Action not permitted
Modal body text goes here.
CVE-2011-2495
Vulnerability from cvelistv5
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T23:00:34.104Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "[oss-security] 20110627 Re: CVE request: kernel: taskstats/procfs io infoleak", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2011/06/27/1" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51" }, { "name": "RHSA-2011:1212", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2011-1212.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d1221f375c94ef961ba8574ac4f85c8870ddd51" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2011-06-27T00:00:00", "descriptions": [ { "lang": "en", "value": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2013-12-27T00:57:03", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "name": "[oss-security] 20110627 Re: CVE request: kernel: taskstats/procfs io infoleak", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2011/06/27/1" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51" }, { "name": "RHSA-2011:1212", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2011-1212.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d1221f375c94ef961ba8574ac4f85c8870ddd51" } ] } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2011-2495", "datePublished": "2012-06-13T10:00:00", "dateReserved": "2011-06-15T00:00:00", "dateUpdated": "2024-08-06T23:00:34.104Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2011-2495\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2012-06-13T10:24:55.827\",\"lastModified\":\"2024-11-21T01:28:24.103\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password.\"},{\"lang\":\"es\",\"value\":\"fs/proc/base.c del kernel de Linux en versiones anteriores a la 2.6.39.4 no restringe el acceso apropiadamente a los archivos /proc/#####/io, lo que facilita a usuarios locales obtener estad\u00edsticas sobre I/O confidenciales consultando un archivo, como se ha demostrado descubriendo la lengitud de la contrase\u00f1a de otro usuario.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-264\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.6.39.3\",\"matchCriteriaId\":\"94597E40-EA22-414E-BF5A-A4664E943F09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EAAF54BC-6282-492F-BA52-8792223320ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.39:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"2493C2FB-2BA1-4DB3-BC04-E282C9CD399D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.39:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"18DBC8AF-18ED-4879-8888-23022E494D14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.39:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"75EB375B-8ADF-4EAB-A3FB-ED5D35E5E719\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.39:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"D49BB231-622E-4F20-97C8-E6289933912C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.39:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D6859AA-DA7F-4AF9-8443-05962171D6E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.39:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B79A89D-F048-48C5-B148-4B38A6C3953B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.39:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEBA9217-9105-4BA3-BE1E-FE387FECEF87\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.39.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1713DDF4-33F1-4716-84D7-FCFECCF9BCCA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.39.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABCE5879-317D-4A33-B6DA-A9ACF553F8E9\"}]}]}],\"references\":[{\"url\":\"http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d1221f375c94ef961ba8574ac4f85c8870ddd51\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2011-1212.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2011/06/27/1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=716825\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Patch\"]},{\"url\":\"http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d1221f375c94ef961ba8574ac4f85c8870ddd51\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2011-1212.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2011/06/27/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=716825\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\"]}]}}" } }
var-201206-0279
Vulnerability from variot
fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user's password. Hitachi JP1 products are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks. The following products are affected: JP1/IT Resource Management - Manager JP1/IT Service Level Management - Manager. ----------------------------------------------------------------------
Secunia is hiring!
Find your next job here:
http://secunia.com/company/jobs/
TITLE: Hitachi JP1/IT Service Level Management Unspecified Cross-Site Scripting Vulnerability
SECUNIA ADVISORY ID: SA47804
VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/47804/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=47804
RELEASE DATE: 2012-01-31
DISCUSS ADVISORY: http://secunia.com/advisories/47804/#comments
AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s)
http://secunia.com/advisories/47804/
ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS
https://ca.secunia.com/?page=viewadvisory&vuln_id=47804
ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING
http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/
DESCRIPTION: A vulnerability has been reported in Hitachi JP1/IT Service Level Management, which can be exploited by malicious people to conduct cross-site scripting attacks.
Certain unspecified input is not properly sanitised before being returned to the user.
The vulnerability is reported in version 09-50.
PROVIDED AND/OR DISCOVERED BY: Reported by the vendor.
ORIGINAL ADVISORY: Hitachi (English): http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS12-005/index.html
Hitachi (Japanese): http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS12-005/index.html
OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities.
Subscribe: http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/
Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.
Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
===================================================================== Red Hat Security Advisory
Synopsis: Important: kernel security, bug fix, and enhancement update Advisory ID: RHSA-2011:1189-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2011-1189.html Issue date: 2011-08-23 CVE Names: CVE-2011-1182 CVE-2011-1576 CVE-2011-1593 CVE-2011-1776 CVE-2011-1898 CVE-2011-2183 CVE-2011-2213 CVE-2011-2491 CVE-2011-2492 CVE-2011-2495 CVE-2011-2497 CVE-2011-2517 CVE-2011-2689 CVE-2011-2695 =====================================================================
- Summary:
Updated kernel packages that fix several security issues, various bugs, and add two enhancements are now available for Red Hat Enterprise Linux 6.
The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.
- Relevant releases/architectures:
Red Hat Enterprise Linux Desktop (v. 6) - i386, noarch, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - noarch, x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, noarch, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, noarch, x86_64
- Description:
Security issues:
-
Using PCI passthrough without interrupt remapping support allowed KVM guests to generate MSI interrupts and thus potentially inject traps. A privileged guest user could use this flaw to crash the host or possibly escalate their privileges on the host. The fix for this issue can prevent PCI passthrough working and guests starting. Refer to Red Hat Bugzilla bug 715555 for details. (CVE-2011-1898, Important)
-
Flaw in the client-side NLM implementation could allow a local, unprivileged user to cause a denial of service. (CVE-2011-2491, Important)
-
Integer underflow in the Bluetooth implementation could allow a remote attacker to cause a denial of service or escalate their privileges by sending a specially-crafted request to a target system via Bluetooth. (CVE-2011-2497, Important)
-
Buffer overflows in the netlink-based wireless configuration interface implementation could allow a local user, who has the CAP_NET_ADMIN capability, to cause a denial of service or escalate their privileges on systems that have an active wireless interface. (CVE-2011-2517, Important)
-
Flaw in the way the maximum file offset was handled for ext4 file systems could allow a local, unprivileged user to cause a denial of service. (CVE-2011-2695, Important)
-
Flaw allowed napi_reuse_skb() to be called on VLAN packets. An attacker on the local network could use this flaw to send crafted packets to a target, possibly causing a denial of service. (CVE-2011-1576, Moderate)
-
Integer signedness error in next_pidmap() could allow a local, unprivileged user to cause a denial of service. (CVE-2011-1593, Moderate)
-
Race condition in the memory merging support (KSM) could allow a local, unprivileged user to cause a denial of service. KSM is off by default, but on systems running VDSM, or on KVM hosts, it is likely turned on by the ksm/ksmtuned services. (CVE-2011-2183, Moderate)
-
Flaw in inet_diag_bc_audit() could allow a local, unprivileged user to cause a denial of service. (CVE-2011-2213, Moderate)
-
Flaw in the way space was allocated in the Global File System 2 (GFS2) implementation. If the file system was almost full, and a local, unprivileged user made an fallocate() request, it could result in a denial of service. Setting quotas to prevent users from using all available disk space would prevent exploitation of this flaw. (CVE-2011-2689, Moderate)
-
Local, unprivileged users could send signals via the sigqueueinfo system call, with si_code set to SI_TKILL and with spoofed process and user IDs, to other processes. This flaw does not allow existing permission checks to be bypassed; signals can only be sent if your privileges allow you to already do so. (CVE-2011-1182, Low)
-
Heap overflow in the EFI GUID Partition Table (GPT) implementation could allow a local attacker to cause a denial of service by mounting a disk containing crafted partition tables. (CVE-2011-1776, Low)
-
Structure padding in two structures in the Bluetooth implementation was not initialized properly before being copied to user-space, possibly allowing local, unprivileged users to leak kernel stack memory to user-space. (CVE-2011-2492, Low)
-
/proc/[PID]/io is world-readable by default. Previously, these files could be read without any further restrictions. A local, unprivileged user could read these files, belonging to other, possibly privileged processes to gather confidential information, such as the length of a password used in a process. (CVE-2011-2495, Low)
Red Hat would like to thank Vasily Averin for reporting CVE-2011-2491; Dan Rosenberg for reporting CVE-2011-2497 and CVE-2011-2213; Ryan Sweat for reporting CVE-2011-1576; Robert Swiecki for reporting CVE-2011-1593; Andrea Righi for reporting CVE-2011-2183; Julien Tinnes of the Google Security Team for reporting CVE-2011-1182; Timo Warns for reporting CVE-2011-1776; Marek Kroemeke and Filip Palian for reporting CVE-2011-2492; and Vasiliy Kulikov of Openwall for reporting CVE-2011-2495.
- Solution:
Refer to the Technical Notes, available shortly from the link in the References, for bug fix and enhancement details.
Users should upgrade to these updated packages, which contain backported patches to correct these issues, and fix the bugs and add the enhancements noted in the Technical Notes. The system must be rebooted for this update to take effect.
Before applying this update, make sure all previously-released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259
To install kernel packages manually, use "rpm -ivh [package]". Do not use "rpm -Uvh" as that will remove the running kernel binaries from your system. You may use "rpm -e" to remove old kernels after determining that the new kernel functions properly on your system.
- Bugs fixed (http://bugzilla.redhat.com/):
690028 - CVE-2011-1182 kernel signal spoofing issue 695173 - CVE-2011-1576 kernel: net: Fix memory leak/corruption on VLAN GRO_DROP 697822 - CVE-2011-1593 kernel: proc: signedness issue in next_pidmap() 703019 - CVE-2011-2492 kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace 703026 - CVE-2011-1776 kernel: validate size of EFI GUID partition entries 709393 - CVE-2011-2491 kernel: rpc task leak after flock()ing NFS share 710338 - CVE-2011-2183 kernel: ksm: race between ksmd and exiting task 713827 - Parallel port issue in RHEL 6.0 server 714536 - CVE-2011-2213 kernel: inet_diag: insufficient validation 714982 - GFS2: Update to rhel6.1 broke dovecot writing to a gfs2 filesystem 715555 - CVE-2011-1898 virt: VT-d (PCI passthrough) MSI trap injection 716539 - bump domain memory limits [6.1.z] 716805 - CVE-2011-2497 kernel: bluetooth: buffer overflow in l2cap config request 716825 - CVE-2011-2495 kernel: /proc/PID/io infoleak 718152 - CVE-2011-2517 kernel: nl80211: missing check for valid SSID size in scan operations 720861 - CVE-2011-2689 kernel: gfs2: make sure fallocate bytes is a multiple of blksize 722557 - CVE-2011-2695 kernel: ext4: kernel panic when writing data to the last block of sparse file
- Package List:
Red Hat Enterprise Linux Desktop (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/kernel-2.6.32-131.12.1.el6.src.rpm
i386: kernel-2.6.32-131.12.1.el6.i686.rpm kernel-debug-2.6.32-131.12.1.el6.i686.rpm kernel-debug-debuginfo-2.6.32-131.12.1.el6.i686.rpm kernel-debug-devel-2.6.32-131.12.1.el6.i686.rpm kernel-debuginfo-2.6.32-131.12.1.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-131.12.1.el6.i686.rpm kernel-devel-2.6.32-131.12.1.el6.i686.rpm kernel-headers-2.6.32-131.12.1.el6.i686.rpm perf-2.6.32-131.12.1.el6.i686.rpm perf-debuginfo-2.6.32-131.12.1.el6.i686.rpm
noarch: kernel-doc-2.6.32-131.12.1.el6.noarch.rpm kernel-firmware-2.6.32-131.12.1.el6.noarch.rpm
x86_64: kernel-2.6.32-131.12.1.el6.x86_64.rpm kernel-debug-2.6.32-131.12.1.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm kernel-debug-devel-2.6.32-131.12.1.el6.x86_64.rpm kernel-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-131.12.1.el6.x86_64.rpm kernel-devel-2.6.32-131.12.1.el6.x86_64.rpm kernel-headers-2.6.32-131.12.1.el6.x86_64.rpm perf-2.6.32-131.12.1.el6.x86_64.rpm perf-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm
Red Hat Enterprise Linux HPC Node (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/kernel-2.6.32-131.12.1.el6.src.rpm
noarch: kernel-doc-2.6.32-131.12.1.el6.noarch.rpm kernel-firmware-2.6.32-131.12.1.el6.noarch.rpm
x86_64: kernel-2.6.32-131.12.1.el6.x86_64.rpm kernel-debug-2.6.32-131.12.1.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm kernel-debug-devel-2.6.32-131.12.1.el6.x86_64.rpm kernel-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-131.12.1.el6.x86_64.rpm kernel-devel-2.6.32-131.12.1.el6.x86_64.rpm kernel-headers-2.6.32-131.12.1.el6.x86_64.rpm perf-2.6.32-131.12.1.el6.x86_64.rpm perf-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm
Red Hat Enterprise Linux Server (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/kernel-2.6.32-131.12.1.el6.src.rpm
i386: kernel-2.6.32-131.12.1.el6.i686.rpm kernel-debug-2.6.32-131.12.1.el6.i686.rpm kernel-debug-debuginfo-2.6.32-131.12.1.el6.i686.rpm kernel-debug-devel-2.6.32-131.12.1.el6.i686.rpm kernel-debuginfo-2.6.32-131.12.1.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-131.12.1.el6.i686.rpm kernel-devel-2.6.32-131.12.1.el6.i686.rpm kernel-headers-2.6.32-131.12.1.el6.i686.rpm perf-2.6.32-131.12.1.el6.i686.rpm perf-debuginfo-2.6.32-131.12.1.el6.i686.rpm
noarch: kernel-doc-2.6.32-131.12.1.el6.noarch.rpm kernel-firmware-2.6.32-131.12.1.el6.noarch.rpm
ppc64: kernel-2.6.32-131.12.1.el6.ppc64.rpm kernel-bootwrapper-2.6.32-131.12.1.el6.ppc64.rpm kernel-debug-2.6.32-131.12.1.el6.ppc64.rpm kernel-debug-debuginfo-2.6.32-131.12.1.el6.ppc64.rpm kernel-debug-devel-2.6.32-131.12.1.el6.ppc64.rpm kernel-debuginfo-2.6.32-131.12.1.el6.ppc64.rpm kernel-debuginfo-common-ppc64-2.6.32-131.12.1.el6.ppc64.rpm kernel-devel-2.6.32-131.12.1.el6.ppc64.rpm kernel-headers-2.6.32-131.12.1.el6.ppc64.rpm perf-2.6.32-131.12.1.el6.ppc64.rpm perf-debuginfo-2.6.32-131.12.1.el6.ppc64.rpm
s390x: kernel-2.6.32-131.12.1.el6.s390x.rpm kernel-debug-2.6.32-131.12.1.el6.s390x.rpm kernel-debug-debuginfo-2.6.32-131.12.1.el6.s390x.rpm kernel-debug-devel-2.6.32-131.12.1.el6.s390x.rpm kernel-debuginfo-2.6.32-131.12.1.el6.s390x.rpm kernel-debuginfo-common-s390x-2.6.32-131.12.1.el6.s390x.rpm kernel-devel-2.6.32-131.12.1.el6.s390x.rpm kernel-headers-2.6.32-131.12.1.el6.s390x.rpm kernel-kdump-2.6.32-131.12.1.el6.s390x.rpm kernel-kdump-debuginfo-2.6.32-131.12.1.el6.s390x.rpm kernel-kdump-devel-2.6.32-131.12.1.el6.s390x.rpm perf-2.6.32-131.12.1.el6.s390x.rpm perf-debuginfo-2.6.32-131.12.1.el6.s390x.rpm
x86_64: kernel-2.6.32-131.12.1.el6.x86_64.rpm kernel-debug-2.6.32-131.12.1.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm kernel-debug-devel-2.6.32-131.12.1.el6.x86_64.rpm kernel-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-131.12.1.el6.x86_64.rpm kernel-devel-2.6.32-131.12.1.el6.x86_64.rpm kernel-headers-2.6.32-131.12.1.el6.x86_64.rpm perf-2.6.32-131.12.1.el6.x86_64.rpm perf-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm
Red Hat Enterprise Linux Workstation (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/kernel-2.6.32-131.12.1.el6.src.rpm
i386: kernel-2.6.32-131.12.1.el6.i686.rpm kernel-debug-2.6.32-131.12.1.el6.i686.rpm kernel-debug-debuginfo-2.6.32-131.12.1.el6.i686.rpm kernel-debug-devel-2.6.32-131.12.1.el6.i686.rpm kernel-debuginfo-2.6.32-131.12.1.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-131.12.1.el6.i686.rpm kernel-devel-2.6.32-131.12.1.el6.i686.rpm kernel-headers-2.6.32-131.12.1.el6.i686.rpm perf-2.6.32-131.12.1.el6.i686.rpm perf-debuginfo-2.6.32-131.12.1.el6.i686.rpm
noarch: kernel-doc-2.6.32-131.12.1.el6.noarch.rpm kernel-firmware-2.6.32-131.12.1.el6.noarch.rpm
x86_64: kernel-2.6.32-131.12.1.el6.x86_64.rpm kernel-debug-2.6.32-131.12.1.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm kernel-debug-devel-2.6.32-131.12.1.el6.x86_64.rpm kernel-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-131.12.1.el6.x86_64.rpm kernel-devel-2.6.32-131.12.1.el6.x86_64.rpm kernel-headers-2.6.32-131.12.1.el6.x86_64.rpm perf-2.6.32-131.12.1.el6.x86_64.rpm perf-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package
- References:
https://www.redhat.com/security/data/cve/CVE-2011-1182.html https://www.redhat.com/security/data/cve/CVE-2011-1576.html https://www.redhat.com/security/data/cve/CVE-2011-1593.html https://www.redhat.com/security/data/cve/CVE-2011-1776.html https://www.redhat.com/security/data/cve/CVE-2011-1898.html https://www.redhat.com/security/data/cve/CVE-2011-2183.html https://www.redhat.com/security/data/cve/CVE-2011-2213.html https://www.redhat.com/security/data/cve/CVE-2011-2491.html https://www.redhat.com/security/data/cve/CVE-2011-2492.html https://www.redhat.com/security/data/cve/CVE-2011-2495.html https://www.redhat.com/security/data/cve/CVE-2011-2497.html https://www.redhat.com/security/data/cve/CVE-2011-2517.html https://www.redhat.com/security/data/cve/CVE-2011-2689.html https://www.redhat.com/security/data/cve/CVE-2011-2695.html https://access.redhat.com/security/updates/classification/#important https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/kernel.html#RHSA-2011-1189 https://bugzilla.redhat.com/show_bug.cgi?id=715555
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2011 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux)
iD8DBQFOU72NXlSAg2UNWIIRAvuvAJ0XW+pjVB73eYV6dyMHJAKRZqTyygCeIAtM +72YbSFubpSk5fCdBrnH5XY= =wVAB -----END PGP SIGNATURE-----
-- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . Description:
These packages contain the Linux kernel. (CVE-2011-2482, Important)
If you do not run applications that use SCTP, you can prevent the sctp module from being loaded by adding the following to the end of the "/etc/modprobe.d/blacklist.conf" file:
blacklist sctp
This way, the sctp module cannot be loaded accidentally, which may occur if an application that requires SCTP is started. When using a fully-virtualized guest on a host that does not use hardware assisted paging (HAP), such as those running CPUs that do not have support for (or those that have it disabled) Intel Extended Page Tables (EPT) or AMD Virtualization (AMD-V) Rapid Virtualization Indexing (RVI), a privileged guest user could trigger this flaw to cause the hypervisor to crash.
This update also fixes the following bugs:
-
On Broadcom PCI cards that use the tg3 driver, the operational state of a network device, represented by the value in "/sys/class/net/ethX/operstate", was not initialized by default. Consequently, the state was reported as "unknown" when the tg3 network device was actually in the "up" state. This update modifies the tg3 driver to properly set the operstate value. (BZ#744699)
-
A KVM (Kernel-based Virtual Machine) guest can get preempted by the host, when a higher priority process needs to run. When a guest is not running for several timer interrupts in a row, ticks could be lost, resulting in the jiffies timer advancing slower than expected and timeouts taking longer than expected. To correct for the issue of lost ticks, do_timer_tsc_timekeeping() checks a reference clock source (kvm-clock when running as a KVM guest) to see if timer interrupts have been missed. If so, jiffies is incremented by the number of missed timer interrupts, ensuring that programs are woken up on time. (BZ#747874)
-
When a block device object was allocated, the bd_super field was not being explicitly initialized to NULL. Previously, users of the block device object could set bd_super to NULL when the object was released by calling the kill_block_super() function. Certain third-party file systems do not always use this function, and bd_super could therefore become uninitialized when the object was allocated again. This could cause a kernel panic in the blkdev_releasepage() function, when the uninitialized bd_super field was dereferenced. Now, bd_super is properly initialized in the bdget() function, and the kernel panic no longer occurs. (BZ#751137)
ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-server, linux-powerpc), a standard system upgrade will automatically perform this as well. ========================================================================== Ubuntu Security Notice USN-1244-1 October 25, 2011
linux-ti-omap4 vulnerabilities
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 10.10
Summary:
Several security issues were fixed in the kernel. A remote attacker could exploit this to crash the kernel, leading to a denial of service. (CVE-2011-2183)
Vasily Averin discovered that the NFS Lock Manager (NLM) incorrectly handled unlock requests. (CVE-2011-2491)
Vasiliy Kulikov discovered that taskstats did not enforce access restrictions. A local attacker could exploit this to read certain information, leading to a loss of privacy. (CVE-2011-2494)
Vasiliy Kulikov discovered that /proc/PID/io did not enforce access restrictions. A local attacker could exploit this to read certain information, leading to a loss of privacy. (CVE-2011-2495)
It was discovered that the wireless stack incorrectly verified SSID lengths. (CVE-2011-2517)
It was discovered that the EXT4 filesystem contained multiple off-by-one flaws. (CVE-2011-2695)
Christian Ohm discovered that the perf command looks for configuration files in the current directory. If a privileged user were tricked into running perf in a directory containing a malicious configuration file, an attacker could run arbitrary commands and possibly gain privileges. (CVE-2011-2905)
Vasiliy Kulikov discovered that the Comedi driver did not correctly clear memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2011-2909)
Yogesh Sharma discovered that CIFS did not correctly handle UNCs that had no prefixpaths. (CVE-2011-3363)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 10.10: linux-image-2.6.35-903-omap4 2.6.35-903.26
After a standard system update you need to reboot your computer to make all the necessary changes
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", "affected_products": { "@id": "https://www.variotdbs.pl/ref/affected_products" }, "configurations": { "@id": "https://www.variotdbs.pl/ref/configurations" }, "credits": { "@id": "https://www.variotdbs.pl/ref/credits" }, "cvss": { "@id": "https://www.variotdbs.pl/ref/cvss/" }, "description": { "@id": "https://www.variotdbs.pl/ref/description/" }, "exploit_availability": { "@id": "https://www.variotdbs.pl/ref/exploit_availability/" }, "external_ids": { "@id": "https://www.variotdbs.pl/ref/external_ids/" }, "iot": { "@id": "https://www.variotdbs.pl/ref/iot/" }, "iot_taxonomy": { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/" }, "patch": { "@id": "https://www.variotdbs.pl/ref/patch/" }, "problemtype_data": { "@id": "https://www.variotdbs.pl/ref/problemtype_data/" }, "references": { "@id": "https://www.variotdbs.pl/ref/references/" }, "sources": { "@id": "https://www.variotdbs.pl/ref/sources/" }, "sources_release_date": { "@id": "https://www.variotdbs.pl/ref/sources_release_date/" }, "sources_update_date": { "@id": "https://www.variotdbs.pl/ref/sources_update_date/" }, "threat_type": { "@id": "https://www.variotdbs.pl/ref/threat_type/" }, "title": { "@id": "https://www.variotdbs.pl/ref/title/" }, "type": { "@id": "https://www.variotdbs.pl/ref/type/" } }, "@id": "https://www.variotdbs.pl/vuln/VAR-201206-0279", "affected_products": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "model": "kernel", "scope": "eq", "trust": 1.6, "vendor": "linux", "version": "2.6.39" }, { "model": "kernel", "scope": "eq", "trust": 1.6, "vendor": "linux", "version": "2.6.39.1" }, { "model": "kernel", "scope": "eq", "trust": 1.6, "vendor": "linux", "version": "2.6.39.2" }, { "model": "kernel", "scope": "lte", "trust": 1.0, "vendor": "linux", "version": "2.6.39.3" }, { "model": "jp1/it service level management manager", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "-09-50" }, { "model": "jp1/it resource management-manager", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "09-50" }, { "model": "jp1/it resource management-manager", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "09-11-02" }, { "model": "jp1/it resource management-manager", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "09-11" }, { "model": "jp1/it resource management-manager", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "09-10-03" }, { "model": "jp1/it resource management-manager", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "09-10" }, { "model": "jp1/it service level management-manager", "scope": "ne", "trust": 0.3, "vendor": "hitachi", "version": "09-51" }, { "model": "jp1/it resource management-manager", "scope": "ne", "trust": 0.3, "vendor": "hitachi", "version": "09-50-02" }, { "model": "jp1/it resource management-manager", "scope": "ne", "trust": 0.3, "vendor": "hitachi", "version": "09-11-05" } ], "sources": [ { "db": "BID", "id": "51749" }, { "db": "CNNVD", "id": "CNNVD-201108-548" }, { "db": "NVD", "id": "CVE-2011-2495" } ] }, "configurations": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", "children": { "@container": "@list" }, "cpe_match": { "@container": "@list" }, "data": { "@container": "@list" }, "nodes": { "@container": "@list" } }, "data": [ { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "2.6.39.3", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] } ], "sources": [ { "db": "NVD", "id": "CVE-2011-2495" } ] }, "credits": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Hitachi", "sources": [ { "db": "BID", "id": "51749" }, { "db": "CNNVD", "id": "CNNVD-201201-419" } ], "trust": 0.9 }, "cve": "CVE-2011-2495", "cvss": { "@context": { "cvssV2": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2" }, "cvssV3": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/" }, "severity": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#" }, "@id": "https://www.variotdbs.pl/ref/cvss/severity" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "cvssV2": [ { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "author": "NVD", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "exploitabilityScore": 3.9, "id": "CVE-2011-2495", "impactScore": 2.9, "integrityImpact": "NONE", "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "LOW", "trust": 1.0, "userInteractionRequired": false, "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" } ], "cvssV3": [], "severity": [ { "author": "NVD", "id": "CVE-2011-2495", "trust": 1.0, "value": "LOW" }, { "author": "CNNVD", "id": "CNNVD-201108-548", "trust": 0.6, "value": "LOW" } ] } ], "sources": [ { "db": "CNNVD", "id": "CNNVD-201108-548" }, { "db": "NVD", "id": "CVE-2011-2495" } ] }, "description": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password. Hitachi JP1 products are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. \nAn attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks. \nThe following products are affected:\nJP1/IT Resource Management - Manager\nJP1/IT Service Level Management - Manager. ----------------------------------------------------------------------\n\nSecunia is hiring!\n\nFind your next job here:\n\nhttp://secunia.com/company/jobs/\n\n----------------------------------------------------------------------\n\nTITLE:\nHitachi JP1/IT Service Level Management Unspecified Cross-Site\nScripting Vulnerability\n\nSECUNIA ADVISORY ID:\nSA47804\n\nVERIFY ADVISORY:\nSecunia.com\nhttp://secunia.com/advisories/47804/\nCustomer Area (Credentials Required)\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=47804\n\nRELEASE DATE:\n2012-01-31\n\nDISCUSS ADVISORY:\nhttp://secunia.com/advisories/47804/#comments\n\nAVAILABLE ON SITE AND IN CUSTOMER AREA:\n * Last Update\n * Popularity\n * Comments\n * Criticality Level\n * Impact\n * Where\n * Solution Status\n * Operating System / Software\n * CVE Reference(s)\n\nhttp://secunia.com/advisories/47804/\n\nONLY AVAILABLE IN CUSTOMER AREA:\n * Authentication Level\n * Report Reliability\n * Secunia PoC\n * Secunia Analysis\n * Systems Affected\n * Approve Distribution\n * Remediation Status\n * Secunia CVSS Score\n * CVSS\n\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=47804\n\nONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:\n * AUTOMATED SCANNING\n\nhttp://secunia.com/vulnerability_scanning/personal/\nhttp://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/\n\nDESCRIPTION:\nA vulnerability has been reported in Hitachi JP1/IT Service Level\nManagement, which can be exploited by malicious people to conduct\ncross-site scripting attacks. \n\nCertain unspecified input is not properly sanitised before being\nreturned to the user. \n\nThe vulnerability is reported in version 09-50. \n\nPROVIDED AND/OR DISCOVERED BY:\nReported by the vendor. \n\nORIGINAL ADVISORY:\nHitachi (English):\nhttp://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS12-005/index.html\n\nHitachi (Japanese):\nhttp://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS12-005/index.html\n\nOTHER REFERENCES:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nDEEP LINKS:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXTENDED DESCRIPTION:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXTENDED SOLUTION:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXPLOIT:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\nprivate users keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n Red Hat Security Advisory\n\nSynopsis: Important: kernel security, bug fix, and enhancement update\nAdvisory ID: RHSA-2011:1189-01\nProduct: Red Hat Enterprise Linux\nAdvisory URL: https://rhn.redhat.com/errata/RHSA-2011-1189.html\nIssue date: 2011-08-23\nCVE Names: CVE-2011-1182 CVE-2011-1576 CVE-2011-1593 \n CVE-2011-1776 CVE-2011-1898 CVE-2011-2183 \n CVE-2011-2213 CVE-2011-2491 CVE-2011-2492 \n CVE-2011-2495 CVE-2011-2497 CVE-2011-2517 \n CVE-2011-2689 CVE-2011-2695 \n=====================================================================\n\n1. Summary:\n\nUpdated kernel packages that fix several security issues, various bugs, and\nadd two enhancements are now available for Red Hat Enterprise Linux 6. \n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Desktop (v. 6) - i386, noarch, x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - noarch, x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, noarch, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, noarch, x86_64\n\n3. Description:\n\nSecurity issues:\n\n* Using PCI passthrough without interrupt remapping support allowed KVM\nguests to generate MSI interrupts and thus potentially inject traps. A\nprivileged guest user could use this flaw to crash the host or possibly\nescalate their privileges on the host. The fix for this issue can prevent\nPCI passthrough working and guests starting. Refer to Red Hat Bugzilla bug\n715555 for details. (CVE-2011-1898, Important)\n\n* Flaw in the client-side NLM implementation could allow a local,\nunprivileged user to cause a denial of service. (CVE-2011-2491, Important)\n\n* Integer underflow in the Bluetooth implementation could allow a remote\nattacker to cause a denial of service or escalate their privileges by\nsending a specially-crafted request to a target system via Bluetooth. \n(CVE-2011-2497, Important)\n\n* Buffer overflows in the netlink-based wireless configuration interface\nimplementation could allow a local user, who has the CAP_NET_ADMIN\ncapability, to cause a denial of service or escalate their privileges on\nsystems that have an active wireless interface. (CVE-2011-2517, Important)\n\n* Flaw in the way the maximum file offset was handled for ext4 file systems\ncould allow a local, unprivileged user to cause a denial of service. \n(CVE-2011-2695, Important)\n\n* Flaw allowed napi_reuse_skb() to be called on VLAN packets. An attacker\non the local network could use this flaw to send crafted packets to a\ntarget, possibly causing a denial of service. (CVE-2011-1576, Moderate)\n\n* Integer signedness error in next_pidmap() could allow a local,\nunprivileged user to cause a denial of service. (CVE-2011-1593, Moderate)\n\n* Race condition in the memory merging support (KSM) could allow a local,\nunprivileged user to cause a denial of service. KSM is off by default, but\non systems running VDSM, or on KVM hosts, it is likely turned on by the\nksm/ksmtuned services. (CVE-2011-2183, Moderate)\n\n* Flaw in inet_diag_bc_audit() could allow a local, unprivileged user to\ncause a denial of service. (CVE-2011-2213, Moderate)\n\n* Flaw in the way space was allocated in the Global File System 2 (GFS2)\nimplementation. If the file system was almost full, and a local,\nunprivileged user made an fallocate() request, it could result in a denial\nof service. Setting quotas to prevent users from using all available disk\nspace would prevent exploitation of this flaw. (CVE-2011-2689, Moderate)\n\n* Local, unprivileged users could send signals via the sigqueueinfo system\ncall, with si_code set to SI_TKILL and with spoofed process and user IDs,\nto other processes. This flaw does not allow existing permission checks to\nbe bypassed; signals can only be sent if your privileges allow you to\nalready do so. (CVE-2011-1182, Low)\n\n* Heap overflow in the EFI GUID Partition Table (GPT) implementation could\nallow a local attacker to cause a denial of service by mounting a disk\ncontaining crafted partition tables. (CVE-2011-1776, Low)\n\n* Structure padding in two structures in the Bluetooth implementation was\nnot initialized properly before being copied to user-space, possibly\nallowing local, unprivileged users to leak kernel stack memory to\nuser-space. (CVE-2011-2492, Low)\n\n* /proc/[PID]/io is world-readable by default. Previously, these files\ncould be read without any further restrictions. A local, unprivileged user\ncould read these files, belonging to other, possibly privileged processes\nto gather confidential information, such as the length of a password used\nin a process. (CVE-2011-2495, Low)\n\nRed Hat would like to thank Vasily Averin for reporting CVE-2011-2491; Dan\nRosenberg for reporting CVE-2011-2497 and CVE-2011-2213; Ryan Sweat for\nreporting CVE-2011-1576; Robert Swiecki for reporting CVE-2011-1593; Andrea\nRighi for reporting CVE-2011-2183; Julien Tinnes of the Google Security\nTeam for reporting CVE-2011-1182; Timo Warns for reporting CVE-2011-1776;\nMarek Kroemeke and Filip Palian for reporting CVE-2011-2492; and Vasiliy\nKulikov of Openwall for reporting CVE-2011-2495. \n\n4. Solution:\n\nRefer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details. \n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect. \n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system. \n\n5. Bugs fixed (http://bugzilla.redhat.com/):\n\n690028 - CVE-2011-1182 kernel signal spoofing issue\n695173 - CVE-2011-1576 kernel: net: Fix memory leak/corruption on VLAN GRO_DROP\n697822 - CVE-2011-1593 kernel: proc: signedness issue in next_pidmap()\n703019 - CVE-2011-2492 kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace\n703026 - CVE-2011-1776 kernel: validate size of EFI GUID partition entries\n709393 - CVE-2011-2491 kernel: rpc task leak after flock()ing NFS share\n710338 - CVE-2011-2183 kernel: ksm: race between ksmd and exiting task\n713827 - Parallel port issue in RHEL 6.0 server\n714536 - CVE-2011-2213 kernel: inet_diag: insufficient validation\n714982 - GFS2: Update to rhel6.1 broke dovecot writing to a gfs2 filesystem\n715555 - CVE-2011-1898 virt: VT-d (PCI passthrough) MSI trap injection\n716539 - bump domain memory limits [6.1.z]\n716805 - CVE-2011-2497 kernel: bluetooth: buffer overflow in l2cap config request\n716825 - CVE-2011-2495 kernel: /proc/PID/io infoleak\n718152 - CVE-2011-2517 kernel: nl80211: missing check for valid SSID size in scan operations\n720861 - CVE-2011-2689 kernel: gfs2: make sure fallocate bytes is a multiple of blksize\n722557 - CVE-2011-2695 kernel: ext4: kernel panic when writing data to the last block of sparse file\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/kernel-2.6.32-131.12.1.el6.src.rpm\n\ni386:\nkernel-2.6.32-131.12.1.el6.i686.rpm\nkernel-debug-2.6.32-131.12.1.el6.i686.rpm\nkernel-debug-debuginfo-2.6.32-131.12.1.el6.i686.rpm\nkernel-debug-devel-2.6.32-131.12.1.el6.i686.rpm\nkernel-debuginfo-2.6.32-131.12.1.el6.i686.rpm\nkernel-debuginfo-common-i686-2.6.32-131.12.1.el6.i686.rpm\nkernel-devel-2.6.32-131.12.1.el6.i686.rpm\nkernel-headers-2.6.32-131.12.1.el6.i686.rpm\nperf-2.6.32-131.12.1.el6.i686.rpm\nperf-debuginfo-2.6.32-131.12.1.el6.i686.rpm\n\nnoarch:\nkernel-doc-2.6.32-131.12.1.el6.noarch.rpm\nkernel-firmware-2.6.32-131.12.1.el6.noarch.rpm\n\nx86_64:\nkernel-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debug-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debug-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debug-devel-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debuginfo-common-x86_64-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-devel-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-headers-2.6.32-131.12.1.el6.x86_64.rpm\nperf-2.6.32-131.12.1.el6.x86_64.rpm\nperf-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/kernel-2.6.32-131.12.1.el6.src.rpm\n\nnoarch:\nkernel-doc-2.6.32-131.12.1.el6.noarch.rpm\nkernel-firmware-2.6.32-131.12.1.el6.noarch.rpm\n\nx86_64:\nkernel-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debug-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debug-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debug-devel-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debuginfo-common-x86_64-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-devel-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-headers-2.6.32-131.12.1.el6.x86_64.rpm\nperf-2.6.32-131.12.1.el6.x86_64.rpm\nperf-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/kernel-2.6.32-131.12.1.el6.src.rpm\n\ni386:\nkernel-2.6.32-131.12.1.el6.i686.rpm\nkernel-debug-2.6.32-131.12.1.el6.i686.rpm\nkernel-debug-debuginfo-2.6.32-131.12.1.el6.i686.rpm\nkernel-debug-devel-2.6.32-131.12.1.el6.i686.rpm\nkernel-debuginfo-2.6.32-131.12.1.el6.i686.rpm\nkernel-debuginfo-common-i686-2.6.32-131.12.1.el6.i686.rpm\nkernel-devel-2.6.32-131.12.1.el6.i686.rpm\nkernel-headers-2.6.32-131.12.1.el6.i686.rpm\nperf-2.6.32-131.12.1.el6.i686.rpm\nperf-debuginfo-2.6.32-131.12.1.el6.i686.rpm\n\nnoarch:\nkernel-doc-2.6.32-131.12.1.el6.noarch.rpm\nkernel-firmware-2.6.32-131.12.1.el6.noarch.rpm\n\nppc64:\nkernel-2.6.32-131.12.1.el6.ppc64.rpm\nkernel-bootwrapper-2.6.32-131.12.1.el6.ppc64.rpm\nkernel-debug-2.6.32-131.12.1.el6.ppc64.rpm\nkernel-debug-debuginfo-2.6.32-131.12.1.el6.ppc64.rpm\nkernel-debug-devel-2.6.32-131.12.1.el6.ppc64.rpm\nkernel-debuginfo-2.6.32-131.12.1.el6.ppc64.rpm\nkernel-debuginfo-common-ppc64-2.6.32-131.12.1.el6.ppc64.rpm\nkernel-devel-2.6.32-131.12.1.el6.ppc64.rpm\nkernel-headers-2.6.32-131.12.1.el6.ppc64.rpm\nperf-2.6.32-131.12.1.el6.ppc64.rpm\nperf-debuginfo-2.6.32-131.12.1.el6.ppc64.rpm\n\ns390x:\nkernel-2.6.32-131.12.1.el6.s390x.rpm\nkernel-debug-2.6.32-131.12.1.el6.s390x.rpm\nkernel-debug-debuginfo-2.6.32-131.12.1.el6.s390x.rpm\nkernel-debug-devel-2.6.32-131.12.1.el6.s390x.rpm\nkernel-debuginfo-2.6.32-131.12.1.el6.s390x.rpm\nkernel-debuginfo-common-s390x-2.6.32-131.12.1.el6.s390x.rpm\nkernel-devel-2.6.32-131.12.1.el6.s390x.rpm\nkernel-headers-2.6.32-131.12.1.el6.s390x.rpm\nkernel-kdump-2.6.32-131.12.1.el6.s390x.rpm\nkernel-kdump-debuginfo-2.6.32-131.12.1.el6.s390x.rpm\nkernel-kdump-devel-2.6.32-131.12.1.el6.s390x.rpm\nperf-2.6.32-131.12.1.el6.s390x.rpm\nperf-debuginfo-2.6.32-131.12.1.el6.s390x.rpm\n\nx86_64:\nkernel-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debug-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debug-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debug-devel-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debuginfo-common-x86_64-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-devel-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-headers-2.6.32-131.12.1.el6.x86_64.rpm\nperf-2.6.32-131.12.1.el6.x86_64.rpm\nperf-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/kernel-2.6.32-131.12.1.el6.src.rpm\n\ni386:\nkernel-2.6.32-131.12.1.el6.i686.rpm\nkernel-debug-2.6.32-131.12.1.el6.i686.rpm\nkernel-debug-debuginfo-2.6.32-131.12.1.el6.i686.rpm\nkernel-debug-devel-2.6.32-131.12.1.el6.i686.rpm\nkernel-debuginfo-2.6.32-131.12.1.el6.i686.rpm\nkernel-debuginfo-common-i686-2.6.32-131.12.1.el6.i686.rpm\nkernel-devel-2.6.32-131.12.1.el6.i686.rpm\nkernel-headers-2.6.32-131.12.1.el6.i686.rpm\nperf-2.6.32-131.12.1.el6.i686.rpm\nperf-debuginfo-2.6.32-131.12.1.el6.i686.rpm\n\nnoarch:\nkernel-doc-2.6.32-131.12.1.el6.noarch.rpm\nkernel-firmware-2.6.32-131.12.1.el6.noarch.rpm\n\nx86_64:\nkernel-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debug-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debug-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debug-devel-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-debuginfo-common-x86_64-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-devel-2.6.32-131.12.1.el6.x86_64.rpm\nkernel-headers-2.6.32-131.12.1.el6.x86_64.rpm\nperf-2.6.32-131.12.1.el6.x86_64.rpm\nperf-debuginfo-2.6.32-131.12.1.el6.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and \ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/#package\n\n7. References:\n\nhttps://www.redhat.com/security/data/cve/CVE-2011-1182.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-1576.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-1593.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-1776.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-1898.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-2183.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-2213.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-2491.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-2492.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-2495.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-2497.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-2517.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-2689.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-2695.html\nhttps://access.redhat.com/security/updates/classification/#important\nhttps://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/kernel.html#RHSA-2011-1189\nhttps://bugzilla.redhat.com/show_bug.cgi?id=715555\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2011 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.4 (GNU/Linux)\n\niD8DBQFOU72NXlSAg2UNWIIRAvuvAJ0XW+pjVB73eYV6dyMHJAKRZqTyygCeIAtM\n+72YbSFubpSk5fCdBrnH5XY=\n=wVAB\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. Description:\n\nThese packages contain the Linux kernel. (CVE-2011-2482,\nImportant)\n\nIf you do not run applications that use SCTP, you can prevent the sctp\nmodule from being loaded by adding the following to the end of the\n\"/etc/modprobe.d/blacklist.conf\" file:\n\nblacklist sctp\n\nThis way, the sctp module cannot be loaded accidentally, which may occur\nif an application that requires SCTP is started. When using a\nfully-virtualized guest on a host that does not use hardware assisted\npaging (HAP), such as those running CPUs that do not have support for (or\nthose that have it disabled) Intel Extended Page Tables (EPT) or AMD\nVirtualization (AMD-V) Rapid Virtualization Indexing (RVI), a privileged\nguest user could trigger this flaw to cause the hypervisor to crash. \n\nThis update also fixes the following bugs:\n\n* On Broadcom PCI cards that use the tg3 driver, the operational state of a\nnetwork device, represented by the value in\n\"/sys/class/net/ethX/operstate\", was not initialized by default. \nConsequently, the state was reported as \"unknown\" when the tg3 network\ndevice was actually in the \"up\" state. This update modifies the tg3 driver\nto properly set the operstate value. (BZ#744699)\n\n* A KVM (Kernel-based Virtual Machine) guest can get preempted by the host,\nwhen a higher priority process needs to run. When a guest is not running\nfor several timer interrupts in a row, ticks could be lost, resulting in\nthe jiffies timer advancing slower than expected and timeouts taking longer\nthan expected. To correct for the issue of lost ticks,\ndo_timer_tsc_timekeeping() checks a reference clock source (kvm-clock when\nrunning as a KVM guest) to see if timer interrupts have been missed. If so,\njiffies is incremented by the number of missed timer interrupts, ensuring\nthat programs are woken up on time. (BZ#747874)\n\n* When a block device object was allocated, the bd_super field was not\nbeing explicitly initialized to NULL. Previously, users of the block device\nobject could set bd_super to NULL when the object was released by calling\nthe kill_block_super() function. Certain third-party file systems do not\nalways use this function, and bd_super could therefore become uninitialized\nwhen the object was allocated again. This could cause a kernel panic in the\nblkdev_releasepage() function, when the uninitialized bd_super field was\ndereferenced. Now, bd_super is properly initialized in the bdget()\nfunction, and the kernel panic no longer occurs. (BZ#751137)\n\n4. \n\nATTENTION: Due to an unavoidable ABI change the kernel updates have\nbeen given a new version number, which requires you to recompile and\nreinstall all third party kernel modules you might have installed. Unless you\nmanually uninstalled the standard kernel metapackages (e.g. linux-generic,\nlinux-server, linux-powerpc), a standard system upgrade will automatically\nperform this as well. ==========================================================================\nUbuntu Security Notice USN-1244-1\nOctober 25, 2011\n\nlinux-ti-omap4 vulnerabilities\n==========================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 10.10\n\nSummary:\n\nSeveral security issues were fixed in the kernel. A remote attacker could exploit this to\ncrash the kernel, leading to a denial of service. (CVE-2011-2183)\n\nVasily Averin discovered that the NFS Lock Manager (NLM) incorrectly\nhandled unlock requests. (CVE-2011-2491)\n\nVasiliy Kulikov discovered that taskstats did not enforce access\nrestrictions. A local attacker could exploit this to read certain\ninformation, leading to a loss of privacy. (CVE-2011-2494)\n\nVasiliy Kulikov discovered that /proc/PID/io did not enforce access\nrestrictions. A local attacker could exploit this to read certain\ninformation, leading to a loss of privacy. (CVE-2011-2495)\n\nIt was discovered that the wireless stack incorrectly verified SSID\nlengths. (CVE-2011-2517)\n\nIt was discovered that the EXT4 filesystem contained multiple off-by-one\nflaws. (CVE-2011-2695)\n\nChristian Ohm discovered that the perf command looks for configuration\nfiles in the current directory. If a privileged user were tricked into\nrunning perf in a directory containing a malicious configuration file, an\nattacker could run arbitrary commands and possibly gain privileges. \n(CVE-2011-2905)\n\nVasiliy Kulikov discovered that the Comedi driver did not correctly clear\nmemory. A local attacker could exploit this to read kernel stack memory,\nleading to a loss of privacy. (CVE-2011-2909)\n\nYogesh Sharma discovered that CIFS did not correctly handle UNCs that had\nno prefixpaths. \n(CVE-2011-3363)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 10.10:\n linux-image-2.6.35-903-omap4 2.6.35-903.26\n\nAfter a standard system update you need to reboot your computer to make\nall the necessary changes", "sources": [ { "db": "NVD", "id": "CVE-2011-2495" }, { "db": "BID", "id": "51749" }, { "db": "PACKETSTORM", "id": "109259" }, { "db": "PACKETSTORM", "id": "107394" }, { "db": "PACKETSTORM", "id": "104394" }, { "db": "PACKETSTORM", "id": "107847" }, { "db": "PACKETSTORM", "id": "107316" }, { "db": "PACKETSTORM", "id": "106204" }, { "db": "PACKETSTORM", "id": "106205" } ], "trust": 1.8 }, "external_ids": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "db": "NVD", "id": "CVE-2011-2495", "trust": 2.2 }, { "db": "OPENWALL", "id": "OSS-SECURITY/2011/06/27/1", "trust": 1.6 }, { "db": "BID", "id": "51749", "trust": 0.9 }, { "db": "SECUNIA", "id": "47804", "trust": 0.8 }, { "db": "SECUNIA", "id": "46589", "trust": 0.6 }, { "db": "SECUNIA", "id": "45897", "trust": 0.6 }, { "db": "SECUNIA", "id": "46133", "trust": 0.6 }, { "db": "SECUNIA", "id": "46995", "trust": 0.6 }, { "db": "SECUNIA", "id": "46539", "trust": 0.6 }, { "db": "SECUNIA", "id": "46308", "trust": 0.6 }, { "db": "SECUNIA", "id": "45458", "trust": 0.6 }, { "db": "SECUNIA", "id": "46598", "trust": 0.6 }, { "db": "SECUNIA", "id": "45933", "trust": 0.6 }, { "db": "SECUNIA", "id": "46824", "trust": 0.6 }, { "db": "SECUNIA", "id": "46982", "trust": 0.6 }, { "db": "SECUNIA", "id": "47007", "trust": 0.6 }, { "db": "SECUNIA", "id": "45466", "trust": 0.6 }, { "db": "SECUNIA", "id": "46590", "trust": 0.6 }, { "db": "SECUNIA", "id": "45746", "trust": 0.6 }, { "db": "SECUNIA", "id": "46060", "trust": 0.6 }, { "db": "SECUNIA", "id": "45994", "trust": 0.6 }, { "db": "SECUNIA", "id": "46587", "trust": 0.6 }, { "db": "SECUNIA", "id": "46571", "trust": 0.6 }, { "db": "SECUNIA", "id": "45810", "trust": 0.6 }, { "db": "SECUNIA", "id": "46595", "trust": 0.6 }, { "db": "SECUNIA", "id": "46795", "trust": 0.6 }, { "db": "BID", "id": "49408", "trust": 0.6 }, { "db": "NSFOCUS", "id": "17646", "trust": 0.6 }, { "db": "MLIST", "id": "[OSS-SECURITY] 20110627 RE: CVE REQUEST: KERNEL: TASKSTATS/PROCFS IO INFOLEAK", "trust": 0.6 }, { "db": "CNNVD", "id": "CNNVD-201108-548", "trust": 0.6 }, { "db": "CNNVD", "id": "CNNVD-201201-419", "trust": 0.6 }, { "db": "HITACHI", "id": "HS12-005", "trust": 0.4 }, { "db": "PACKETSTORM", "id": "109259", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "107394", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "104394", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "107847", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "107316", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "106204", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "106205", "trust": 0.1 } ], "sources": [ { "db": "BID", "id": "51749" }, { "db": "PACKETSTORM", "id": "109259" }, { "db": "PACKETSTORM", "id": "107394" }, { "db": "PACKETSTORM", "id": "104394" }, { "db": "PACKETSTORM", "id": "107847" }, { "db": "PACKETSTORM", "id": "107316" }, { "db": "PACKETSTORM", "id": "106204" }, { "db": "PACKETSTORM", "id": "106205" }, { "db": "CNNVD", "id": "CNNVD-201108-548" }, { "db": "CNNVD", "id": "CNNVD-201201-419" }, { "db": "NVD", "id": "CVE-2011-2495" } ] }, "id": "VAR-201206-0279", "iot": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": true, "sources": [ { "db": "VARIoT devices database", "id": null } ], "trust": 0.225 }, "last_update_date": "2023-02-11T19:26:09.654000Z", "patch": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "title": "linux-3.4.3", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=43386" } ], "sources": [ { "db": "CNNVD", "id": "CNNVD-201108-548" } ] }, "problemtype_data": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "problemtype": "CWE-264", "trust": 1.0 } ], "sources": [ { "db": "NVD", "id": "CVE-2011-2495" } ] }, "references": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "trust": 1.6, "url": "https://github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51" }, { "trust": 1.6, "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1d1221f375c94ef961ba8574ac4f85c8870ddd51" }, { "trust": 1.6, "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "trust": 1.6, "url": "http://www.openwall.com/lists/oss-security/2011/06/27/1" }, { "trust": 1.6, "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/changelog-2.6.39.4" }, { "trust": 1.0, "url": "http://rhn.redhat.com/errata/rhsa-2011-1212.html" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2495" }, { "trust": 0.6, "url": "http://secunia.com/advisories/45458" }, { "trust": 0.6, "url": "http://secunia.com/advisories/45466" }, { "trust": 0.6, "url": "http://secunia.com/advisories/45746" }, { "trust": 0.6, "url": "http://secunia.com/advisories/45810" }, { "trust": 0.6, "url": "http://secunia.com/advisories/45897" }, { "trust": 0.6, "url": "http://secunia.com/advisories/45933" }, { "trust": 0.6, "url": "http://secunia.com/advisories/45994" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46060" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46133" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46308" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46539" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46571" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46587" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46589" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46590" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46595" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46598" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46795" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46824" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46982" }, { "trust": 0.6, "url": "http://secunia.com/advisories/46995" }, { "trust": 0.6, "url": "http://secunia.com/advisories/47007" }, { "trust": 0.6, "url": "http://secunia.com/advisories/47804" }, { "trust": 0.6, "url": "http://www.securityfocus.com/bid/49408" }, { "trust": 0.6, "url": "http://www.nsfocus.net/vulndb/17646" }, { "trust": 0.6, "url": "http://www.securityfocus.com/bid/51749" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2517" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2491" }, { "trust": 0.4, "url": "http://www.hitachi.co.jp/prod/comp/soft1/global/security/info/vuls/hs12-005/index.html" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2183" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2909" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2905" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2494" }, { "trust": 0.3, "url": "http://www.hds.com/products/storage-software/hitachi-device-manager.html" }, { "trust": 0.3, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2695" }, { "trust": 0.2, "url": "https://access.redhat.com/kb/docs/doc-11259" }, { "trust": 0.2, "url": "https://access.redhat.com/security/updates/classification/#important" }, { "trust": 0.2, "url": "https://www.redhat.com/security/data/cve/cve-2011-2495.html" }, { "trust": 0.2, "url": "https://access.redhat.com/security/team/contact/" }, { "trust": 0.2, "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce" }, { "trust": 0.2, "url": "https://www.redhat.com/security/data/cve/cve-2011-2491.html" }, { "trust": 0.2, "url": "https://www.redhat.com/security/data/cve/cve-2011-2517.html" }, { "trust": 0.2, "url": "https://access.redhat.com/security/team/key/#package" }, { "trust": 0.2, "url": "http://bugzilla.redhat.com/):" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3363" }, { "trust": 0.1, "url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=47804" }, { "trust": 0.1, "url": "http://secunia.com/company/jobs/" }, { "trust": 0.1, "url": "http://secunia.com/vulnerability_intelligence/" }, { "trust": 0.1, "url": "http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/" }, { "trust": 0.1, "url": "http://secunia.com/advisories/secunia_security_advisories/" }, { "trust": 0.1, "url": "http://www.hitachi.co.jp/prod/comp/soft1/security/info/vuls/hs12-005/index.html" }, { "trust": 0.1, "url": "http://secunia.com/vulnerability_scanning/personal/" }, { "trust": 0.1, "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org" }, { "trust": 0.1, "url": "http://secunia.com/advisories/47804/#comments" }, { "trust": 0.1, "url": "http://secunia.com/advisories/47804/" }, { "trust": 0.1, "url": "http://secunia.com/advisories/about_secunia_advisories/" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/linux/2.6.38-13.52" }, { "trust": 0.1, "url": "http://www.ubuntu.com/usn/usn-1285-1" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-1776.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-1593" }, { "trust": 0.1, "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715555" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-1898" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-1182" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-2497.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2492" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2497" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-1593.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2689" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-2492.html" }, { "trust": 0.1, "url": "https://rhn.redhat.com/errata/rhsa-2011-1189.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-2689.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-2213.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-1776" }, { "trust": 0.1, "url": "https://docs.redhat.com/docs/en-us/red_hat_enterprise_linux/6/html/6.1_technical_notes/kernel.html#rhsa-2011-1189" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2213" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-2183.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-1898.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-1576.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-2695.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-1576" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-1182.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-2901.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2901" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2482" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-2482.html" }, { "trust": 0.1, "url": "https://rhn.redhat.com/errata/rhsa-2011-1813.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2519" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-2519.html" }, { "trust": 0.1, "url": "http://www.ubuntu.com/usn/usn-1279-1" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/linux-lts-backport-natty/2.6.38-13.52~lucid1" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3188" }, { "trust": 0.1, "url": "http://www.ubuntu.com/usn/usn-1243-1" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/linux/2.6.35-30.61" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-1479" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3873" }, { "trust": 0.1, "url": "http://www.ubuntu.com/usn/usn-1244-1" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/linux-ti-omap4/2.6.35-903.26" } ], "sources": [ { "db": "BID", "id": "51749" }, { "db": "PACKETSTORM", "id": "109259" }, { "db": "PACKETSTORM", "id": "107394" }, { "db": "PACKETSTORM", "id": "104394" }, { "db": "PACKETSTORM", "id": "107847" }, { "db": "PACKETSTORM", "id": "107316" }, { "db": "PACKETSTORM", "id": "106204" }, { "db": "PACKETSTORM", "id": "106205" }, { "db": "CNNVD", "id": "CNNVD-201108-548" }, { "db": "CNNVD", "id": "CNNVD-201201-419" }, { "db": "NVD", "id": "CVE-2011-2495" } ] }, "sources": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", "data": { "@container": "@list" } }, "data": [ { "db": "BID", "id": "51749" }, { "db": "PACKETSTORM", "id": "109259" }, { "db": "PACKETSTORM", "id": "107394" }, { "db": "PACKETSTORM", "id": "104394" }, { "db": "PACKETSTORM", "id": "107847" }, { "db": "PACKETSTORM", "id": "107316" }, { "db": "PACKETSTORM", "id": "106204" }, { "db": "PACKETSTORM", "id": "106205" }, { "db": "CNNVD", "id": "CNNVD-201108-548" }, { "db": "CNNVD", "id": "CNNVD-201201-419" }, { "db": "NVD", "id": "CVE-2011-2495" } ] }, "sources_release_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2012-01-31T00:00:00", "db": "BID", "id": "51749" }, { "date": "2012-01-31T06:49:21", "db": "PACKETSTORM", "id": "109259" }, { "date": "2011-11-30T01:00:53", "db": "PACKETSTORM", "id": "107394" }, { "date": "2011-08-24T03:11:18", "db": "PACKETSTORM", "id": "104394" }, { "date": "2011-12-14T02:33:20", "db": "PACKETSTORM", "id": "107847" }, { "date": "2011-11-24T17:17:00", "db": "PACKETSTORM", "id": "107316" }, { "date": "2011-10-25T19:54:45", "db": "PACKETSTORM", "id": "106204" }, { "date": "2011-10-25T19:55:32", "db": "PACKETSTORM", "id": "106205" }, { "date": "1900-01-01T00:00:00", "db": "CNNVD", "id": "CNNVD-201108-548" }, { "date": "1900-01-01T00:00:00", "db": "CNNVD", "id": "CNNVD-201201-419" }, { "date": "2012-06-13T10:24:00", "db": "NVD", "id": "CVE-2011-2495" } ] }, "sources_update_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2012-01-31T00:00:00", "db": "BID", "id": "51749" }, { "date": "2012-06-14T00:00:00", "db": "CNNVD", "id": "CNNVD-201108-548" }, { "date": "2012-02-02T00:00:00", "db": "CNNVD", "id": "CNNVD-201201-419" }, { "date": "2013-12-31T04:08:00", "db": "NVD", "id": "CVE-2011-2495" } ] }, "threat_type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "local", "sources": [ { "db": "PACKETSTORM", "id": "107394" }, { "db": "PACKETSTORM", "id": "104394" }, { "db": "PACKETSTORM", "id": "107316" }, { "db": "CNNVD", "id": "CNNVD-201108-548" } ], "trust": 0.9 }, "title": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Linux Kernel \u2018 fs/proc/base.c \u2019 Permissions and Access Control Vulnerability", "sources": [ { "db": "CNNVD", "id": "CNNVD-201108-548" } ], "trust": 0.6 }, "type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "xss", "sources": [ { "db": "PACKETSTORM", "id": "109259" }, { "db": "CNNVD", "id": "CNNVD-201201-419" } ], "trust": 0.7 } }
gsd-2011-2495
Vulnerability from gsd
{ "GSD": { "alias": "CVE-2011-2495", "description": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password.", "id": "GSD-2011-2495", "references": [ "https://www.suse.com/security/cve/CVE-2011-2495.html", "https://www.debian.org/security/2011/dsa-2310", "https://www.debian.org/security/2011/dsa-2303", "https://access.redhat.com/errata/RHSA-2011:1813", "https://access.redhat.com/errata/RHSA-2011:1253", "https://access.redhat.com/errata/RHSA-2011:1212", "https://access.redhat.com/errata/RHSA-2011:1189", "https://linux.oracle.com/cve/CVE-2011-2495.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2011-2495" ], "details": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password.", "id": "GSD-2011-2495", "modified": "2023-12-13T01:19:07.338477Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2011-2495", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_affected": "=", "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4", "refsource": "MISC", "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4" }, { "name": "http://rhn.redhat.com/errata/RHSA-2011-1212.html", "refsource": "MISC", "url": "http://rhn.redhat.com/errata/RHSA-2011-1212.html" }, { "name": "http://www.openwall.com/lists/oss-security/2011/06/27/1", "refsource": "MISC", "url": "http://www.openwall.com/lists/oss-security/2011/06/27/1" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d1221f375c94ef961ba8574ac4f85c8870ddd51", "refsource": "MISC", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d1221f375c94ef961ba8574ac4f85c8870ddd51" }, { "name": "https://github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51", "refsource": "MISC", "url": "https://github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=716825", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "2.6.39.3", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.39:rc5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2011-2495" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-264" } ] } ] }, "references": { "reference_data": [ { "name": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4", "refsource": "CONFIRM", "tags": [], "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4" }, { "name": "https://github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51", "refsource": "CONFIRM", "tags": [ "Exploit", "Patch" ], "url": "https://github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51" }, { "name": "[oss-security] 20110627 Re: CVE request: kernel: taskstats/procfs io infoleak", "refsource": "MLIST", "tags": [], "url": "http://www.openwall.com/lists/oss-security/2011/06/27/1" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=716825", "refsource": "CONFIRM", "tags": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "name": "RHSA-2011:1212", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2011-1212.html" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d1221f375c94ef961ba8574ac4f85c8870ddd51", "refsource": "MISC", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d1221f375c94ef961ba8574ac4f85c8870ddd51" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "LOW", "userInteractionRequired": false } }, "lastModifiedDate": "2023-02-13T00:18Z", "publishedDate": "2012-06-13T10:24Z" } } }
rhsa-2011_1813
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix several security issues and various bugs\nare now available for Red Hat Enterprise Linux 5.6 Extended Update Support.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "These packages contain the Linux kernel.\n\nThis update fixes the following security issues:\n\n* A flaw in the Stream Control Transmission Protocol (SCTP) implementation\ncould allow a remote attacker to cause a denial of service by sending a\nspecially-crafted SCTP packet to a target system. (CVE-2011-2482,\nImportant)\n\nIf you do not run applications that use SCTP, you can prevent the sctp\nmodule from being loaded by adding the following to the end of the\n\"/etc/modprobe.d/blacklist.conf\" file:\n\nblacklist sctp\n\nThis way, the sctp module cannot be loaded accidentally, which may occur\nif an application that requires SCTP is started. A reboot is not necessary\nfor this change to take effect.\n\n* A flaw in the client-side NFS Lock Manager (NLM) implementation could\nallow a local, unprivileged user to cause a denial of service.\n(CVE-2011-2491, Important)\n\n* Flaws in the netlink-based wireless configuration interface could allow\na local user, who has the CAP_NET_ADMIN capability, to cause a denial of\nservice or escalate their privileges on systems that have an active\nwireless interface. (CVE-2011-2517, Important)\n\n* A flaw was found in the way the Linux kernel\u0027s Xen hypervisor\nimplementation emulated the SAHF instruction. When using a\nfully-virtualized guest on a host that does not use hardware assisted\npaging (HAP), such as those running CPUs that do not have support for (or\nthose that have it disabled) Intel Extended Page Tables (EPT) or AMD\nVirtualization (AMD-V) Rapid Virtualization Indexing (RVI), a privileged\nguest user could trigger this flaw to cause the hypervisor to crash.\n(CVE-2011-2519, Moderate)\n\n* A flaw in the __addr_ok() macro in the Linux kernel\u0027s Xen hypervisor\nimplementation when running on 64-bit systems could allow a privileged\nguest user to crash the hypervisor. (CVE-2011-2901, Moderate)\n\n* /proc/[PID]/io is world-readable by default. Previously, these files\ncould be read without any further restrictions. A local, unprivileged user\ncould read these files, belonging to other, possibly privileged processes\nto gather confidential information, such as the length of a password used\nin a process. (CVE-2011-2495, Low)\n\nRed Hat would like to thank Vasily Averin for reporting CVE-2011-2491, and\nVasiliy Kulikov of Openwall for reporting CVE-2011-2495.\n\nThis update also fixes the following bugs:\n\n* On Broadcom PCI cards that use the tg3 driver, the operational state of a\nnetwork device, represented by the value in\n\"/sys/class/net/ethX/operstate\", was not initialized by default.\nConsequently, the state was reported as \"unknown\" when the tg3 network\ndevice was actually in the \"up\" state. This update modifies the tg3 driver\nto properly set the operstate value. (BZ#744699)\n\n* A KVM (Kernel-based Virtual Machine) guest can get preempted by the host,\nwhen a higher priority process needs to run. When a guest is not running\nfor several timer interrupts in a row, ticks could be lost, resulting in\nthe jiffies timer advancing slower than expected and timeouts taking longer\nthan expected. To correct for the issue of lost ticks,\ndo_timer_tsc_timekeeping() checks a reference clock source (kvm-clock when\nrunning as a KVM guest) to see if timer interrupts have been missed. If so,\njiffies is incremented by the number of missed timer interrupts, ensuring\nthat programs are woken up on time. (BZ#747874)\n\n* When a block device object was allocated, the bd_super field was not\nbeing explicitly initialized to NULL. Previously, users of the block device\nobject could set bd_super to NULL when the object was released by calling\nthe kill_block_super() function. Certain third-party file systems do not\nalways use this function, and bd_super could therefore become uninitialized\nwhen the object was allocated again. This could cause a kernel panic in the\nblkdev_releasepage() function, when the uninitialized bd_super field was\ndereferenced. Now, bd_super is properly initialized in the bdget()\nfunction, and the kernel panic no longer occurs. (BZ#751137)", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:1813", "url": "https://access.redhat.com/errata/RHSA-2011:1813" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "709393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=709393" }, { "category": "external", "summary": "714867", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714867" }, { "category": "external", "summary": "716825", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "category": "external", "summary": "718152", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718152" }, { "category": "external", "summary": "718882", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718882" }, { "category": "external", "summary": "728042", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728042" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1813.json" } ], "title": "Red Hat Security Advisory: kernel security and bug fix update", "tracking": { "current_release_date": "2024-11-22T04:34:34+00:00", "generator": { "date": "2024-11-22T04:34:34+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2011:1813", "initial_release_date": "2011-12-13T21:27:00+00:00", "revision_history": [ { "date": "2011-12-13T21:27:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-12-13T21:28:38+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T04:34:34+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux EUS (v. 5.6 server)", "product": { "name": "Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:5.6" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-debug-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-debug-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-238.31.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-238.31.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-238.31.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-xen-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-xen-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-238.31.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-PAE-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-PAE-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-238.31.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-238.31.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-238.31.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-238.31.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-238.31.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-238.31.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-238.31.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-devel-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-devel-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-238.31.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "product": { "name": "kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "product_id": "kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-238.31.1.el5?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-238.31.1.el5.i386", "product": { "name": "kernel-headers-0:2.6.18-238.31.1.el5.i386", "product_id": "kernel-headers-0:2.6.18-238.31.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-238.31.1.el5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-238.31.1.el5.ia64", "product": { "name": "kernel-debug-0:2.6.18-238.31.1.el5.ia64", "product_id": "kernel-debug-0:2.6.18-238.31.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-238.31.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "product_id": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-238.31.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "product": { "name": "kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "product_id": "kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-238.31.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-238.31.1.el5.ia64", "product": { "name": "kernel-xen-0:2.6.18-238.31.1.el5.ia64", "product_id": "kernel-xen-0:2.6.18-238.31.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-238.31.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "product_id": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-238.31.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "product": { "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "product_id": "kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-238.31.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "product": { "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "product_id": "kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-238.31.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "product_id": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-238.31.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-238.31.1.el5.ia64", "product": { "name": "kernel-0:2.6.18-238.31.1.el5.ia64", "product_id": "kernel-0:2.6.18-238.31.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-238.31.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-238.31.1.el5.ia64", "product": { "name": "kernel-devel-0:2.6.18-238.31.1.el5.ia64", "product_id": "kernel-devel-0:2.6.18-238.31.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-238.31.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-238.31.1.el5.ia64", "product": { "name": "kernel-headers-0:2.6.18-238.31.1.el5.ia64", "product_id": "kernel-headers-0:2.6.18-238.31.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-238.31.1.el5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "product": { "name": "kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "product_id": "kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-238.31.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-238.31.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "product_id": "kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-238.31.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "product": { "name": "kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "product_id": "kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-238.31.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "product_id": "kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-238.31.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "product_id": "kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-238.31.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "product_id": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-238.31.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-238.31.1.el5.ppc64", "product": { "name": "kernel-0:2.6.18-238.31.1.el5.ppc64", "product_id": "kernel-0:2.6.18-238.31.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-238.31.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "product": { "name": "kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "product_id": "kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-238.31.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "product": { "name": "kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "product_id": "kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-238.31.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "product": { "name": "kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "product_id": "kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-238.31.1.el5?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-238.31.1.el5.ppc", "product": { "name": "kernel-headers-0:2.6.18-238.31.1.el5.ppc", "product_id": "kernel-headers-0:2.6.18-238.31.1.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-238.31.1.el5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-238.31.1.el5.s390x", "product": { "name": "kernel-debug-0:2.6.18-238.31.1.el5.s390x", "product_id": "kernel-debug-0:2.6.18-238.31.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-238.31.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-238.31.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-238.31.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "product": { "name": "kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "product_id": "kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-238.31.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "product": { "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "product_id": "kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-238.31.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "product": { "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "product_id": "kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-238.31.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "product": { "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "product_id": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-238.31.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-238.31.1.el5.s390x", "product": { "name": "kernel-0:2.6.18-238.31.1.el5.s390x", "product_id": "kernel-0:2.6.18-238.31.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-238.31.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "product_id": "kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-238.31.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-238.31.1.el5.s390x", "product": { "name": "kernel-devel-0:2.6.18-238.31.1.el5.s390x", "product_id": "kernel-devel-0:2.6.18-238.31.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-238.31.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-238.31.1.el5.s390x", "product": { "name": "kernel-headers-0:2.6.18-238.31.1.el5.s390x", "product_id": "kernel-headers-0:2.6.18-238.31.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-238.31.1.el5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "product": { "name": "kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "product_id": "kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-238.31.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-238.31.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64", "product": { "name": "kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64", "product_id": "kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-238.31.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "product": { "name": "kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "product_id": "kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-238.31.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "product_id": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-238.31.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "product_id": "kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-238.31.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "product_id": "kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-238.31.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "product_id": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-238.31.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-238.31.1.el5.x86_64", "product": { "name": "kernel-0:2.6.18-238.31.1.el5.x86_64", "product_id": "kernel-0:2.6.18-238.31.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-238.31.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "product": { "name": "kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "product_id": "kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-238.31.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "product": { "name": "kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "product_id": "kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-238.31.1.el5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.18-238.31.1.el5.src", "product": { "name": "kernel-0:2.6.18-238.31.1.el5.src", "product_id": "kernel-0:2.6.18-238.31.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-238.31.1.el5?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "kernel-doc-0:2.6.18-238.31.1.el5.noarch", "product": { "name": "kernel-doc-0:2.6.18-238.31.1.el5.noarch", "product_id": "kernel-doc-0:2.6.18-238.31.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.18-238.31.1.el5?arch=noarch" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-238.31.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-238.31.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-238.31.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-238.31.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-238.31.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-238.31.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-238.31.1.el5.src as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src" }, "product_reference": "kernel-0:2.6.18-238.31.1.el5.src", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-238.31.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-238.31.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-238.31.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-238.31.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-238.31.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-238.31.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-238.31.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-238.31.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-238.31.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-238.31.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-238.31.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-238.31.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-238.31.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-238.31.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-238.31.1.el5.noarch as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-238.31.1.el5.noarch", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-238.31.1.el5.i386 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-238.31.1.el5.i386", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-238.31.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-238.31.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-238.31.1.el5.ppc as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-238.31.1.el5.ppc", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-238.31.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-238.31.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-238.31.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-238.31.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-238.31.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-238.31.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-238.31.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-238.31.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-238.31.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-238.31.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.6 server)", "product_id": "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2011-2482", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "714867" } ], "notes": [ { "category": "description", "text": "A certain Red Hat patch to the sctp_sock_migrate function in net/sctp/socket.c in the Linux kernel before 2.6.21, as used in Red Hat Enterprise Linux (RHEL) 5, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) via a crafted SCTP packet.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: sctp dos", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not backport the upstream commit 3ab224be6d6. It did not affect the Linux kernels as shipped with Red Hat Enterprise Linux 6, and Red Hat Enterprise MRG as they have backported the upstream commit ea2bc483ff5 that Red Hat Enterprise Linux 5 did not. This has been addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-1212.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2482" }, { "category": "external", "summary": "RHBZ#714867", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714867" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2482", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2482" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2482", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2482" } ], "release_date": "2011-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-12-13T21:27:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1813" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: sctp dos" }, { "acknowledgments": [ { "names": [ "Vasily Averin" ] } ], "cve": "CVE-2011-2491", "discovery_date": "2011-06-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "709393" } ], "notes": [ { "category": "description", "text": "The Network Lock Manager (NLM) protocol implementation in the NFS client functionality in the Linux kernel before 3.0 allows local users to cause a denial of service (system hang) via a LOCK_UN flock system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: rpc task leak after flock()ing NFS share", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2491" }, { "category": "external", "summary": "RHBZ#709393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=709393" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2491", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2491" } ], "release_date": "2011-05-31T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-12-13T21:27:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1813" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: rpc task leak after flock()ing NFS share" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2495", "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716825" } ], "notes": [ { "category": "description", "text": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: /proc/PID/io infoleak", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1212.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2495" }, { "category": "external", "summary": "RHBZ#716825", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2495", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2495" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495" } ], "release_date": "2011-06-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-12-13T21:27:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1813" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: /proc/PID/io infoleak" }, { "cve": "CVE-2011-2517", "discovery_date": "2011-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "718152" } ], "notes": [ { "category": "description", "text": "Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAP_NET_ADMIN capability during scan operations with a long SSID value.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nl80211: missing check for valid SSID size in scan operations", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for the Linux wireless LAN (802.11) configuration API. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1212.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2517" }, { "category": "external", "summary": "RHBZ#718152", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718152" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2517", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2517" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2517", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2517" } ], "release_date": "2011-05-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-12-13T21:27:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1813" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: nl80211: missing check for valid SSID size in scan operations" }, { "cve": "CVE-2011-2519", "discovery_date": "2011-07-05T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "718882" } ], "notes": [ { "category": "description", "text": "Xen in the Linux kernel, when running a guest on a host without hardware assisted paging (HAP), allows guest users to cause a denial of service (invalid pointer dereference and hypervisor crash) via the SAHF instruction.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: xen: x86_emulate: fix SAHF emulation", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue only affects Red Hat Enterprise Linux 5. The versions of the Linux\nkernel-xen as shipped with Red Hat Enterprise Linux 4, 6, and Red Hat Enterprise MRG are not affected. This has been addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-1212.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2519" }, { "category": "external", "summary": "RHBZ#718882", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718882" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2519", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2519" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2519", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2519" } ], "release_date": "2011-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-12-13T21:27:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1813" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 5.2, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:S/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: xen: x86_emulate: fix SAHF emulation" }, { "cve": "CVE-2011-2901", "cwe": { "id": "CWE-193", "name": "Off-by-one Error" }, "discovery_date": "2011-08-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "728042" } ], "notes": [ { "category": "description", "text": "Off-by-one error in the __addr_ok macro in Xen 3.3 and earlier allows local 64 bit PV guest administrators to cause a denial of service (host crash) via unspecified hypercalls that ignore virtual-address bits.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: xen: off-by-one shift in x86_64 __addr_ok()", "title": "Vulnerability summary" }, { "category": "other", "text": "The versions of the Linux kernel as shipped with Red Hat Enterprise Linux 4, 6,\nand Red Hat Enterprise MRG are not affected. This has been addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-1212.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2901" }, { "category": "external", "summary": "RHBZ#728042", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728042" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2901", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2901" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2901", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2901" } ], "release_date": "2011-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-12-13T21:27:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1813" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 5.5, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:S/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.src", "5Server-5.6.EUS:kernel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-PAE-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-PAE-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debug-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-debuginfo-common-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-devel-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-doc-0:2.6.18-238.31.1.el5.noarch", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.i386", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-headers-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-debuginfo-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.ppc64", "5Server-5.6.EUS:kernel-kdump-devel-0:2.6.18-238.31.1.el5.s390x", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-debuginfo-0:2.6.18-238.31.1.el5.x86_64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.i686", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.ia64", "5Server-5.6.EUS:kernel-xen-devel-0:2.6.18-238.31.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: xen: off-by-one shift in x86_64 __addr_ok()" } ] }
rhsa-2011_1189
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix several security issues, various bugs, and\nadd two enhancements are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Security issues:\n\n* Using PCI passthrough without interrupt remapping support allowed KVM\nguests to generate MSI interrupts and thus potentially inject traps. A\nprivileged guest user could use this flaw to crash the host or possibly\nescalate their privileges on the host. The fix for this issue can prevent\nPCI passthrough working and guests starting. Refer to Red Hat Bugzilla bug\n715555 for details. (CVE-2011-1898, Important)\n\n* Flaw in the client-side NLM implementation could allow a local,\nunprivileged user to cause a denial of service. (CVE-2011-2491, Important)\n\n* Integer underflow in the Bluetooth implementation could allow a remote\nattacker to cause a denial of service or escalate their privileges by\nsending a specially-crafted request to a target system via Bluetooth.\n(CVE-2011-2497, Important)\n\n* Buffer overflows in the netlink-based wireless configuration interface\nimplementation could allow a local user, who has the CAP_NET_ADMIN\ncapability, to cause a denial of service or escalate their privileges on\nsystems that have an active wireless interface. (CVE-2011-2517, Important)\n\n* Flaw in the way the maximum file offset was handled for ext4 file systems\ncould allow a local, unprivileged user to cause a denial of service.\n(CVE-2011-2695, Important)\n\n* Flaw allowed napi_reuse_skb() to be called on VLAN packets. An attacker\non the local network could use this flaw to send crafted packets to a\ntarget, possibly causing a denial of service. (CVE-2011-1576, Moderate)\n\n* Integer signedness error in next_pidmap() could allow a local,\nunprivileged user to cause a denial of service. (CVE-2011-1593, Moderate)\n\n* Race condition in the memory merging support (KSM) could allow a local,\nunprivileged user to cause a denial of service. KSM is off by default, but\non systems running VDSM, or on KVM hosts, it is likely turned on by the\nksm/ksmtuned services. (CVE-2011-2183, Moderate)\n\n* Flaw in inet_diag_bc_audit() could allow a local, unprivileged user to\ncause a denial of service. (CVE-2011-2213, Moderate)\n\n* Flaw in the way space was allocated in the Global File System 2 (GFS2)\nimplementation. If the file system was almost full, and a local,\nunprivileged user made an fallocate() request, it could result in a denial\nof service. Setting quotas to prevent users from using all available disk\nspace would prevent exploitation of this flaw. (CVE-2011-2689, Moderate)\n\n* Local, unprivileged users could send signals via the sigqueueinfo system\ncall, with si_code set to SI_TKILL and with spoofed process and user IDs,\nto other processes. This flaw does not allow existing permission checks to\nbe bypassed; signals can only be sent if your privileges allow you to\nalready do so. (CVE-2011-1182, Low)\n\n* Heap overflow in the EFI GUID Partition Table (GPT) implementation could\nallow a local attacker to cause a denial of service by mounting a disk\ncontaining crafted partition tables. (CVE-2011-1776, Low)\n\n* Structure padding in two structures in the Bluetooth implementation was\nnot initialized properly before being copied to user-space, possibly\nallowing local, unprivileged users to leak kernel stack memory to\nuser-space. (CVE-2011-2492, Low)\n\n* /proc/[PID]/io is world-readable by default. Previously, these files\ncould be read without any further restrictions. A local, unprivileged user\ncould read these files, belonging to other, possibly privileged processes\nto gather confidential information, such as the length of a password used\nin a process. (CVE-2011-2495, Low)\n\nRed Hat would like to thank Vasily Averin for reporting CVE-2011-2491; Dan\nRosenberg for reporting CVE-2011-2497 and CVE-2011-2213; Ryan Sweat for\nreporting CVE-2011-1576; Robert Swiecki for reporting CVE-2011-1593; Andrea\nRighi for reporting CVE-2011-2183; Julien Tinnes of the Google Security\nTeam for reporting CVE-2011-1182; Timo Warns for reporting CVE-2011-1776;\nMarek Kroemeke and Filip Palian for reporting CVE-2011-2492; and Vasiliy\nKulikov of Openwall for reporting CVE-2011-2495.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:1189", "url": "https://access.redhat.com/errata/RHSA-2011:1189" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/kernel.html#RHSA-2011-1189", "url": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/kernel.html#RHSA-2011-1189" }, { "category": "external", "summary": "715555", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715555" }, { "category": "external", "summary": "690028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" }, { "category": "external", "summary": "695173", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695173" }, { "category": "external", "summary": "697822", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697822" }, { "category": "external", "summary": "703019", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703019" }, { "category": "external", "summary": "703026", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703026" }, { "category": "external", "summary": "709393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=709393" }, { "category": "external", "summary": "710338", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=710338" }, { "category": "external", "summary": "713827", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=713827" }, { "category": "external", "summary": "714536", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714536" }, { "category": "external", "summary": "714982", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714982" }, { "category": "external", "summary": "716539", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716539" }, { "category": "external", "summary": "716805", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716805" }, { "category": "external", "summary": "716825", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "category": "external", "summary": "718152", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718152" }, { "category": "external", "summary": "720861", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=720861" }, { "category": "external", "summary": "722557", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722557" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1189.json" } ], "title": "Red Hat Security Advisory: kernel security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-22T05:00:02+00:00", "generator": { "date": "2024-11-22T05:00:02+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2011:1189", "initial_release_date": "2011-08-23T14:30:00+00:00", "revision_history": [ { "date": "2011-08-23T14:30:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-08-23T10:41:43+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T05:00:02+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-headers-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-i686@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-debug-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.12.1.el6.i686", "product": { "name": "perf-0:2.6.32-131.12.1.el6.i686", "product_id": "perf-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "product": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "product_id": "perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-devel-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.12.1.el6?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "perf-0:2.6.32-131.12.1.el6.ppc64", "product_id": "perf-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-bootwrapper@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product_id": "perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.12.1.el6?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-headers-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-debug-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "perf-0:2.6.32-131.12.1.el6.s390x", "product_id": "perf-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_id": "perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-devel-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.32-131.12.1.el6?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "perf-0:2.6.32-131.12.1.el6.x86_64", "product_id": "perf-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product_id": "perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.12.1.el6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "product": { "name": "kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "product_id": "kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-131.12.1.el6?arch=noarch" } } }, { "category": "product_version", "name": "kernel-doc-0:2.6.32-131.12.1.el6.noarch", "product": { "name": "kernel-doc-0:2.6.32-131.12.1.el6.noarch", "product_id": "kernel-doc-0:2.6.32-131.12.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.32-131.12.1.el6?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.32-131.12.1.el6.src", "product": { "name": "kernel-0:2.6.32-131.12.1.el6.src", "product_id": "kernel-0:2.6.32-131.12.1.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.12.1.el6?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.12.1.el6.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src" }, "product_reference": "kernel-0:2.6.32-131.12.1.el6.src", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-debug-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-debug-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-devel-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-devel-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.32-131.12.1.el6.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch" }, "product_reference": "kernel-doc-0:2.6.32-131.12.1.el6.noarch", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-firmware-0:2.6.32-131.12.1.el6.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch" }, "product_reference": "kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-headers-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-headers-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "perf-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "perf-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "perf-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "perf-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Julien Tinnes" ], "organization": "Google Security Team" } ], "cve": "CVE-2011-1182", "discovery_date": "2011-03-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "690028" } ], "notes": [ { "category": "description", "text": "kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel signal spoofing issue", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This was addressed in Red Hat Enterprise Linux 5 and 6 via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html. A future kernel update in Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1182" }, { "category": "external", "summary": "RHBZ#690028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1182", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1182" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1182", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1182" } ], "release_date": "2011-03-23T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:P", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel signal spoofing issue" }, { "acknowledgments": [ { "names": [ "Ryan Sweat" ] } ], "cve": "CVE-2011-1576", "cwe": { "id": "CWE-401", "name": "Missing Release of Memory after Effective Lifetime" }, "discovery_date": "2011-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "695173" } ], "notes": [ { "category": "description", "text": "The Generic Receive Offload (GRO) implementation in the Linux kernel 2.6.18 on Red Hat Enterprise Linux 5 and 2.6.32 on Red Hat Enterprise Linux 6, as used in Red Hat Enterprise Virtualization (RHEV) Hypervisor and other products, allows remote attackers to cause a denial of service via crafted VLAN packets that are processed by the napi_reuse_skb function, leading to (1) a memory leak or (2) memory corruption, a different vulnerability than CVE-2011-1478.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: net: Fix memory leak/corruption on VLAN GRO_DROP", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not support Generic Receive Offload (GRO). This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1576" }, { "category": "external", "summary": "RHBZ#695173", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695173" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1576", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1576" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1576", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1576" } ], "release_date": "2011-06-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: net: Fix memory leak/corruption on VLAN GRO_DROP" }, { "acknowledgments": [ { "names": [ "Robert Swiecki" ] } ], "cve": "CVE-2011-1593", "discovery_date": "2011-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "697822" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in the next_pidmap function in kernel/pid.c in the Linux kernel before 2.6.38.4 allow local users to cause a denial of service (system crash) via a crafted (1) getdents or (2) readdir system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: proc: signedness issue in next_pidmap()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1593" }, { "category": "external", "summary": "RHBZ#697822", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697822" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1593", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1593" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1593", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1593" } ], "release_date": "2011-04-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: proc: signedness issue in next_pidmap()" }, { "acknowledgments": [ { "names": [ "Timo Warns" ] } ], "cve": "CVE-2011-1776", "discovery_date": "2011-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "703026" } ], "notes": [ { "category": "description", "text": "The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate attackers to cause a denial of service (heap-based buffer overflow and OOPS) or obtain sensitive information from kernel heap memory by connecting a crafted GPT storage device, a different vulnerability than CVE-2011-1577.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: validate size of EFI GUID partition entries", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1776" }, { "category": "external", "summary": "RHBZ#703026", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703026" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1776", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1776" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1776", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1776" } ], "release_date": "2011-05-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: validate size of EFI GUID partition entries" }, { "cve": "CVE-2011-1898", "cwe": { "id": "CWE-284", "name": "Improper Access Control" }, "discovery_date": "2011-06-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "715555" } ], "notes": [ { "category": "description", "text": "Xen 4.1 before 4.1.1 and 4.0 before 4.0.2, when using PCI passthrough on Intel VT-d chipsets that do not have interrupt remapping, allows guest OS users to gain host OS privileges by \"using DMA to generate MSI interrupts by writing to the interrupt injection registers.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "virt: VT-d (PCI passthrough) MSI trap injection", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did affect the versions of kernel package as shipped with Red Hat Enterprise Linux 5.\n\nThis issue did affect the versions of kvm package as shipped with Red Hat Enterprise Linux 5. Red Hat cannot backport the fix though as it is too invasive and has a high risk of introducing severe regressions at this point in the Red Hat Enterprise Linux 5 life-cycle. As such, Red Hat recommends that users of KVM on Red Hat Enterprise Linux 5 only use PCI passthrough with trusted guests. \n\nThis issue did affect the versions of kernel package as shipped with Red Hat Enterprise Linux 6.\n\nThis issue did not affect the versions of kernel-rt package as shipped with Red Hat Enterprise MRG as it did not provide support for virtualization.\n\nFor further info please refer to the knowledge base article https://access.redhat.com/knowledge/articles/66747.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1898" }, { "category": "external", "summary": "RHBZ#715555", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715555" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1898", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1898" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1898", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1898" } ], "release_date": "2011-04-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 7.4, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:A/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "virt: VT-d (PCI passthrough) MSI trap injection" }, { "acknowledgments": [ { "names": [ "Andrea Righi" ] } ], "cve": "CVE-2011-2183", "discovery_date": "2011-06-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "710338" } ], "notes": [ { "category": "description", "text": "Race condition in the scan_get_next_rmap_item function in mm/ksm.c in the Linux kernel before 2.6.39.3, when Kernel SamePage Merging (KSM) is enabled, allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ksm: race between ksmd and exiting task", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, and Red Hat Enterprise MRG do not provide support for KSM (Kernel Samepage Merging). This has been addressed in Red Hat Enterprise Linux 6 via https://rhn.redhat.com/errata/RHSA-2011-1189.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2183" }, { "category": "external", "summary": "RHBZ#710338", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=710338" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2183", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2183" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2183", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2183" } ], "release_date": "2011-06-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ksm: race between ksmd and exiting task" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-2213", "discovery_date": "2011-06-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "714536" } ], "notes": [ { "category": "description", "text": "The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message, as demonstrated by an INET_DIAG_BC_JMP instruction with a zero yes value, a different vulnerability than CVE-2010-3880.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: inet_diag: insufficient validation", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4,\n5, 6, and Red Hat Enterprise MRG. Red Hat Enterprise Linux 4 is now in\nProduction 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2213" }, { "category": "external", "summary": "RHBZ#714536", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714536" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2213", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2213" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2213", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2213" } ], "release_date": "2011-06-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: inet_diag: insufficient validation" }, { "acknowledgments": [ { "names": [ "Vasily Averin" ] } ], "cve": "CVE-2011-2491", "discovery_date": "2011-06-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "709393" } ], "notes": [ { "category": "description", "text": "The Network Lock Manager (NLM) protocol implementation in the NFS client functionality in the Linux kernel before 3.0 allows local users to cause a denial of service (system hang) via a LOCK_UN flock system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: rpc task leak after flock()ing NFS share", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2491" }, { "category": "external", "summary": "RHBZ#709393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=709393" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2491", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2491" } ], "release_date": "2011-05-31T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: rpc task leak after flock()ing NFS share" }, { "acknowledgments": [ { "names": [ "Marek Kroemeke", "Filip Palian" ] } ], "cve": "CVE-2011-2492", "discovery_date": "2011-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "703019" } ], "notes": [ { "category": "description", "text": "The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel memory via a crafted getsockopt system call, related to (1) the l2cap_sock_getsockopt_old function in net/bluetooth/l2cap_sock.c and (2) the rfcomm_sock_getsockopt_old function in net/bluetooth/rfcomm/sock.c.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2492" }, { "category": "external", "summary": "RHBZ#703019", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703019" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2492", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2492" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2492", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2492" } ], "release_date": "2011-05-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2495", "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716825" } ], "notes": [ { "category": "description", "text": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: /proc/PID/io infoleak", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1212.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2495" }, { "category": "external", "summary": "RHBZ#716825", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2495", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2495" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495" } ], "release_date": "2011-06-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: /proc/PID/io infoleak" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-2497", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-06-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716805" } ], "notes": [ { "category": "description", "text": "Integer underflow in the l2cap_config_req function in net/bluetooth/l2cap_core.c in the Linux kernel before 3.0 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a small command-size value within the command header of a Logical Link Control and Adaptation Protocol (L2CAP) configuration request, leading to a buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: bluetooth: buffer overflow in l2cap config request", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 and 5 as they did not backport the upstream commit 5dee9e7c that introduced this issue. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2497" }, { "category": "external", "summary": "RHBZ#716805", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716805" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2497", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2497" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2497", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2497" } ], "release_date": "2011-06-24T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 8.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: bluetooth: buffer overflow in l2cap config request" }, { "cve": "CVE-2011-2517", "discovery_date": "2011-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "718152" } ], "notes": [ { "category": "description", "text": "Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAP_NET_ADMIN capability during scan operations with a long SSID value.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nl80211: missing check for valid SSID size in scan operations", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for the Linux wireless LAN (802.11) configuration API. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1212.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2517" }, { "category": "external", "summary": "RHBZ#718152", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718152" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2517", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2517" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2517", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2517" } ], "release_date": "2011-05-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: nl80211: missing check for valid SSID size in scan operations" }, { "cve": "CVE-2011-2689", "discovery_date": "2011-07-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "720861" } ], "notes": [ { "category": "description", "text": "The gfs2_fallocate function in fs/gfs2/file.c in the Linux kernel before 3.0-rc1 does not ensure that the size of a chunk allocation is a multiple of the block size, which allows local users to cause a denial of service (BUG and system crash) by arranging for all resource groups to have too little free space.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: gfs2: make sure fallocate bytes is a multiple of blksize", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 and Red Hat Enterprise MRG as they did not provide support for the Global File System 2 (GFS2). This has been addressed in Red Hat Enterprise Linux 5 and 6 via https://rhn.redhat.com/errata/RHSA-2011-1065.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2689" }, { "category": "external", "summary": "RHBZ#720861", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=720861" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2689", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2689" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2689", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2689" } ], "release_date": "2011-04-26T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: gfs2: make sure fallocate bytes is a multiple of blksize" }, { "cve": "CVE-2011-2695", "discovery_date": "2011-07-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "722557" } ], "notes": [ { "category": "description", "text": "Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local users to cause a denial of service (BUG_ON and system crash) by accessing a sparse file in extent format with a write operation involving a block number corresponding to the largest possible 32-bit unsigned integer.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ext4: kernel panic when writing data to the last block of sparse file", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not include support for EXT4 filesystem.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2695" }, { "category": "external", "summary": "RHBZ#722557", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722557" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2695", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2695" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2695", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2695" } ], "release_date": "2011-06-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ext4: kernel panic when writing data to the last block of sparse file" } ] }
rhsa-2011_1212
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix multiple security issues and several bugs\nare now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A NULL pointer dereference flaw was found in the Linux kernel\u0027s Stream\nControl Transmission Protocol (SCTP) implementation. A remote attacker\ncould send a specially-crafted SCTP packet to a target system, resulting in\na denial of service. (CVE-2011-2482, Important)\n\n* A flaw in the Linux kernel\u0027s client-side NFS Lock Manager (NLM)\nimplementation could allow a local, unprivileged user to cause a denial of\nservice. (CVE-2011-2491, Important)\n\n* Buffer overflow flaws in the Linux kernel\u0027s netlink-based wireless\nconfiguration interface implementation could allow a local user, who has\nthe CAP_NET_ADMIN capability, to cause a denial of service or escalate\ntheir privileges on systems that have an active wireless interface.\n(CVE-2011-2517, Important)\n\n* A flaw was found in the way the Linux kernel\u0027s Xen hypervisor\nimplementation emulated the SAHF instruction. When using a\nfully-virtualized guest on a host that does not use hardware assisted\npaging (HAP), such as those running CPUs that do not have support for (or\nthose that have it disabled) Intel Extended Page Tables (EPT) or AMD\nVirtualization (AMD-V) Rapid Virtualization Indexing (RVI), a privileged\nguest user could trigger this flaw to cause the hypervisor to crash.\n(CVE-2011-2519, Moderate)\n\n* An off-by-one flaw was found in the __addr_ok() macro in the Linux\nkernel\u0027s Xen hypervisor implementation when running on 64-bit systems. A\nprivileged guest user could trigger this flaw to cause the hypervisor to\ncrash. (CVE-2011-2901, Moderate)\n\n* /proc/[PID]/io is world-readable by default. Previously, these files\ncould be read without any further restrictions. A local, unprivileged user\ncould read these files, belonging to other, possibly privileged processes\nto gather confidential information, such as the length of a password used\nin a process. (CVE-2011-2495, Low)\n\nRed Hat would like to thank Vasily Averin for reporting CVE-2011-2491, and\nVasiliy Kulikov of Openwall for reporting CVE-2011-2495.\n\nThis update also fixes several bugs. Documentation for these bug fixes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues, and fix the bugs noted in the Technical\nNotes. The system must be rebooted for this update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:1212", "url": "https://access.redhat.com/errata/RHSA-2011:1212" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/5.7_Technical_Notes/kernel.html#RHSA-2011-1212", "url": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/5.7_Technical_Notes/kernel.html#RHSA-2011-1212" }, { "category": "external", "summary": "709393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=709393" }, { "category": "external", "summary": "712885", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=712885" }, { "category": "external", "summary": "714867", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714867" }, { "category": "external", "summary": "716825", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "category": "external", "summary": "718152", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718152" }, { "category": "external", "summary": "718882", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718882" }, { "category": "external", "summary": "727590", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=727590" }, { "category": "external", "summary": "727835", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=727835" }, { "category": "external", "summary": "728042", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728042" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1212.json" } ], "title": "Red Hat Security Advisory: kernel security and bug fix update", "tracking": { "current_release_date": "2024-11-22T04:34:25+00:00", "generator": { "date": "2024-11-22T04:34:25+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2011:1212", "initial_release_date": "2011-09-06T21:31:00+00:00", "revision_history": [ { "date": "2011-09-06T21:31:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-09-06T17:41:35+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T04:34:25+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-274.3.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-274.3.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-274.3.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-debug-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-274.3.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-274.3.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-274.3.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-274.3.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-274.3.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-xen-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-xen-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-274.3.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-devel-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-274.3.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-PAE-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-PAE-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-274.3.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-274.3.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "product": { "name": "kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "product_id": "kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-274.3.1.el5?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-274.3.1.el5.i386", "product": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.i386", "product_id": "kernel-headers-0:2.6.18-274.3.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-274.3.1.el5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "product_id": "kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-274.3.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "product_id": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-274.3.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-274.3.1.el5.x86_64", "product": { "name": "kernel-0:2.6.18-274.3.1.el5.x86_64", "product_id": "kernel-0:2.6.18-274.3.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-274.3.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "product": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "product_id": "kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-274.3.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "product_id": "kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-274.3.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "product_id": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-274.3.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-274.3.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "product": { "name": "kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "product_id": "kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-274.3.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "product": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "product_id": "kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-274.3.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "product": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "product_id": "kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-274.3.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "product": { "name": "kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "product_id": "kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-274.3.1.el5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.18-274.3.1.el5.src", "product": { "name": "kernel-0:2.6.18-274.3.1.el5.src", "product_id": "kernel-0:2.6.18-274.3.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-274.3.1.el5?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "kernel-doc-0:2.6.18-274.3.1.el5.noarch", "product": { "name": "kernel-doc-0:2.6.18-274.3.1.el5.noarch", "product_id": "kernel-doc-0:2.6.18-274.3.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.18-274.3.1.el5?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "product": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "product_id": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-274.3.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "product_id": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-274.3.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-274.3.1.el5.ia64", "product": { "name": "kernel-0:2.6.18-274.3.1.el5.ia64", "product_id": "kernel-0:2.6.18-274.3.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-274.3.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-274.3.1.el5.ia64", "product": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.ia64", "product_id": "kernel-debug-0:2.6.18-274.3.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-274.3.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "product": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "product_id": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-274.3.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "product_id": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-274.3.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "product_id": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-274.3.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-274.3.1.el5.ia64", "product": { "name": "kernel-xen-0:2.6.18-274.3.1.el5.ia64", "product_id": "kernel-xen-0:2.6.18-274.3.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-274.3.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-274.3.1.el5.ia64", "product": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.ia64", "product_id": "kernel-headers-0:2.6.18-274.3.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-274.3.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-274.3.1.el5.ia64", "product": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.ia64", "product_id": "kernel-devel-0:2.6.18-274.3.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-274.3.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "product": { "name": "kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "product_id": "kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-274.3.1.el5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "product_id": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-274.3.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "product": { "name": "kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "product_id": "kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-274.3.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-274.3.1.el5.ppc64", "product": { "name": "kernel-0:2.6.18-274.3.1.el5.ppc64", "product_id": "kernel-0:2.6.18-274.3.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-274.3.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "product": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "product_id": "kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-274.3.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "product_id": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-274.3.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "product_id": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-274.3.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "product_id": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-274.3.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-274.3.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "product": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "product_id": "kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-274.3.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "product": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "product_id": "kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-274.3.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "product": { "name": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "product_id": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-274.3.1.el5?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-274.3.1.el5.ppc", "product": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.ppc", "product_id": "kernel-headers-0:2.6.18-274.3.1.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-274.3.1.el5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "product": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "product_id": "kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-274.3.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "product": { "name": "kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "product_id": "kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-274.3.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-274.3.1.el5.s390x", "product": { "name": "kernel-0:2.6.18-274.3.1.el5.s390x", "product_id": "kernel-0:2.6.18-274.3.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-274.3.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-274.3.1.el5.s390x", "product": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.s390x", "product_id": "kernel-debug-0:2.6.18-274.3.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-274.3.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-274.3.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "product": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "product_id": "kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-274.3.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "product": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "product_id": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-274.3.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-274.3.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-274.3.1.el5.s390x", "product": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.s390x", "product_id": "kernel-headers-0:2.6.18-274.3.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-274.3.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-274.3.1.el5.s390x", "product": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.s390x", "product_id": "kernel-devel-0:2.6.18-274.3.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-274.3.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "product_id": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-274.3.1.el5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.3.1.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src" }, "product_reference": "kernel-0:2.6.18-274.3.1.el5.src", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-274.3.1.el5.noarch as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-274.3.1.el5.noarch", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-274.3.1.el5.i386", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-274.3.1.el5.ppc", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.3.1.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src" }, "product_reference": "kernel-0:2.6.18-274.3.1.el5.src", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-274.3.1.el5.noarch as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-274.3.1.el5.noarch", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-274.3.1.el5.i386", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-274.3.1.el5.ppc", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-274.3.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2011-2482", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "714867" } ], "notes": [ { "category": "description", "text": "A certain Red Hat patch to the sctp_sock_migrate function in net/sctp/socket.c in the Linux kernel before 2.6.21, as used in Red Hat Enterprise Linux (RHEL) 5, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) via a crafted SCTP packet.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: sctp dos", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not backport the upstream commit 3ab224be6d6. It did not affect the Linux kernels as shipped with Red Hat Enterprise Linux 6, and Red Hat Enterprise MRG as they have backported the upstream commit ea2bc483ff5 that Red Hat Enterprise Linux 5 did not. This has been addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-1212.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2482" }, { "category": "external", "summary": "RHBZ#714867", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714867" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2482", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2482" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2482", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2482" } ], "release_date": "2011-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-06T21:31:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1212" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: sctp dos" }, { "acknowledgments": [ { "names": [ "Vasily Averin" ] } ], "cve": "CVE-2011-2491", "discovery_date": "2011-06-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "709393" } ], "notes": [ { "category": "description", "text": "The Network Lock Manager (NLM) protocol implementation in the NFS client functionality in the Linux kernel before 3.0 allows local users to cause a denial of service (system hang) via a LOCK_UN flock system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: rpc task leak after flock()ing NFS share", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2491" }, { "category": "external", "summary": "RHBZ#709393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=709393" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2491", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2491" } ], "release_date": "2011-05-31T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-06T21:31:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1212" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: rpc task leak after flock()ing NFS share" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2495", "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716825" } ], "notes": [ { "category": "description", "text": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: /proc/PID/io infoleak", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1212.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2495" }, { "category": "external", "summary": "RHBZ#716825", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2495", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2495" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495" } ], "release_date": "2011-06-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-06T21:31:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1212" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: /proc/PID/io infoleak" }, { "cve": "CVE-2011-2517", "discovery_date": "2011-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "718152" } ], "notes": [ { "category": "description", "text": "Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAP_NET_ADMIN capability during scan operations with a long SSID value.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nl80211: missing check for valid SSID size in scan operations", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for the Linux wireless LAN (802.11) configuration API. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1212.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2517" }, { "category": "external", "summary": "RHBZ#718152", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718152" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2517", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2517" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2517", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2517" } ], "release_date": "2011-05-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-06T21:31:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1212" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: nl80211: missing check for valid SSID size in scan operations" }, { "cve": "CVE-2011-2519", "discovery_date": "2011-07-05T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "718882" } ], "notes": [ { "category": "description", "text": "Xen in the Linux kernel, when running a guest on a host without hardware assisted paging (HAP), allows guest users to cause a denial of service (invalid pointer dereference and hypervisor crash) via the SAHF instruction.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: xen: x86_emulate: fix SAHF emulation", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue only affects Red Hat Enterprise Linux 5. The versions of the Linux\nkernel-xen as shipped with Red Hat Enterprise Linux 4, 6, and Red Hat Enterprise MRG are not affected. This has been addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-1212.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2519" }, { "category": "external", "summary": "RHBZ#718882", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718882" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2519", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2519" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2519", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2519" } ], "release_date": "2011-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-06T21:31:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1212" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 5.2, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:S/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: xen: x86_emulate: fix SAHF emulation" }, { "cve": "CVE-2011-2901", "cwe": { "id": "CWE-193", "name": "Off-by-one Error" }, "discovery_date": "2011-08-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "728042" } ], "notes": [ { "category": "description", "text": "Off-by-one error in the __addr_ok macro in Xen 3.3 and earlier allows local 64 bit PV guest administrators to cause a denial of service (host crash) via unspecified hypercalls that ignore virtual-address bits.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: xen: off-by-one shift in x86_64 __addr_ok()", "title": "Vulnerability summary" }, { "category": "other", "text": "The versions of the Linux kernel as shipped with Red Hat Enterprise Linux 4, 6,\nand Red Hat Enterprise MRG are not affected. This has been addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-1212.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2901" }, { "category": "external", "summary": "RHBZ#728042", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728042" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2901", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2901" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2901", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2901" } ], "release_date": "2011-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-06T21:31:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1212" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 5.5, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:S/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.3.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.3.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.3.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.3.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: xen: off-by-one shift in x86_64 __addr_ok()" } ] }
rhsa-2011_1253
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel-rt packages that fix multiple security issues and various\nbugs are now available for Red Hat Enterprise MRG 2.0.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Security fixes:\n\n* A flaw in the SCTP and DCCP implementations could allow a remote attacker\nto cause a denial of service. (CVE-2010-4526, CVE-2011-1770, Important)\n\n* Flaws in the Management Module Support for Message Passing Technology\n(MPT) based controllers could allow a local, unprivileged user to cause a\ndenial of service, an information leak, or escalate their privileges.\n(CVE-2011-1494, CVE-2011-1495, Important)\n\n* Flaws in the AGPGART driver, and a flaw in agp_allocate_memory(), could\nallow a local user to cause a denial of service or escalate their\nprivileges. (CVE-2011-1745, CVE-2011-2022, CVE-2011-1746, Important)\n\n* A flaw in the client-side NLM implementation could allow a local,\nunprivileged user to cause a denial of service. (CVE-2011-2491, Important)\n\n* A flaw in the Bluetooth implementation could allow a remote attacker to\ncause a denial of service or escalate their privileges. (CVE-2011-2497,\nImportant)\n\n* Flaws in the netlink-based wireless configuration interface could allow a\nlocal user, who has the CAP_NET_ADMIN capability, to cause a denial of\nservice or escalate their privileges on systems that have an active\nwireless interface. (CVE-2011-2517, Important)\n\n* The maximum file offset handling for ext4 file systems could allow a\nlocal, unprivileged user to cause a denial of service. (CVE-2011-2695,\nImportant)\n\n* A local, unprivileged user could allocate large amounts of memory not\nvisible to the OOM killer, causing a denial of service. (CVE-2010-4243,\nModerate)\n\n* The proc file system could allow a local, unprivileged user to obtain\nsensitive information or possibly cause integrity issues. (CVE-2011-1020,\nModerate)\n\n* A local, privileged user could possibly write arbitrary kernel memory via\n/sys/kernel/debug/acpi/custom_method. (CVE-2011-1021, Moderate)\n\n* Inconsistency in the methods for allocating and freeing NFSv4 ACL data;\nCVE-2010-4250 fix caused a regression; a flaw in next_pidmap() and\ninet_diag_bc_audit(); flaws in the CAN implementation; a race condition in\nthe memory merging support; a flaw in the taskstats subsystem; and the way\nmapping expansions were handled could allow a local, unprivileged user to\ncause a denial of service. (CVE-2011-1090, CVE-2011-1479, CVE-2011-1593,\nCVE-2011-2213, CVE-2011-1598, CVE-2011-1748, CVE-2011-2183, CVE-2011-2484,\nCVE-2011-2496, Moderate)\n\n* A flaw in GRO could result in a denial of service when a malformed VLAN\nframe is received. (CVE-2011-1478, Moderate)\n\n* napi_reuse_skb() could be called on VLAN packets allowing an attacker on\nthe local network to possibly trigger a denial of service. (CVE-2011-1576,\nModerate)\n\n* A denial of service could occur if packets were received while the ipip\nor ip_gre module was being loaded. (CVE-2011-1767, CVE-2011-1768, Moderate)\n\n* Information leaks. (CVE-2011-1160, CVE-2011-2492, CVE-2011-2495, Low)\n\n* Flaws in the EFI GUID Partition Table implementation could allow a local\nattacker to cause a denial of service. (CVE-2011-1577, CVE-2011-1776, Low)\n\n* While a user has a CIFS share mounted that required successful\nauthentication, a local, unprivileged user could mount that share without\nknowing the correct password if mount.cifs was setuid root. (CVE-2011-1585,\nLow)\n\nRed Hat would like to thank Dan Rosenberg for reporting CVE-2011-1770,\nCVE-2011-1494, CVE-2011-1495, CVE-2011-2497, and CVE-2011-2213; Vasiliy\nKulikov of Openwall for reporting CVE-2011-1745, CVE-2011-2022,\nCVE-2011-1746, CVE-2011-2484, and CVE-2011-2495; Vasily Averin for\nreporting CVE-2011-2491; Brad Spengler for reporting CVE-2010-4243; Kees\nCook for reporting CVE-2011-1020; Robert Swiecki for reporting\nCVE-2011-1593 and CVE-2011-2496; Oliver Hartkopp for reporting\nCVE-2011-1748; Andrea Righi for reporting CVE-2011-2183; Ryan Sweat for\nreporting CVE-2011-1478 and CVE-2011-1576; Peter Huewe for reporting\nCVE-2011-1160; Marek Kroemeke and Filip Palian for reporting CVE-2011-2492;\nand Timo Warns for reporting CVE-2011-1577 and CVE-2011-1776.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:1253", "url": "https://access.redhat.com/errata/RHSA-2011:1253" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/2.0/html/Technical_Notes/index.html", "url": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/2.0/html/Technical_Notes/index.html" }, { "category": "external", "summary": "625688", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=625688" }, { "category": "external", "summary": "664914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=664914" }, { "category": "external", "summary": "680358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=680358" }, { "category": "external", "summary": "680841", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=680841" }, { "category": "external", "summary": "681987", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=681987" }, { "category": "external", "summary": "682641", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=682641" }, { "category": "external", "summary": "684671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=684671" }, { "category": "external", "summary": "691270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=691270" }, { "category": "external", "summary": "691793", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=691793" }, { "category": "external", "summary": "694021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=694021" }, { "category": "external", "summary": "695173", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695173" }, { "category": "external", "summary": "695976", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695976" }, { "category": "external", "summary": "697394", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697394" }, { "category": "external", "summary": "697822", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697822" }, { "category": "external", "summary": "698057", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698057" }, { "category": "external", "summary": "698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "698998", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698998" }, { "category": "external", "summary": "702303", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=702303" }, { "category": "external", "summary": "703011", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703011" }, { "category": "external", "summary": "703019", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703019" }, { "category": "external", "summary": "703026", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703026" }, { "category": "external", "summary": "709393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=709393" }, { "category": "external", "summary": "710158", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=710158" }, { "category": "external", "summary": "710338", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=710338" }, { "category": "external", "summary": "714536", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714536" }, { "category": "external", "summary": "715436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715436" }, { "category": "external", "summary": "716538", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "category": "external", "summary": "716805", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716805" }, { "category": "external", "summary": "716825", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "category": "external", "summary": "718152", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718152" }, { "category": "external", "summary": "722557", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722557" }, { "category": "external", "summary": "728310", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728310" }, { "category": "external", "summary": "728551", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728551" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1253.json" } ], "title": "Red Hat Security Advisory: kernel-rt security and bug fix update", "tracking": { "current_release_date": "2024-11-22T04:54:54+00:00", "generator": { "date": "2024-11-22T04:54:54+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2011:1253", "initial_release_date": "2011-09-12T19:40:00+00:00", "revision_history": [ { "date": "2011-09-12T19:40:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-09-12T15:43:48+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T04:54:54+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat MRG Realtime for RHEL 6 Server v.2", "product": { "name": "Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_mrg:2:server:el6" } } } ], "category": "product_family", "name": "Red Hat Enterprise MRG for RHEL-6" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-devel@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "product": { "name": "kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "product_id": "kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-firmware@2.6.33.9-rt31.75.el6rt?arch=noarch" } } }, { "category": "product_version", "name": "kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "product": { "name": "kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "product_id": "kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-doc@2.6.33.9-rt31.75.el6rt?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "product": { "name": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "product_id": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.33.9-rt31.75.el6rt?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.src as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src" }, "product_reference": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch" }, "product_reference": "kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch" }, "product_reference": "kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Brad Spengler" ] } ], "cve": "CVE-2010-4243", "discovery_date": "2010-08-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "625688" } ], "notes": [ { "category": "description", "text": "fs/exec.c in the Linux kernel before 2.6.37 does not enable the OOM Killer to assess use of stack memory by arrays representing the (1) arguments and (2) environment, which allows local users to cause a denial of service (memory consumption) via a crafted exec system call, aka an \"OOM dodging issue,\" a related issue to CVE-2010-3858.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-4243" }, { "category": "external", "summary": "RHBZ#625688", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=625688" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-4243", "url": "https://www.cve.org/CVERecord?id=CVE-2010-4243" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-4243", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-4243" } ], "release_date": "2010-08-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads" }, { "cve": "CVE-2010-4526", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2010-12-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "664914" } ], "notes": [ { "category": "description", "text": "Race condition in the sctp_icmp_proto_unreachable function in net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote attackers to cause a denial of service (panic) via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and triggers list corruption, related to the sctp_wait_for_connect function.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: sctp: a race between ICMP protocol unreachable and connect()", "title": "Vulnerability summary" }, { "category": "other", "text": "The Linux kernel as shipped with Red Hat Enterprise Linux 4 did not include\nupstream commit history:5aabd1fe268e850c2e93048a5ccc5eb6970ac49c, and therefore\nis not affected by this issue. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via http://rhn.redhat.com/errata/RHSA-2011-0163.html, https://rhn.redhat.com/errata/RHSA-2011-0421.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-4526" }, { "category": "external", "summary": "RHBZ#664914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=664914" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-4526", "url": "https://www.cve.org/CVERecord?id=CVE-2010-4526" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-4526", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-4526" } ], "release_date": "2010-05-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: sctp: a race between ICMP protocol unreachable and connect()" }, { "acknowledgments": [ { "names": [ "Kees Cook" ] } ], "cve": "CVE-2011-1020", "discovery_date": "2011-02-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "680358" } ], "notes": [ { "category": "description", "text": "The proc filesystem implementation in the Linux kernel 2.6.37 and earlier does not restrict access to the /proc directory tree of a process after this process performs an exec of a setuid program, which allows local users to obtain sensitive information or cause a denial of service via open, lseek, read, and write system calls.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: no access restrictions of /proc/pid/* after setuid program exec", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.\n\nThis has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via RHSA-2012:0007, RHSA-2011:1530 and RHSA-2011:1253 respectively.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1020" }, { "category": "external", "summary": "RHBZ#680358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=680358" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1020", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1020" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1020", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1020" } ], "release_date": "2011-02-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: no access restrictions of /proc/pid/* after setuid program exec" }, { "cve": "CVE-2011-1021", "discovery_date": "2011-02-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "680841" } ], "notes": [ { "category": "description", "text": "drivers/acpi/debugfs.c in the Linux kernel before 3.0 allows local users to modify arbitrary kernel memory locations by leveraging root privileges to write to the /sys/kernel/debug/acpi/custom_method file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4347.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions", "title": "Vulnerability summary" }, { "category": "other", "text": "The version of Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, and 6 as they did not include upstream commit a1a541d8 and a25ee920 that introduced the problem. This has been addressed in Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1253.html.\n\nNotes:\n\nThis requires debugfs to be mounted on a local system in order to have access\nto the custom_method file. Debugfs is not mounted by default. You need to run\n\"mount -t debugfs nodev /sys/kernel/debug\" as root first.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1021" }, { "category": "external", "summary": "RHBZ#680841", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=680841" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1021", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1021" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1021", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1021" } ], "release_date": "2011-02-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:H/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions" }, { "cve": "CVE-2011-1090", "discovery_date": "2011-03-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "682641" } ], "notes": [ { "category": "description", "text": "The __nfs4_proc_set_acl function in fs/nfs/nfs4proc.c in the Linux kernel before 2.6.38 stores NFSv4 ACL data in memory that is allocated by kmalloc but not properly freed, which allows local users to cause a denial of service (panic) via a crafted attempt to set an ACL.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not backport the upstream commit 4b580ee3 that introduced this issue. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0429.html, https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1090" }, { "category": "external", "summary": "RHBZ#682641", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=682641" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1090", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1090" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1090", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1090" } ], "release_date": "2011-03-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab" }, { "acknowledgments": [ { "names": [ "Peter Huewe" ] } ], "cve": "CVE-2011-1160", "discovery_date": "2011-03-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "684671" } ], "notes": [ { "category": "description", "text": "The tpm_open function in drivers/char/tpm/tpm.c in the Linux kernel before 2.6.39 does not initialize a certain buffer, which allows local users to obtain potentially sensitive information from kernel memory via unspecified vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: tpm infoleaks", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1160" }, { "category": "external", "summary": "RHBZ#684671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=684671" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1160", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1160" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1160", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1160" } ], "release_date": "2011-03-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.2, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: tpm infoleaks" }, { "acknowledgments": [ { "names": [ "Ryan Sweat" ] } ], "cve": "CVE-2011-1478", "discovery_date": "2011-02-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "691270" } ], "notes": [ { "category": "description", "text": "The napi_reuse_skb function in net/core/dev.c in the Generic Receive Offload (GRO) implementation in the Linux kernel before 2.6.38 does not reset the values of certain structure members, which might allow remote attackers to cause a denial of service (NULL pointer dereference) via a malformed VLAN frame.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: gro: reset dev and skb_iff on skb reuse", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not support Generic Receive Offload (GRO). It has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0429.html, https://rhn.redhat.com/errata/RHSA-2011-0421.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1478" }, { "category": "external", "summary": "RHBZ#691270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=691270" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1478", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1478" } ], "release_date": "2011-02-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: gro: reset dev and skb_iff on skb reuse" }, { "cve": "CVE-2011-1479", "discovery_date": "2011-03-29T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "691793" } ], "notes": [ { "category": "description", "text": "Double free vulnerability in the inotify subsystem in the Linux kernel before 2.6.39 allows local users to cause a denial of service (system crash) via vectors involving failed attempts to create files. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-4250.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: DoS (crash) due slab corruption in inotify_init1 (incomplete fix for CVE-2010-4250)", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 and 5. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0498.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1479" }, { "category": "external", "summary": "RHBZ#691793", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=691793" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1479", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1479" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1479", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1479" } ], "release_date": "2011-04-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: DoS (crash) due slab corruption in inotify_init1 (incomplete fix for CVE-2010-4250)" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-1494", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-04-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "694021" } ], "notes": [ { "category": "description", "text": "Integer overflow in the _ctl_do_mpt_command function in drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and earlier might allow local users to gain privileges or cause a denial of service (memory corruption) via an ioctl call specifying a crafted value that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: drivers/scsi/mpt2sas: prevent heap overflows", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for MPT (Message Passing\nTechnology) based controllers. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, and https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1494" }, { "category": "external", "summary": "RHBZ#694021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=694021" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1494", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1494" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1494", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1494" } ], "release_date": "2011-04-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: drivers/scsi/mpt2sas: prevent heap overflows" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-1495", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-04-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "694021" } ], "notes": [ { "category": "description", "text": "drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and earlier does not validate (1) length and (2) offset values before performing memory copy operations, which might allow local users to gain privileges, cause a denial of service (memory corruption), or obtain sensitive information from kernel memory via a crafted ioctl call, related to the _ctl_do_mpt_command and _ctl_diag_read_buffer functions.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: drivers/scsi/mpt2sas: prevent heap overflows", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for MPT (Message Passing\nTechnology) based controllers. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, and https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1495" }, { "category": "external", "summary": "RHBZ#694021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=694021" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1495", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1495" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1495", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1495" } ], "release_date": "2011-04-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: drivers/scsi/mpt2sas: prevent heap overflows" }, { "acknowledgments": [ { "names": [ "Ryan Sweat" ] } ], "cve": "CVE-2011-1576", "cwe": { "id": "CWE-401", "name": "Missing Release of Memory after Effective Lifetime" }, "discovery_date": "2011-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "695173" } ], "notes": [ { "category": "description", "text": "The Generic Receive Offload (GRO) implementation in the Linux kernel 2.6.18 on Red Hat Enterprise Linux 5 and 2.6.32 on Red Hat Enterprise Linux 6, as used in Red Hat Enterprise Virtualization (RHEV) Hypervisor and other products, allows remote attackers to cause a denial of service via crafted VLAN packets that are processed by the napi_reuse_skb function, leading to (1) a memory leak or (2) memory corruption, a different vulnerability than CVE-2011-1478.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: net: Fix memory leak/corruption on VLAN GRO_DROP", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not support Generic Receive Offload (GRO). This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1576" }, { "category": "external", "summary": "RHBZ#695173", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695173" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1576", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1576" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1576", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1576" } ], "release_date": "2011-06-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: net: Fix memory leak/corruption on VLAN GRO_DROP" }, { "acknowledgments": [ { "names": [ "Timo Warns" ] } ], "cve": "CVE-2011-1577", "discovery_date": "2011-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "695976" } ], "notes": [ { "category": "description", "text": "Heap-based buffer overflow in the is_gpt_valid function in fs/partitions/efi.c in the Linux kernel 2.6.38 and earlier allows physically proximate attackers to cause a denial of service (OOPS) or possibly have unspecified other impact via a crafted size of the EFI GUID partition-table header on removable media.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: corrupted GUID partition tables can cause kernel oops", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1577" }, { "category": "external", "summary": "RHBZ#695976", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695976" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1577", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1577" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1577", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1577" } ], "release_date": "2011-04-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: corrupted GUID partition tables can cause kernel oops" }, { "cve": "CVE-2011-1585", "discovery_date": "2011-04-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "697394" } ], "notes": [ { "category": "description", "text": "The cifs_find_smb_ses function in fs/cifs/connect.c in the Linux kernel before 2.6.36 does not properly determine the associations between users and sessions, which allows local users to bypass CIFS share authentication by leveraging a mount of a share by a different user.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: cifs session reuse", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped in Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG as they did not ship mount.cifs with root setuid set. However, as a preventive meaasure, we have addressed this in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1585" }, { "category": "external", "summary": "RHBZ#697394", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697394" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1585", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1585" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1585", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1585" } ], "release_date": "2010-08-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: cifs session reuse" }, { "acknowledgments": [ { "names": [ "Robert Swiecki" ] } ], "cve": "CVE-2011-1593", "discovery_date": "2011-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "697822" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in the next_pidmap function in kernel/pid.c in the Linux kernel before 2.6.38.4 allow local users to cause a denial of service (system crash) via a crafted (1) getdents or (2) readdir system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: proc: signedness issue in next_pidmap()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1593" }, { "category": "external", "summary": "RHBZ#697822", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697822" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1593", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1593" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1593", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1593" } ], "release_date": "2011-04-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: proc: signedness issue in next_pidmap()" }, { "acknowledgments": [ { "names": [ "Oliver Hartkopp" ] } ], "cve": "CVE-2011-1598", "discovery_date": "2011-04-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698057" } ], "notes": [ { "category": "description", "text": "The bcm_release function in net/can/bcm.c in the Linux kernel before 2.6.39-rc6 does not properly validate a socket data structure, which allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted release operation.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: missing check in can/bcm and can/raw socket releases", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1598" }, { "category": "external", "summary": "RHBZ#698057", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698057" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1598", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1598" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1598", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1598" } ], "release_date": "2011-04-20T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: missing check in can/bcm and can/raw socket releases" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1745", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698996" } ], "notes": [ { "category": "description", "text": "Integer overflow in the agp_generic_insert_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_BIND agp_ioctl ioctl call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1745" }, { "category": "external", "summary": "RHBZ#698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1745", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1745" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1745", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1745" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1746", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698998" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in the (1) agp_allocate_memory and (2) agp_create_user_memory functions in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allow local users to trigger buffer overflows, and consequently cause a denial of service (system crash) or possibly have unspecified other impact, via vectors related to calls that specify a large number of memory pages.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient page_count parameter checking in agp_allocate_memory()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat Enterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1746" }, { "category": "external", "summary": "RHBZ#698998", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698998" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1746", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1746" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1746", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1746" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient page_count parameter checking in agp_allocate_memory()" }, { "acknowledgments": [ { "names": [ "Oliver Hartkopp" ] } ], "cve": "CVE-2011-1748", "discovery_date": "2011-04-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698057" } ], "notes": [ { "category": "description", "text": "The raw_release function in net/can/raw.c in the Linux kernel before 2.6.39-rc6 does not properly validate a socket data structure, which allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted release operation.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: missing check in can/bcm and can/raw socket releases", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1748" }, { "category": "external", "summary": "RHBZ#698057", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698057" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1748", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1748" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1748", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1748" } ], "release_date": "2011-04-20T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: missing check in can/bcm and can/raw socket releases" }, { "cve": "CVE-2011-1767", "discovery_date": "2011-05-05T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "702303" } ], "notes": [ { "category": "description", "text": "net/ipv4/ip_gre.c in the Linux kernel before 2.6.34, when ip_gre is configured as a module, allows remote attackers to cause a denial of service (OOPS) by sending a packet during module loading.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: netns vs proto registration ordering", "title": "Vulnerability summary" }, { "category": "other", "text": "The Linux kernel as shipped with Red Hat Enterprise Linux 4, and 5 did not provide support for Network Namespace, and therefore are not affected by this issue. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0928.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1767" }, { "category": "external", "summary": "RHBZ#702303", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=702303" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1767", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1767" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1767", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1767" } ], "release_date": "2010-02-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.4, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: netns vs proto registration ordering" }, { "cve": "CVE-2011-1768", "discovery_date": "2011-05-05T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "702303" } ], "notes": [ { "category": "description", "text": "The tunnels implementation in the Linux kernel before 2.6.34, when tunnel functionality is configured as a module, allows remote attackers to cause a denial of service (OOPS) by sending a packet during module loading.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: netns vs proto registration ordering", "title": "Vulnerability summary" }, { "category": "other", "text": "The Linux kernel as shipped with Red Hat Enterprise Linux 4, and 5 did not provide support for Network Namespace, and therefore are not affected by this issue. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0928.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1768" }, { "category": "external", "summary": "RHBZ#702303", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=702303" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1768", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1768" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1768", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1768" } ], "release_date": "2010-02-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.4, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: netns vs proto registration ordering" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-1770", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "703011" } ], "notes": [ { "category": "description", "text": "Integer underflow in the dccp_parse_options function (net/dccp/options.c) in the Linux kernel before 2.6.33.14 allows remote attackers to cause a denial of service via a Datagram Congestion Control Protocol (DCCP) packet with an invalid feature options length, which triggers a buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: dccp: handle invalid feature options length", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue does not affect Red Hat Enterprise Linux 4 and 5: Red Hat Enterprise Linux 4 does not provide support for the Datagram Congestion Control Protocol (DCCP), and Red Hat Enterprise Linux 5, which does support DCCP, did not backport the upstream commit that introduced this issue, e77b8363b. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0836.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1770" }, { "category": "external", "summary": "RHBZ#703011", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703011" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1770", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1770" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1770", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1770" } ], "release_date": "2011-05-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: dccp: handle invalid feature options length" }, { "acknowledgments": [ { "names": [ "Timo Warns" ] } ], "cve": "CVE-2011-1776", "discovery_date": "2011-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "703026" } ], "notes": [ { "category": "description", "text": "The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate attackers to cause a denial of service (heap-based buffer overflow and OOPS) or obtain sensitive information from kernel heap memory by connecting a crafted GPT storage device, a different vulnerability than CVE-2011-1577.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: validate size of EFI GUID partition entries", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1776" }, { "category": "external", "summary": "RHBZ#703026", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703026" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1776", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1776" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1776", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1776" } ], "release_date": "2011-05-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: validate size of EFI GUID partition entries" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2022", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698996" } ], "notes": [ { "category": "description", "text": "The agp_generic_remove_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 does not validate a certain start parameter, which allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_UNBIND agp_ioctl ioctl call, a different vulnerability than CVE-2011-1745.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2022" }, { "category": "external", "summary": "RHBZ#698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2022", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2022" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2022", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2022" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls" }, { "acknowledgments": [ { "names": [ "Andrea Righi" ] } ], "cve": "CVE-2011-2183", "discovery_date": "2011-06-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "710338" } ], "notes": [ { "category": "description", "text": "Race condition in the scan_get_next_rmap_item function in mm/ksm.c in the Linux kernel before 2.6.39.3, when Kernel SamePage Merging (KSM) is enabled, allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ksm: race between ksmd and exiting task", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, and Red Hat Enterprise MRG do not provide support for KSM (Kernel Samepage Merging). This has been addressed in Red Hat Enterprise Linux 6 via https://rhn.redhat.com/errata/RHSA-2011-1189.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2183" }, { "category": "external", "summary": "RHBZ#710338", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=710338" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2183", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2183" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2183", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2183" } ], "release_date": "2011-06-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ksm: race between ksmd and exiting task" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-2213", "discovery_date": "2011-06-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "714536" } ], "notes": [ { "category": "description", "text": "The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message, as demonstrated by an INET_DIAG_BC_JMP instruction with a zero yes value, a different vulnerability than CVE-2010-3880.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: inet_diag: insufficient validation", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4,\n5, 6, and Red Hat Enterprise MRG. Red Hat Enterprise Linux 4 is now in\nProduction 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2213" }, { "category": "external", "summary": "RHBZ#714536", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714536" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2213", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2213" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2213", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2213" } ], "release_date": "2011-06-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: inet_diag: insufficient validation" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2484", "discovery_date": "2011-06-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "715436" } ], "notes": [ { "category": "description", "text": "The add_del_listener function in kernel/taskstats.c in the Linux kernel 2.6.39.1 and earlier does not prevent multiple registrations of exit handlers, which allows local users to cause a denial of service (memory and CPU consumption), and bypass the OOM Killer, via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: taskstats: duplicate entries in listener mode can lead to DoS", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for the Taskstats interface. This was fixed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2484" }, { "category": "external", "summary": "RHBZ#715436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715436" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2484", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2484" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2484", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2484" } ], "release_date": "2011-06-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: taskstats: duplicate entries in listener mode can lead to DoS" }, { "acknowledgments": [ { "names": [ "Vasily Averin" ] } ], "cve": "CVE-2011-2491", "discovery_date": "2011-06-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "709393" } ], "notes": [ { "category": "description", "text": "The Network Lock Manager (NLM) protocol implementation in the NFS client functionality in the Linux kernel before 3.0 allows local users to cause a denial of service (system hang) via a LOCK_UN flock system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: rpc task leak after flock()ing NFS share", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2491" }, { "category": "external", "summary": "RHBZ#709393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=709393" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2491", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2491" } ], "release_date": "2011-05-31T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: rpc task leak after flock()ing NFS share" }, { "acknowledgments": [ { "names": [ "Marek Kroemeke", "Filip Palian" ] } ], "cve": "CVE-2011-2492", "discovery_date": "2011-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "703019" } ], "notes": [ { "category": "description", "text": "The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel memory via a crafted getsockopt system call, related to (1) the l2cap_sock_getsockopt_old function in net/bluetooth/l2cap_sock.c and (2) the rfcomm_sock_getsockopt_old function in net/bluetooth/rfcomm/sock.c.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2492" }, { "category": "external", "summary": "RHBZ#703019", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703019" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2492", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2492" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2492", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2492" } ], "release_date": "2011-05-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2495", "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716825" } ], "notes": [ { "category": "description", "text": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: /proc/PID/io infoleak", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1212.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2495" }, { "category": "external", "summary": "RHBZ#716825", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2495", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2495" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495" } ], "release_date": "2011-06-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: /proc/PID/io infoleak" }, { "acknowledgments": [ { "names": [ "Robert Swiecki" ] } ], "cve": "CVE-2011-2496", "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716538" } ], "notes": [ { "category": "description", "text": "Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2496" }, { "category": "external", "summary": "RHBZ#716538", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2496", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2496" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2496", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2496" } ], "release_date": "2011-04-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-2497", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-06-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716805" } ], "notes": [ { "category": "description", "text": "Integer underflow in the l2cap_config_req function in net/bluetooth/l2cap_core.c in the Linux kernel before 3.0 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a small command-size value within the command header of a Logical Link Control and Adaptation Protocol (L2CAP) configuration request, leading to a buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: bluetooth: buffer overflow in l2cap config request", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 and 5 as they did not backport the upstream commit 5dee9e7c that introduced this issue. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2497" }, { "category": "external", "summary": "RHBZ#716805", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716805" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2497", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2497" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2497", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2497" } ], "release_date": "2011-06-24T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 8.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: bluetooth: buffer overflow in l2cap config request" }, { "cve": "CVE-2011-2517", "discovery_date": "2011-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "718152" } ], "notes": [ { "category": "description", "text": "Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAP_NET_ADMIN capability during scan operations with a long SSID value.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nl80211: missing check for valid SSID size in scan operations", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for the Linux wireless LAN (802.11) configuration API. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1212.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2517" }, { "category": "external", "summary": "RHBZ#718152", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718152" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2517", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2517" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2517", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2517" } ], "release_date": "2011-05-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: nl80211: missing check for valid SSID size in scan operations" }, { "cve": "CVE-2011-2695", "discovery_date": "2011-07-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "722557" } ], "notes": [ { "category": "description", "text": "Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local users to cause a denial of service (BUG_ON and system crash) by accessing a sparse file in extent format with a write operation involving a block number corresponding to the largest possible 32-bit unsigned integer.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ext4: kernel panic when writing data to the last block of sparse file", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not include support for EXT4 filesystem.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2695" }, { "category": "external", "summary": "RHBZ#722557", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722557" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2695", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2695" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2695", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2695" } ], "release_date": "2011-06-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ext4: kernel panic when writing data to the last block of sparse file" } ] }
ghsa-qfq8-33vr-83jg
Vulnerability from github
fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user's password.
{ "affected": [], "aliases": [ "CVE-2011-2495" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2012-06-13T10:24:00Z", "severity": "LOW" }, "details": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password.", "id": "GHSA-qfq8-33vr-83jg", "modified": "2022-05-17T04:55:49Z", "published": "2022-05-17T04:55:49Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495" }, { "type": "WEB", "url": "https://github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "type": "WEB", "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d1221f375c94ef961ba8574ac4f85c8870ddd51" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1d1221f375c94ef961ba8574ac4f85c8870ddd51" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2011-1212.html" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2011/06/27/1" } ], "schema_version": "1.4.0", "severity": [] }
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.