advisory details: Stephan van Schaik, Alyssa Milburn, Sebastian \xd6sterlund, Pietro Frigo, Kaveh Razavi, Herbert Bos, Cristiano Giuffrida, Giorgi Maisuradze, Moritz Lipp, Michael Schwarz, Daniel Gruss, and Jo Van Bulck discovered that Intel processors using Transactional Synchronization Extensions (TSX) could expose memory contents previously stored in microarchitectural buffers to a malicious process that is executing on the same CPU core. A local attacker could use this to expose sensitive information. (CVE-2019-11135) It was discovered that the Intel i915 graphics chipsets allowed userspace to modify page table entries via writes to MMIO from the Blitter Command Streamer and expose kernel memory information. A local attacker could use this to expose sensitive information or possibly elevate privileges. (CVE-2019-0155) Deepak Gupta discovered that on certain Intel processors, the Linux kernel did not properly perform invalidation on page table updates by virtual guest operating systems. A local attacker in a guest VM could use this to cause a denial of service (host system crash). (CVE-2018-12207) It was discovered that the Intel i915 graphics chipsets could cause a system hang when userspace performed a read from GT memory mapped input output (MMIO) when the product is in certain low power states. A local attacker could use this to cause a denial of service. (CVE-2019-0154) Hui Peng discovered that the Atheros AR6004 USB Wi-Fi device driver for the Linux kernel did not properly validate endpoint descriptors returned by the device. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2019-15098) Jann Horn discovered a reference count underflow in the shiftfs implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-15791) Jann Horn discovered a type confusion vulnerability in the shiftfs implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-15792) Jann Horn discovered that the shiftfs implementation in the Linux kernel did not use the correct file system uid/gid when the user namespace of a lower file system is not in the init user namespace. A local attacker could use this to possibly bypass DAC permissions or have some other unspecified impact. (CVE-2019-15793) Ori Nimron discovered that the AX25 network protocol implementation in the Linux kernel did not properly perform permissions checks. A local attacker could use this to create a raw socket. (CVE-2019-17052) Ori Nimron discovered that the IEEE 802.15.4 Low-Rate Wireless network protocol implementation in the Linux kernel did not properly perform permissions checks. A local attacker could use this to create a raw socket. (CVE-2019-17053) Ori Nimron discovered that the Appletalk network protocol implementation in the Linux kernel did not properly perform permissions checks. A local attacker could use this to create a raw socket. (CVE-2019-17054) Ori Nimron discovered that the modular ISDN network protocol implementation in the Linux kernel did not properly perform permissions checks. A local attacker could use this to create a raw socket. (CVE-2019-17055) Ori Nimron discovered that the Near field Communication (NFC) network protocol implementation in the Linux kernel did not properly perform permissions checks. A local attacker could use this to create a raw socket. (CVE-2019-17056) Nico Waisman discovered that a buffer overflow existed in the Realtek Wi-Fi driver for the Linux kernel when handling Notice of Absence frames. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-17666) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 19.04: linux-image-5.0.0-36-generic 5.0.0-36.39 linux-image-5.0.0-36-generic-lpae 5.0.0-36.39 linux-image-5.0.0-36-lowlatency 5.0.0-36.39 linux-image-generic 5.0.0.36.38 linux-image-generic-lpae 5.0.0.36.38 linux-image-lowlatency 5.0.0.36.38 linux-image-virtual 5.0.0.36.38 Ubuntu 18.04 LTS: linux-image-5.0.0-1028-oem-osp1 5.0.0-1028.32 linux-image-5.0.0-36-generic 5.0.0-36.39~18.04.1 linux-image-5.0.0-36-generic-lpae 5.0.0-36.39~18.04.1 linux-image-5.0.0-36-lowlatency 5.0.0-36.39~18.04.1 linux-image-generic-hwe-18.04 5.0.0.36.94 linux-image-generic-lpae-hwe-18.04 5.0.0.36.94 linux-image-lowlatency-hwe-18.04 5.0.0.36.94 linux-image-oem-osp1 5.0.0.1028.32 linux-image-virtual-hwe-18.04 5.0.0.36.94 Please note that mitigating the TSX (CVE-2019-11135) and i915 (CVE-2019-0154) issues requires corresponding microcode and graphics firmware updates respectively. After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://usn.ubuntu.com/4184-2 https://usn.ubuntu.com/4184-1 CVE-2019-0155, https://bugs.launchpad.net/bugs/1851709, https://bugs.launchpad.net/bugs/1852141 Package Information: https://launchpad.net/ubuntu/+source/linux/5.0.0-36.39 https://launchpad.net/ubuntu/+source/linux-hwe/5.0.0-36.39~18.04.1 https://launchpad.net/ubuntu/+source/linux-oem-osp1/5.0.0-1028.32 . Due to the high complexity of the fixes and the required microcode update, we are unable to livepatch this set of CVEs. Please plan to reboot into an updated kernel as soon as possible. The details of these CVEs follows: CVE-2018-12207 On an Ubuntu KVM host configured to use huge pages, a malicious KVM guest can cause a host machine check exception (MCE) capable of bringing down the host OS. CVE-2019-11135 On Intel processors with support for Transactional Synchronization Extensions (TSX), it is possible to exploit a transactional asynchronous abort (TAA) to perform a side-channel attack and leak kernel memory. Further details on the vulnerabilities and our response can be found here: https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/TAA_MCEPSC_i915 Again, due to the high complexity of the fixes and the required microcode update, we are unable to livepatch this set of CVEs. Please plan to reboot into an updated kernel as soon as possible. | Series | Version | Flavors | |------------------+-----------------------+--------------------------| | Ubuntu 18.04 LTS | 4.15.0-1054.55 | aws | | Ubuntu 16.04 LTS | 4.4.0-1098.102 | aws | | Ubuntu 18.04 LTS | 5.0.0-1025.27~18.04.1 | azure | | Ubuntu 16.04 LTS | 4.15.0-1063.66 | azure | | Ubuntu 18.04 LTS | 4.15.0-69.78 | generic lowlatency | | Ubuntu 16.04 LTS | 4.15.0-69.78~16.04.1 | generic lowlatency | | Ubuntu 14.04 LTS | 4.4.0-168.197~14.04.1 | generic lowlatency | | Ubuntu 18.04 LTS | 4.15.0-1063.72 | oem | | Ubuntu 16.04 LTS | 4.4.0-168.197 | generic lowlatency | Support Information: Kernels older than the levels listed above will no longer receive livepatch updates. References: CVE-2018-12207, CVE-2019-0154, CVE-2019-0155, CVE-2019-11135 -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce . Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ patches/packages/linux-4.4.202/*: Upgraded. CRYPTO_CRC32C_INTEL m -> y +X86_INTEL_TSX_MODE_AUTO n +X86_INTEL_TSX_MODE_OFF y +X86_INTEL_TSX_MODE_ON n These updates fix various bugs and security issues, including mitigation for the TSX Asynchronous Abort condition on some CPUs. Be sure to upgrade your initrd after upgrading the kernel packages. If you use lilo to boot your machine, be sure lilo.conf points to the correct kernel and initrd and run lilo as root to update the bootloader. If you use elilo to boot your machine, you should run eliloconfig to copy the kernel and initrd to the EFI System Partition. For more information, see: Fixed in 4.4.201: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0155 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0154 Fixed in 4.4.202: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you. Updated packages for Slackware 14.2: ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/linux-4.4.202/kernel-generic-4.4.202-i586-1.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/linux-4.4.202/kernel-generic-smp-4.4.202_smp-i686-1.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/linux-4.4.202/kernel-headers-4.4.202_smp-x86-1.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/linux-4.4.202/kernel-huge-4.4.202-i586-1.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/linux-4.4.202/kernel-huge-smp-4.4.202_smp-i686-1.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/linux-4.4.202/kernel-modules-4.4.202-i586-1.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/linux-4.4.202/kernel-modules-smp-4.4.202_smp-i686-1.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/linux-4.4.202/kernel-source-4.4.202_smp-noarch-1.txz Updated packages for Slackware x86_64 14.2: ftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/linux-4.4.202/kernel-generic-4.4.202-x86_64-1.txz ftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/linux-4.4.202/kernel-headers-4.4.202-x86-1.txz ftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/linux-4.4.202/kernel-huge-4.4.202-x86_64-1.txz ftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/linux-4.4.202/kernel-modules-4.4.202-x86_64-1.txz ftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/linux-4.4.202/kernel-source-4.4.202-noarch-1.txz MD5 signatures: +-------------+ Slackware 14.2 packages: cd8dbae15f318e526def831b353c315c kernel-generic-4.4.202-i586-1.txz 053b4fabdacac513c262d6eb7bc81f1c kernel-generic-smp-4.4.202_smp-i686-1.txz 91295e1b5488b2a7372310b2c7e37b0c kernel-headers-4.4.202_smp-x86-1.txz 682cfd37d9e728e32995eac43f7049e1 kernel-huge-4.4.202-i586-1.txz da19c52e45760dc2e30c3b7914f5ab79 kernel-huge-smp-4.4.202_smp-i686-1.txz bdf2c7bc504fb6df7e9db7f427185f43 kernel-modules-4.4.202-i586-1.txz 0551c6af0c57798cdf8334a197e75491 kernel-modules-smp-4.4.202_smp-i686-1.txz 8bc2fd8c955c5afaa3948072761cbffa kernel-source-4.4.202_smp-noarch-1.txz Slackware x86_64 14.2 packages: b4d2aca30774e31e43ad935ec440ee8d kernel-generic-4.4.202-x86_64-1.txz 0919d64cc81c3872d9dbb636fb160974 kernel-headers-4.4.202-x86-1.txz 29daac35ff87d9ef5eae5bb238dee433 kernel-huge-4.4.202-x86_64-1.txz 67e0fe51a16b1c7dd46116a5cbe772aa kernel-modules-4.4.202-x86_64-1.txz 41761edfdf3f4210bb8b71a98397fa0a kernel-source-4.4.202-noarch-1.txz Installation instructions: +------------------------+ Upgrade the packages as root: # upgradepkg kernel-*.txz If you are using an initrd, you'll need to rebuild it. For a 32-bit SMP machine, use this command (substitute the appropriate kernel version if you are not running Slackware 14.2): # /usr/share/mkinitrd/mkinitrd_command_generator.sh -k 4.4.202-smp | bash For a 64-bit machine, or a 32-bit uniprocessor machine, use this command (substitute the appropriate kernel version if you are not running Slackware 14.2): # /usr/share/mkinitrd/mkinitrd_command_generator.sh -k 4.4.202 | bash Please note that "uniprocessor" has to do with the kernel you are running, not with the CPU. Most systems should run the SMP kernel (if they can) regardless of the number of cores the CPU has. If you aren't sure which kernel you are running, run "uname -a". If you see SMP there, you are running the SMP kernel and should use the 4.4.202-smp version when running mkinitrd_command_generator. Note that this is only for 32-bit -- 64-bit systems should always use 4.4.202 as the version. If you are using lilo or elilo to boot the machine, you'll need to ensure that the machine is properly prepared before rebooting. If using LILO: By default, lilo.conf contains an image= line that references a symlink that always points to the correct kernel. No editing should be required unless your machine uses a custom lilo.conf. If that is the case, be sure that the image= line references the correct kernel file. Either way, you'll need to run "lilo" as root to reinstall the boot loader. If using elilo: Ensure that the /boot/vmlinuz symlink is pointing to the kernel you wish to use, and then run eliloconfig to update the EFI System Partition. +-----+ Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com +------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address. Description: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: kernel security update Advisory ID: RHSA-2019:3877-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:3877 Issue date: 2019-11-13 CVE Names: CVE-2019-0155 ===================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server AUS (v. 7.4) - noarch, x86_64 Red Hat Enterprise Linux Server E4S (v. 7.4) - noarch, ppc64le, x86_64 Red Hat Enterprise Linux Server Optional AUS (v. 7.4) - x86_64 Red Hat Enterprise Linux Server Optional E4S (v. 7.4) - ppc64le, x86_64 Red Hat Enterprise Linux Server Optional TUS (v. 7.4) - x86_64 Red Hat Enterprise Linux Server TUS (v. 7.4) - noarch, x86_64 3. Security Fix(es): * hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write (CVE-2019-0155) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. 5. Bugs fixed (https://bugzilla.redhat.com/): 1724398 - CVE-2019-0155 hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write 6. Package List: Red Hat Enterprise Linux Server AUS (v. 7.4): Source: kernel-3.10.0-693.60.3.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-693.60.3.el7.noarch.rpm kernel-doc-3.10.0-693.60.3.el7.noarch.rpm x86_64: kernel-3.10.0-693.60.3.el7.x86_64.rpm kernel-debug-3.10.0-693.60.3.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-debug-devel-3.10.0-693.60.3.el7.x86_64.rpm kernel-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-693.60.3.el7.x86_64.rpm kernel-devel-3.10.0-693.60.3.el7.x86_64.rpm kernel-headers-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-libs-3.10.0-693.60.3.el7.x86_64.rpm perf-3.10.0-693.60.3.el7.x86_64.rpm perf-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm python-perf-3.10.0-693.60.3.el7.x86_64.rpm python-perf-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm Red Hat Enterprise Linux Server E4S (v. 7.4): Source: kernel-3.10.0-693.60.3.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-693.60.3.el7.noarch.rpm kernel-doc-3.10.0-693.60.3.el7.noarch.rpm ppc64le: kernel-3.10.0-693.60.3.el7.ppc64le.rpm kernel-bootwrapper-3.10.0-693.60.3.el7.ppc64le.rpm kernel-debug-3.10.0-693.60.3.el7.ppc64le.rpm kernel-debug-debuginfo-3.10.0-693.60.3.el7.ppc64le.rpm kernel-debuginfo-3.10.0-693.60.3.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-693.60.3.el7.ppc64le.rpm kernel-devel-3.10.0-693.60.3.el7.ppc64le.rpm kernel-headers-3.10.0-693.60.3.el7.ppc64le.rpm kernel-tools-3.10.0-693.60.3.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-693.60.3.el7.ppc64le.rpm kernel-tools-libs-3.10.0-693.60.3.el7.ppc64le.rpm perf-3.10.0-693.60.3.el7.ppc64le.rpm perf-debuginfo-3.10.0-693.60.3.el7.ppc64le.rpm python-perf-3.10.0-693.60.3.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-693.60.3.el7.ppc64le.rpm x86_64: kernel-3.10.0-693.60.3.el7.x86_64.rpm kernel-debug-3.10.0-693.60.3.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-debug-devel-3.10.0-693.60.3.el7.x86_64.rpm kernel-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-693.60.3.el7.x86_64.rpm kernel-devel-3.10.0-693.60.3.el7.x86_64.rpm kernel-headers-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-libs-3.10.0-693.60.3.el7.x86_64.rpm perf-3.10.0-693.60.3.el7.x86_64.rpm perf-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm python-perf-3.10.0-693.60.3.el7.x86_64.rpm python-perf-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm Red Hat Enterprise Linux Server TUS (v. 7.4): Source: kernel-3.10.0-693.60.3.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-693.60.3.el7.noarch.rpm kernel-doc-3.10.0-693.60.3.el7.noarch.rpm x86_64: kernel-3.10.0-693.60.3.el7.x86_64.rpm kernel-debug-3.10.0-693.60.3.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-debug-devel-3.10.0-693.60.3.el7.x86_64.rpm kernel-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-693.60.3.el7.x86_64.rpm kernel-devel-3.10.0-693.60.3.el7.x86_64.rpm kernel-headers-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-libs-3.10.0-693.60.3.el7.x86_64.rpm perf-3.10.0-693.60.3.el7.x86_64.rpm perf-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm python-perf-3.10.0-693.60.3.el7.x86_64.rpm python-perf-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional AUS (v. 7.4): x86_64: kernel-debug-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-693.60.3.el7.x86_64.rpm perf-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm python-perf-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional E4S (v. 7.4): ppc64le: kernel-debug-debuginfo-3.10.0-693.60.3.el7.ppc64le.rpm kernel-debug-devel-3.10.0-693.60.3.el7.ppc64le.rpm kernel-debuginfo-3.10.0-693.60.3.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-693.60.3.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-693.60.3.el7.ppc64le.rpm kernel-tools-libs-devel-3.10.0-693.60.3.el7.ppc64le.rpm perf-debuginfo-3.10.0-693.60.3.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-693.60.3.el7.ppc64le.rpm x86_64: kernel-debug-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-693.60.3.el7.x86_64.rpm perf-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm python-perf-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional TUS (v. 7.4): x86_64: kernel-debug-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-693.60.3.el7.x86_64.rpm perf-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm python-perf-debuginfo-3.10.0-693.60.3.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXcxYVtzjgjWX9erEAQj74g//epU5s0k5NUY3g57YCUJnD/Y3HE/rvsLR h7rVEU2r/M9BjGPInoWBkc8g3BioRddw4E4Z33nV6wVFrRGDNwDLxSb8YRaEKrv7 MebW3qWdBbAlNeweTAiABTygj2wO7CHDR3eNYAoaavkdvuqdtiatrFSPW2BvXZRM Viw6wIRQgQ/rAOyMJGZfCuUb/VAaQ+APFoysxiswGf7wJvK9az4mPB1W+MTqJOzc KUyzcrxKAZNuek/yqpmODnjU6ApyRYbwkcLlWI7tUmunZWwz2wvHLQR9Su798QYr vpIA8pW6lSnyETG0RjvdYQqUwS6AzSSNXkLPcOih5rHsOH2ZCQiHjJieQqfuAyCU ivE1au7qZHA5RbklqphpMmA8h+KSwT+AI0rTqOtCQZfwJ5Knbi91CIWz+p/GDcpP 4WOftBfJVJnsWmxBgSpS40iJRlpnGliCRb6rKf47LgLwvC7ig0Yfv+GJWDzTuvm1 FZ6fsB8IoBYKF/bweDLxs5JPoPI4ZLcNuOZBB4NFWLoSZBkyKdE3tK/yKQilZ0L5 7g0xpofXW36JGKt9dWcJMobITp0pd3xP9Cyw1P37m1UShHpxelsKdWtg3hzY6w4V 8w8fjeTmuqnC3BlSN94odEGkGabndkb1WRdhyOAwL8ELhp/+1peuGHHeNrM7abc8 TFzfr/6g3Zc= =ckMx -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . 7.6) - ppc64, ppc64le, x86_64 3

AFFECTED PRODUCTS

CVSS

PROBLEMTYPE DATA

THREAT TYPE

local

TYPE

other

CONFIGURATIONS

PATCH

EXTERNAL IDS

REFERENCES