CentOS Security Enhancements/Kernel Upgrade
Feature Summary and Revision History
|
Applicable Product(s) or Functional Area |
CPS |
|
Applicable Platform(s) |
Not Applicable |
|
Default Setting |
Not Applicable |
|
Related Changes in This Release |
Not Applicable |
|
Related Documentation |
Not Applicable |
|
Revision Details |
Release |
|---|---|
|
Kernel upgraded to 3.10.0-957.12.2.el7 Grafana upgraded to 6.2.2-1 |
19.4.0 |
|
CentOS upgraded to 7.6 (1810) Kernel upgraded to 3.10.0-957.10.1.el7 |
19.3.0 |
|
Kernel upgraded to 3.10.0-957.5.1.el7 |
19.2.0 |
|
Kernel upgraded to 3.10.0-957.e17 |
19.1.0 |
|
First introduced: kernel upgraded to 3.10.0-862.14.4.el7.x86_64 |
18.5.0 |
Feature Description
In this release, the following upgrades have been done to fix the vulnerabilities:
-
Kernel upgraded from 3.10.0-957.10.1.el7 to 3.10.0-957.12.2.el7
-
Grafana upgraded from 4.6.3-1 to 6.2.2-1
For service related issues, you can use journactl to get systemctl logs.
The following tables list the vulnerabilities that have been fixed as a part of this release:
|
CVE |
Name |
|---|---|
|
CVE-2019-8324 |
ruby (CESA-2019:1235) |
|
CVE-2019-8322 |
ruby (CESA-2019:1235) |
|
CVE-2019-8323 |
ruby (CESA-2019:1235) |
|
CVE-2019-8325 |
ruby (CESA-2019:1235) |
|
CVE-2019-5953 |
wget (CESA-2019:1228) |
|
CVE-2019-6974 |
kernel (CESA-2019:0818) |
|
CVE-2019-7221 |
kernel (CESA-2019:0818) |
|
CVE-2018-12130 |
kernel (CESA-2019:1168) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) |
|
CVE-2018-12126 |
kernel (CESA-2019:1168) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) |
|
CVE-2018-12127 |
kernel (CESA-2019:1168) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) |
|
CVE-2019-11091 |
kernel (CESA-2019:1168) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) |
|
CVE-2019-9636 |
python (CESA-2019:0710) |
|
CVE-2016-10745 |
python-jinja2 (CESA-2019:1022) |
|
CVE-2018-12130 |
libvirt (CESA-2019:1177) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) |
|
CVE-2018-12126 |
libvirt (CESA-2019:1177) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) |
|
CVE-2018-12127 |
libvirt (CESA-2019:1177) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) |
|
CVE-2019-11091 |
libvirt (CESA-2019:1177) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) |
|
CVE |
Name |
|---|---|
|
CVE-2019-8322 |
CentOS 7 : ruby (CESA-2019:1235) |
|
CVE-2019-8323 |
CentOS 7 : ruby (CESA-2019:1235) |
|
CVE-2019-8324 |
CentOS 7 : ruby (CESA-2019:1235) |
|
CVE-2019-8325 |
CentOS 7 : ruby (CESA-2019:1235) |
|
CVE-2019-5953 |
CentOS 7 : wget (CESA-2019:1228) |
|
CVE-2019-6974 |
CentOS 7 : kernel (CESA-2019:0818) |
|
CVE-2019-7221 |
CentOS 7 : kernel (CESA-2019:0818) |
|
CVE-2018-12130 |
CentOS 7 : kernel (CESA-2019:1168) |
|
CVE-2018-12126 |
CentOS 7 : kernel (CESA-2019:1168) |
|
CVE-2018-12127 |
CentOS 7 : kernel (CESA-2019:1168) |
|
CVE-2019-11091 |
CentOS 7 : kernel (CESA-2019:1168) |
|
CVE-2019-9636 |
CentOS 7 : python (CESA-2019:0710 |
|
CVE-2016-10745 |
CentOS 7 : python-jinja2 (CESA-2019:1022) |
|
CVE-2018-12130 |
CentOS 7 : libvirt (CESA-2019:1177) |
|
CVE-2018-12126 |
CentOS 7 : libvirt (CESA-2019:1177) |
|
CVE-2018-12127 |
CentOS 7 : libvirt (CESA-2019:1177) |
|
CVE-2019-11091 |
CentOS 7 : libvirt (CESA-2019:1177) |
|
CVE-2018-12099 |
Grafana Dashboard Links Cross-Site Scripting Vulnerability |
|
CVE-2018-15727 |
Grafana remember me Cookie Authentication Bypass Vulnerability |
|
CVE-2018-19039 |
Grafana Arbitrary File Read Information Disclosure Vulnerability |
Feedback