Details of VAR-202102-0068

ID

VAR-202102-0068

CVE

CVE-2020-12362

TITLE

Windows and Linux for Intel(R) Graphics Drivers Integer overflow vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2020-016137

DESCRIPTION

Integer overflow in the firmware for some Intel(R) Graphics Drivers for Windows * before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable an escalation of privilege via local access. There is a security vulnerability in Intel Graphics Drivers. There is no information about this vulnerability at present. Please pay attention to CNNVD or manufacturer announcements at any time. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.7.13. See the following advisory for the RPM packages for this release: https://access.redhat.com/errata/RHSA-2021:2122 Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes: https://docs.openshift.com/container-platform/4.7/release_notes/ocp-4-7-rel ease-notes.html This update fixes the following bug among others: * Previously, resources for the ClusterOperator were being created early in the update process, which led to update failures when the ClusterOperator had no status condition while Operators were updating. This bug fix changes the timing of when these resources are created. As a result, updates can take place without errors. (BZ#1959238) Security Fix(es): * gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index validation (CVE-2021-3121) You may download the oc tool and use it to inspect release image metadata as follows: (For x86_64 architecture) $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.7.13-x86_64 The image digest is sha256:783a2c963f35ccab38e82e6a8c7fa954c3a4551e07d2f43c06098828dd986ed4 (For s390x architecture) $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.7.13-s390x The image digest is sha256:4cf44e68413acad063203e1ee8982fd01d8b9c1f8643a5b31cd7ff341b3199cd (For ppc64le architecture) $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.7.13-ppc64le The image digest is sha256:d47ce972f87f14f1f3c5d50428d2255d1256dae3f45c938ace88547478643e36 All OpenShift Container Platform 4.7 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift Console or the CLI oc command. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.7/updating/updating-cluster - -between-minor.html#understanding-upgrade-channels_updating-cluster-between - -minor 3. Solution: For OpenShift Container Platform 4.7 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.openshift.com/container-platform/4.7/release_notes/ocp-4-7-rel ease-notes.html Details on how to access this content are available at https://docs.openshift.com/container-platform/4.7/updating/updating-cluster - -cli.html 4. Bugs fixed (https://bugzilla.redhat.com/): 1921650 - CVE-2021-3121 gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index validation 1923268 - [Assisted-4.7] [Staging] Using two both spelling "canceled" "cancelled" 1947216 - [AWS] Missing iam:ListAttachedRolePolicies permission in permissions.go 1953963 - Enable/Disable host operations returns cluster resource with incomplete hosts list 1957749 - ovn-kubernetes pod should have CPU and memory requests set but not limits 1959238 - CVO creating cloud-controller-manager too early causing upgrade failures 1960103 - SR-IOV obliviously reboot the node 1961941 - Local Storage Operator using LocalVolume CR fails to create PV's when backend storage failure is simulated 1962302 - packageserver clusteroperator does not set reason or message for Available condition 1962312 - Deployment considered unhealthy despite being available and at latest generation 1962435 - Public DNS records were not deleted when destroying a cluster which is using byo private hosted zone 1963115 - Test verify /run filesystem contents failing 5. 7.4) - noarch, x86_64 3. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: kernel security and bug fix update Advisory ID: RHSA-2021:2314-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:2314 Issue date: 2021-06-08 CVE Names: CVE-2020-8648 CVE-2020-12362 CVE-2020-12363 CVE-2020-12364 CVE-2020-27170 CVE-2021-3347 ===================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - noarch, x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: Integer overflow in Intel(R) Graphics Drivers (CVE-2020-12362) * kernel: Use after free via PI futex state (CVE-2021-3347) * kernel: use-after-free in n_tty_receive_buf_common function in drivers/tty/n_tty.c (CVE-2020-8648) * kernel: Improper input validation in some Intel(R) Graphics Drivers (CVE-2020-12363) * kernel: Null pointer dereference in some Intel(R) Graphics Drivers (CVE-2020-12364) * kernel: Speculation on pointer arithmetic against bpf_context pointer (CVE-2020-27170) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * kernel crash when call the timer function (sctp_generate_proto_unreach_event) of sctp module (BZ#1707184) * SCSI error handling process on HP P440ar controller gets stuck indefinitely in device reset operation (BZ#1830268) * netfilter: reproducible deadlock on nft_log module autoload (BZ#1858329) * netfilter: NULL pointer dereference in nf_tables_set_lookup() (BZ#1873171) * [DELL EMC 7.9 Bug]: No acpi_pad threads on top command for "power cap policy equal to 0 watts" (BZ#1883174) * A race between i40e_ndo_set_vf_mac() and i40e_vsi_clear() in the i40e driver causes a use after free condition of the kmalloc-4096 slab cache. (BZ#1886003) * netxen driver performs poorly with RT kernel (BZ#1894274) * gendisk->disk_part_tbl->last_lookup retains pointer after partition deletion (BZ#1898596) * Kernel experiences panic in update_group_power() due to division error even with Bug 1701115 fix (BZ#1910763) * RHEL7.9 - zfcp: fix handling of FCP_RESID_OVER bit in fcp ingress path (BZ#1917839) * RHEL7.9 - mm/THP: do not access vma->vm_mm after calling handle_userfault (BZ#1917840) * raid: wrong raid io account (BZ#1927106) * qla2x00_status_cont_entry() missing upstream patch that prevents unnecessary ABRT/warnings (BZ#1933784) * RHEL 7.9.z - System hang caused by workqueue stall in qla2xxx driver (BZ#1937945) * selinux: setsebool can trigger a deadlock (BZ#1939091) * [Hyper-V][RHEL-7] Cannot boot kernel 3.10.0-1160.21.1.el7.x86_64 on Hyper-V (BZ#1941841) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1802559 - CVE-2020-8648 kernel: use-after-free in n_tty_receive_buf_common function in drivers/tty/n_tty.c 1922249 - CVE-2021-3347 kernel: Use after free via PI futex state 1930246 - CVE-2020-12362 kernel: Integer overflow in Intel(R) Graphics Drivers 1930249 - CVE-2020-12363 kernel: Improper input validation in some Intel(R) Graphics Drivers 1930251 - CVE-2020-12364 kernel: Null pointer dereference in some Intel(R) Graphics Drivers 1940627 - CVE-2020-27170 kernel: Speculation on pointer arithmetic against bpf_context pointer 1941841 - [Hyper-V][RHEL-7] Cannot boot kernel 3.10.0-1160.21.1.el7.x86_64 on Hyper-V 6. Package List: Red Hat Enterprise Linux Client (v. 7): Source: kernel-3.10.0-1160.31.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-1160.31.1.el7.noarch.rpm kernel-doc-3.10.0-1160.31.1.el7.noarch.rpm x86_64: bpftool-3.10.0-1160.31.1.el7.x86_64.rpm bpftool-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.31.1.el7.x86_64.rpm kernel-devel-3.10.0-1160.31.1.el7.x86_64.rpm kernel-headers-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-1160.31.1.el7.x86_64.rpm perf-3.10.0-1160.31.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm python-perf-3.10.0-1160.31.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: bpftool-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-1160.31.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v. 7): Source: kernel-3.10.0-1160.31.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-1160.31.1.el7.noarch.rpm kernel-doc-3.10.0-1160.31.1.el7.noarch.rpm x86_64: bpftool-3.10.0-1160.31.1.el7.x86_64.rpm bpftool-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.31.1.el7.x86_64.rpm kernel-devel-3.10.0-1160.31.1.el7.x86_64.rpm kernel-headers-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-1160.31.1.el7.x86_64.rpm perf-3.10.0-1160.31.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm python-perf-3.10.0-1160.31.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v. 7): x86_64: bpftool-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-1160.31.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm Red Hat Enterprise Linux Server (v. 7): Source: kernel-3.10.0-1160.31.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-1160.31.1.el7.noarch.rpm kernel-doc-3.10.0-1160.31.1.el7.noarch.rpm ppc64: bpftool-3.10.0-1160.31.1.el7.ppc64.rpm bpftool-debuginfo-3.10.0-1160.31.1.el7.ppc64.rpm kernel-3.10.0-1160.31.1.el7.ppc64.rpm kernel-bootwrapper-3.10.0-1160.31.1.el7.ppc64.rpm kernel-debug-3.10.0-1160.31.1.el7.ppc64.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.ppc64.rpm kernel-debug-devel-3.10.0-1160.31.1.el7.ppc64.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.ppc64.rpm kernel-debuginfo-common-ppc64-3.10.0-1160.31.1.el7.ppc64.rpm kernel-devel-3.10.0-1160.31.1.el7.ppc64.rpm kernel-headers-3.10.0-1160.31.1.el7.ppc64.rpm kernel-tools-3.10.0-1160.31.1.el7.ppc64.rpm kernel-tools-debuginfo-3.10.0-1160.31.1.el7.ppc64.rpm kernel-tools-libs-3.10.0-1160.31.1.el7.ppc64.rpm perf-3.10.0-1160.31.1.el7.ppc64.rpm perf-debuginfo-3.10.0-1160.31.1.el7.ppc64.rpm python-perf-3.10.0-1160.31.1.el7.ppc64.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.ppc64.rpm ppc64le: bpftool-3.10.0-1160.31.1.el7.ppc64le.rpm bpftool-debuginfo-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-bootwrapper-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-debug-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-devel-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-headers-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-tools-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-tools-libs-3.10.0-1160.31.1.el7.ppc64le.rpm perf-3.10.0-1160.31.1.el7.ppc64le.rpm perf-debuginfo-3.10.0-1160.31.1.el7.ppc64le.rpm python-perf-3.10.0-1160.31.1.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.ppc64le.rpm s390x: bpftool-3.10.0-1160.31.1.el7.s390x.rpm bpftool-debuginfo-3.10.0-1160.31.1.el7.s390x.rpm kernel-3.10.0-1160.31.1.el7.s390x.rpm kernel-debug-3.10.0-1160.31.1.el7.s390x.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.s390x.rpm kernel-debug-devel-3.10.0-1160.31.1.el7.s390x.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.s390x.rpm kernel-debuginfo-common-s390x-3.10.0-1160.31.1.el7.s390x.rpm kernel-devel-3.10.0-1160.31.1.el7.s390x.rpm kernel-headers-3.10.0-1160.31.1.el7.s390x.rpm kernel-kdump-3.10.0-1160.31.1.el7.s390x.rpm kernel-kdump-debuginfo-3.10.0-1160.31.1.el7.s390x.rpm kernel-kdump-devel-3.10.0-1160.31.1.el7.s390x.rpm perf-3.10.0-1160.31.1.el7.s390x.rpm perf-debuginfo-3.10.0-1160.31.1.el7.s390x.rpm python-perf-3.10.0-1160.31.1.el7.s390x.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.s390x.rpm x86_64: bpftool-3.10.0-1160.31.1.el7.x86_64.rpm bpftool-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.31.1.el7.x86_64.rpm kernel-devel-3.10.0-1160.31.1.el7.x86_64.rpm kernel-headers-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-1160.31.1.el7.x86_64.rpm perf-3.10.0-1160.31.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm python-perf-3.10.0-1160.31.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): ppc64: bpftool-debuginfo-3.10.0-1160.31.1.el7.ppc64.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.ppc64.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.ppc64.rpm kernel-debuginfo-common-ppc64-3.10.0-1160.31.1.el7.ppc64.rpm kernel-tools-debuginfo-3.10.0-1160.31.1.el7.ppc64.rpm kernel-tools-libs-devel-3.10.0-1160.31.1.el7.ppc64.rpm perf-debuginfo-3.10.0-1160.31.1.el7.ppc64.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.ppc64.rpm ppc64le: bpftool-debuginfo-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-debug-devel-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-1160.31.1.el7.ppc64le.rpm kernel-tools-libs-devel-3.10.0-1160.31.1.el7.ppc64le.rpm perf-debuginfo-3.10.0-1160.31.1.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.ppc64le.rpm x86_64: bpftool-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-1160.31.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: kernel-3.10.0-1160.31.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-1160.31.1.el7.noarch.rpm kernel-doc-3.10.0-1160.31.1.el7.noarch.rpm x86_64: bpftool-3.10.0-1160.31.1.el7.x86_64.rpm bpftool-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.31.1.el7.x86_64.rpm kernel-devel-3.10.0-1160.31.1.el7.x86_64.rpm kernel-headers-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-1160.31.1.el7.x86_64.rpm perf-3.10.0-1160.31.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm python-perf-3.10.0-1160.31.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: bpftool-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-1160.31.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.31.1.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-8648 https://access.redhat.com/security/cve/CVE-2020-12362 https://access.redhat.com/security/cve/CVE-2020-12363 https://access.redhat.com/security/cve/CVE-2020-12364 https://access.redhat.com/security/cve/CVE-2020-27170 https://access.redhat.com/security/cve/CVE-2021-3347 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYL/x1NzjgjWX9erEAQijGA//bxt7JJkdkIO3eT3vTQ6mYtMErGKBVx8A sI+zjh/mYmaocA6UrE88bV1ixfJ2xknb9HfFBjQywPAiqTiRXHUyiL24IyGe5Lit WkPjLRDHCb/q56rl1EGkyr3noikZCNuNF9HOf8PHukJmLqD6iLWWws8J0knY9QyR /8scePwyCR4wqr2ru5etg5TKx+pkOY+Dfnwhgy6U2thQI58/Flvn7GyOBvSG69M8 6gewtkav1Fnw7WlLT386OjrAajBw6Pd9xee+S7T9qFv/BfC5k0HA26qbnMaAfzle YKXmjoIV7ExiszvspqZgdlsg0835BUALUIikbpnTvh7Kl2MY2BhBIqJvKOWeT3Mp VIpkMs4HVALkHoDqzYDZx8WKEy0hrDAjczT+aWtvXJmHEBmsHEx5Ny8tvYk1w3t/ cNVvfj+EqFaSY1GSNY1MG2ZDzIDYWrx+rGKA7tgqtwSlCdYEbORlXCDu+W8+c7Xg g1vE8kfpkbxyLpvlJ0iOWoLiOCCrZ04fiXXhgSn9O1/zmOwkijFHk5x/aFDEoyBE O/s2rawA1cADPiLTxGWU9/MITpQuS+FuAc235HT8VRSXvsV3ZHB36N1z4JZcPB5P FN8hH+ibnEOlpKC7YOE9K4eQ/jG1etWhVWctf7HcP2nbQSpiiZQoQGPznvt+6OKQ XAOam1B//x4= =HTlr -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce . Bug Fix(es): * memcg: mem_cgroup_idr can be updated in an uncoordinated manner which can lead to corruption (BZ#1931901) * Kernel experiences panic in update_group_power() due to division error even with Bug 1701115 fix (BZ#1961624) 4. Description: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Bug Fix(es): * kernel-rt: update RT source tree to the latest RHEL-8.2.z9 Batch source tree (BZ#1949685) 4. Bug Fix(es): * RHEL8.3 - Include patch: powerpc/pci: Remove LSI mappings on device teardown (xive/pci) (BZ#1931925) * RHEL8.2 - [P10][Denali] System crash during a perf sanity test (perf:) (BZ#1933995) * [RHEL 8.1] AMD/EPYC nested guest virtualization L1 guest crash (BZ#1945404) * [HPEMC 8.1 REGRESSION] skx_uncore: probe of 0008:80:08.0 failed with error -22 (BZ#1947114) * iperf3 over geneve created on vlan would fail (BZ#1947979) * [Azure][RHEL-8]Mellanox Patches To Prevent Kernel Hang In MLX4 (BZ#1952071) * [HPEMC 8.4 REGRESSION]: perf/x86/intel/uncore kernel panic vulnerability on Haswell and Broadwell servers (BZ#1956685) 4

Trust: 2.43

sources: NVD: CVE-2020-12362 // JVNDB: JVNDB-2020-016137 // VULHUB: VHN-165033 // VULMON: CVE-2020-12362 // PACKETSTORM: 162626 // PACKETSTORM: 162877 // PACKETSTORM: 162878 // PACKETSTORM: 163020 // PACKETSTORM: 163050 // PACKETSTORM: 162907 // PACKETSTORM: 162916

AFFECTED PRODUCTS

vendor:	intel	model:	graphics drivers	scope:	lt	version:	26.20.100.7212	Trust: 1.0
vendor:	インテル	model:	intel graphics drivers	scope:	eq	version:	for linux kernel 5.5	Trust: 0.8
vendor:	インテル	model:	intel graphics drivers	scope:	eq	version:	-	Trust: 0.8
vendor:	インテル	model:	intel graphics drivers	scope:	eq	version:	for windows 26.20.100.7212	Trust: 0.8

sources: JVNDB: JVNDB-2020-016137 // NVD: CVE-2020-12362

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2020-12362
value:	HIGH
Trust: 1.0
NVD:	CVE-2020-12362
value:	HIGH
Trust: 0.8
VULHUB:	VHN-165033
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2020-12362
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2020-12362
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-165033
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2020-12362
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2020-12362
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-165033 // VULMON: CVE-2020-12362 // JVNDB: JVNDB-2020-016137 // NVD: CVE-2020-12362

PROBLEMTYPE DATA

problemtype:	CWE-190	Trust: 1.1
problemtype:	Integer overflow or wraparound (CWE-190) [NVD Evaluation ]	Trust: 0.8

sources: VULHUB: VHN-165033 // JVNDB: JVNDB-2020-016137 // NVD: CVE-2020-12362

TYPE

overflow

Trust: 0.5

sources: PACKETSTORM: 162878 // PACKETSTORM: 163020 // PACKETSTORM: 163050 // PACKETSTORM: 162907 // PACKETSTORM: 162916

PATCH

title:	INTEL-SA-00438	url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html	Trust: 0.8
title:	HP: SUPPORT COMMUNICATION- SECURITY BULLETIN HPSBHF03719 rev. 3 - Intel® Graphics Drivers February 2021 Security Update	url:	https://vulmon.com/vendoradvisory?qidtp=hp_bulletin&qid=bcf1379c5775396217da9c829370c99e	Trust: 0.1
title:	HP: SUPPORT COMMUNICATION- SECURITY BULLETIN HPSBHF03719 rev. 3 - Intel® Graphics Drivers February 2021 Security Update	url:	https://vulmon.com/vendoradvisory?qidtp=hp_bulletin&qid=c02df4fdc335594d9980cbdd55836bc9	Trust: 0.1
title:	Palo Alto Networks Security Advisory: PAN-SA-2024-0001 Informational Bulletin: Impact of OSS CVEs in PAN-OS	url:	https://vulmon.com/vendoradvisory?qidtp=palo_alto_networks_security_advisory&qid=34f98e4f4344c97599fe2d33618956a7	Trust: 0.1
title:	veracode-container-security-finding-parser	url:	https://github.com/vincent-deng/veracode-container-security-finding-parser	Trust: 0.1

sources: VULMON: CVE-2020-12362 // JVNDB: JVNDB-2020-016137

EXTERNAL IDS

db:	NVD	id:	CVE-2020-12362	Trust: 2.7
db:	JVN	id:	JVNVU93808918	Trust: 0.8
db:	JVNDB	id:	JVNDB-2020-016137	Trust: 0.8
db:	PACKETSTORM	id:	163020	Trust: 0.2
db:	PACKETSTORM	id:	162878	Trust: 0.2
db:	PACKETSTORM	id:	162907	Trust: 0.2
db:	PACKETSTORM	id:	162626	Trust: 0.2
db:	PACKETSTORM	id:	163050	Trust: 0.2
db:	PACKETSTORM	id:	162877	Trust: 0.2
db:	PACKETSTORM	id:	162916	Trust: 0.2
db:	PACKETSTORM	id:	163026	Trust: 0.1
db:	PACKETSTORM	id:	162640	Trust: 0.1
db:	PACKETSTORM	id:	162654	Trust: 0.1
db:	PACKETSTORM	id:	162837	Trust: 0.1
db:	PACKETSTORM	id:	163248	Trust: 0.1
db:	PACKETSTORM	id:	163018	Trust: 0.1
db:	PACKETSTORM	id:	162768	Trust: 0.1
db:	PACKETSTORM	id:	163188	Trust: 0.1
db:	VULHUB	id:	VHN-165033	Trust: 0.1
db:	VULMON	id:	CVE-2020-12362	Trust: 0.1

sources: VULHUB: VHN-165033 // VULMON: CVE-2020-12362 // JVNDB: JVNDB-2020-016137 // PACKETSTORM: 162626 // PACKETSTORM: 162877 // PACKETSTORM: 162878 // PACKETSTORM: 163020 // PACKETSTORM: 163050 // PACKETSTORM: 162907 // PACKETSTORM: 162916 // NVD: CVE-2020-12362

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2020-12362	Trust: 1.5
url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html	Trust: 1.2
url:	https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html	Trust: 1.1
url:	https://jvn.jp/vu/jvnvu93808918/index.html	Trust: 0.8
url:	https://access.redhat.com/security/cve/cve-2020-12362	Trust: 0.7
url:	https://listman.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.7
url:	https://access.redhat.com/security/team/contact/	Trust: 0.7
url:	https://bugzilla.redhat.com/):	Trust: 0.7
url:	https://access.redhat.com/articles/11258	Trust: 0.6
url:	https://access.redhat.com/security/updates/classification/#important	Trust: 0.6
url:	https://access.redhat.com/security/team/key/	Trust: 0.6
url:	https://access.redhat.com/security/cve/cve-2020-12114	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2020-12114	Trust: 0.4
url:	https://access.redhat.com/security/cve/cve-2020-36322	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2019-19528	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-12464	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-14314	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2019-19523	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-0431	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-25285	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-35508	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-25212	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2019-19523	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-28974	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-14356	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-27835	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-15437	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-25284	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-25704	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-27786	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-25643	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2019-18811	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-11608	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-11608	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-24394	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-0431	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2021-0342	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2019-18811	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-12464	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2019-19528	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-25705	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-25211	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25705	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25211	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2019-19532	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2019-19532	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-0466	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-0466	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-28374	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-28374	Trust: 0.2
url:	https://cwe.mitre.org/data/definitions/190.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://support.hp.com//us-en/document/c07023592	Trust: 0.1
url:	https://github.com/vincent-deng/veracode-container-security-finding-parser	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:1578	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-24394	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-35508	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25212	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25643	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-36322	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25704	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-0342	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25284	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-14356	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25285	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-28974	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-27835	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-14314	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-15437	Trust: 0.1
url:	https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-27786	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-25039	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-14347	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-8286	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-28196	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-15358	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-25712	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-15586	Trust: 0.1
url:	https://docs.openshift.com/container-platform/4.7/updating/updating-cluster	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-13543	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-9951	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-13434	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-25037	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-36242	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-25037	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-3842	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-13776	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-24977	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-8231	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-3121	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-10878	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-29362	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-9948	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-13012	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-28935	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-25034	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-16845	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-8285	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-25035	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-10228	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-9169	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-14866	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-26116	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-14363	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-25038	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-14866	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-13584	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-26137	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-25013	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-14360	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-21645	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-25040	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-27783	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-29361	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-24330	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-25042	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-25042	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-25038	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-25659	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-25032	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-25041	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-25036	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-25032	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-21643	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-27619	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-25215	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-9983	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-3177	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-9169	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-24331	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-3326	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-25036	Trust: 0.1
url:	https://docs.openshift.com/container-platform/4.7/release_notes/ocp-4-7-rel	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-25013	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-30465	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-25035	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-2708	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-14345	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-14344	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-23336	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-14362	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-21644	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-14361	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-8927	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-10543	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:2121	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-29363	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-24332	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-3842	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-10543	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-25039	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-13012	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-14346	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-25040	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-2708	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-10228	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-10878	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-25041	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:2122	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-8284	Trust: 0.1
url:	https://access.redhat.com/security/updates/classification/#moderate	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-21642	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2019-25034	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-27618	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-29661	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-29661	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:2164	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-8648	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-12364	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-3347	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-12363	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-8648	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-12364	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-27170	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-27170	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:2314	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-12363	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-3347	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:2355	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:2190	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:2185	Trust: 0.1

CREDITS

Red Hat

Trust: 0.7

sources: PACKETSTORM: 162626 // PACKETSTORM: 162877 // PACKETSTORM: 162878 // PACKETSTORM: 163020 // PACKETSTORM: 163050 // PACKETSTORM: 162907 // PACKETSTORM: 162916

SOURCES

db:	VULHUB	id:	VHN-165033
db:	VULMON	id:	CVE-2020-12362
db:	JVNDB	id:	JVNDB-2020-016137
db:	PACKETSTORM	id:	162626
db:	PACKETSTORM	id:	162877
db:	PACKETSTORM	id:	162878
db:	PACKETSTORM	id:	163020
db:	PACKETSTORM	id:	163050
db:	PACKETSTORM	id:	162907
db:	PACKETSTORM	id:	162916
db:	NVD	id:	CVE-2020-12362

LAST UPDATE DATE

2025-04-30T01:55:45.437000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-165033	date:	2021-02-22T00:00:00
db:	VULMON	id:	CVE-2020-12362	date:	2023-04-01T00:00:00
db:	JVNDB	id:	JVNDB-2020-016137	date:	2021-11-09T09:08:00
db:	NVD	id:	CVE-2020-12362	date:	2024-11-21T04:59:34.980

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-165033	date:	2021-02-17T00:00:00
db:	VULMON	id:	CVE-2020-12362	date:	2021-02-17T00:00:00
db:	JVNDB	id:	JVNDB-2020-016137	date:	2021-11-09T00:00:00
db:	PACKETSTORM	id:	162626	date:	2021-05-19T13:56:20
db:	PACKETSTORM	id:	162877	date:	2021-06-01T14:45:29
db:	PACKETSTORM	id:	162878	date:	2021-06-01T14:45:52
db:	PACKETSTORM	id:	163020	date:	2021-06-09T13:15:48
db:	PACKETSTORM	id:	163050	date:	2021-06-09T13:43:29
db:	PACKETSTORM	id:	162907	date:	2021-06-02T13:33:47
db:	PACKETSTORM	id:	162916	date:	2021-06-02T13:48:59
db:	NVD	id:	CVE-2020-12362	date:	2021-02-17T14:15:15.123