The new kernel security and bug fix update has been rated by Red Hat Product Security as having a security impact of “Important.”
It affects the kernel packages in all supported Red Hat Enterprise Linux 7 operating system editions, as well as the CentOS Linux 7 operating system series. The update addresses 11 security vulnerabilities, including CVE-2020-25705, a flaw discovered in the ICMP global rate limiter that could allow an off-path remote attacker to bypass source port UDP randomization and facilitate attacks on UDP based services that depend on source port randomization.