[LU-12792] kernel update [RHEL7.7 3.10.0-1062.1.2.el7] Created: 20/Sep/19  Updated: 12/Nov/19  Resolved: 12/Nov/19

Status: Resolved
Project: Lustre
Component/s: None
Affects Version/s: None
Fix Version/s: None

Type: Bug Priority: Minor
Reporter: Jian Yu Assignee: Jian Yu
Resolution: Won't Fix Votes: 0
Labels: None

Issue Links:
Related
is related to LU-12724 kernel update [RHEL7.7 3.10.0-1062.1.... Resolved
is related to LU-12891 kernel update [RHEL7.7 3.10.0-1062.4.... Resolved
Severity: 3
Rank (Obsolete): 9223372036854775807

 Description   

Security Fix(es):

  • A buffer overflow flaw was found in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host. (CVE-2019-14835)

https://access.redhat.com/errata/product/69/ver=/rhel---7/x86_64/RHSA-2019:2829

 Comments   
Comment by Gerrit Updater [ 20/Sep/19 ]

Jian Yu (yujian@whamcloud.com) uploaded a new patch: https://review.whamcloud.com/36247
Subject: LU-12792 kernel: kernel update RHEL7.7 [3.10.0-1062.1.2.el7]
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 9ec0374a5eed69c98a204200ba512c64b325a11b

Comment by Gerrit Updater [ 20/Sep/19 ]

Jian Yu (yujian@whamcloud.com) uploaded a new patch: https://review.whamcloud.com/36248
Subject: LU-12792 kernel: kernel update RHEL7.7 [3.10.0-1062.1.2.el7]
Project: fs/lustre-release
Branch: b2_12
Current Patch Set: 1
Commit: 0f95968e62f68f08f47169c9384a0bf95e11ae43

Comment by Jian Yu [ 12/Nov/19 ]

New kernel version is available: LU-12964 kernel update [RHEL7.7 3.10.0-1062.4.2.el7]

Generated at Sat Feb 10 02:55:41 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.