The new kernel security update for CentOS 7 and RHEL 7 patches a total of 7 security issues, including CVE-2020-14385, a flaw found in the XFS file system’s metadata validator that can lead to the file system being shutdown, as well as CVE-2020-10769, a buffer over-read flaw found in the IPsec Cryptographic algorithm’s module. Also patched are CVE-2020-14314, a memory out-of-bounds read flaw found in the EXT3/EXT4 filesystems that could allow a local user to crash the system, CVE-2019-18282, a device tracking vulnerability found in the flow_dissector feature, and CVE-2020-24394, a vulnerability found in the NFSv4.2 protocol, which could allow a privileged local attacker to cause a kernel information leak.