The new Linux kernel security updates from the Red Hat marking product safety team has "important" security implications, because it fixes several critical flaws, including the impact of x86 processors Spectre SWAPGS gadgets Vulnerability ( CVE-2019-1125 ).
Also fixes a security vulnerability ( CVE-2019-5489 ), leading to side channel attacks page cache, which is a problem Salsa20 encryption algorithm could allow a local attacker to cause a denial of service ( CVE-2017-17805 ), as well as defects ( 2018-17972-CVE ), the kernel stack allows non-privileged users to check any task.
In addition to addressing security vulnerabilities listed above outside, the new kernel security patch also fixes some bugs report or Red Hat community engineer found. These include running user space script kernel crash occurred after the error and issue 32 page table in the kernel.
When the second argument is NULL, the congestion_wait () function in another pending, fs / binfmt_misc.c errors in the file, and cause errors Linux Specter backport, also fixes the Null pointer exception v4l2_ctrl_query_menu OOPS problem for the destruction of third party software packages compiled headers.
Last but not least, the kernel patch fixes a problem that the report uses to prevent the branch target injection attacks retpoline ease on Red Hat Enterprise Linux 6.10 system is vulnerable Skylake on Intel processors.
The new Linux kernel security update applies to the Red Hat Enterprise Linux Server 6, Red Hat Enterprise Linux Workstation 6, Red Hat Enterprise Linux Desktop 6, applies to IBM z Systems of Red Hat Enterprise Linux 6, applies to Power of Red Hat Enterprise Linux 6 , big endian, Red Hat Enterprise Linux for Scientific Computing 6 and CentOS Linux 6.