Action not permitted
Modal body text goes here.
cve-2011-2496
Vulnerability from cvelistv5
Published
2012-06-13 10:00
Modified
2024-08-06 23:00
Severity ?
EPSS score ?
Summary
Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T23:00:34.021Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://github.com/torvalds/linux/commit/982134ba62618c2d69fbbbd166d0a11ee3b7e3d8" }, { "name": "[oss-security] 20110627 Re: CVE request: kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2011/06/27/2" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=982134ba62618c2d69fbbbd166d0a11ee3b7e3d8" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "descriptions": [ { "lang": "en", "value": "Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2012-06-13T10:00:00Z", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://github.com/torvalds/linux/commit/982134ba62618c2d69fbbbd166d0a11ee3b7e3d8" }, { "name": "[oss-security] 20110627 Re: CVE request: kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2011/06/27/2" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=982134ba62618c2d69fbbbd166d0a11ee3b7e3d8" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39" } ] } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2011-2496", "datePublished": "2012-06-13T10:00:00Z", "dateReserved": "2011-06-15T00:00:00Z", "dateUpdated": "2024-08-06T23:00:34.021Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2011-2496\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2012-06-13T10:24:55.873\",\"lastModified\":\"2024-11-21T01:28:24.220\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de entero en la funci\u00f3n vma_to_resize de mm/mremap.c del kernel de Linux en versiones anteriores a la 2.6.39. Permite a usuarios locales provocar una denegaci\u00f3n de servicio (BUG_ON y ca\u00edda del sistema) a trav\u00e9s de una llamada del sistema mremap modificada que expande el mapeo de memoria (\\\"memory mapping\\\").\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":4.9,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-189\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.6.38.8\",\"matchCriteriaId\":\"57A0A2B0-3B9F-40C2-8C7A-CD9590B51315\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7462DB6D-E0A6-4DBB-8E21-66B875184FFC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DDCB342-4F5F-4BF1-9624-882BBC57330D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3AB4113-BF83-4587-8A85-0E4FECEE7D9B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B57F5AD-A697-4090-89B9-81BC12993A1A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA141BCB-A705-4DF5-9EED-746B62C86111\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9ECE134-58A3-4B9D-B9B3-F836C0EDD64C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"56186720-6B4C-4D71-85C5-7EAC5C5D84A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BBB4630-CBED-43B9-B203-BE65BBF011AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD375A78-63D7-441A-9FB0-7BC878AB4EDD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5BEFFDD-02BB-4A05-8372-891DBDB9AC5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"766E193D-819C-42EA-8411-AE0013AC15FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3B39B6AF-6A83-48C2-BED2-79228F8513A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD8A68D1-DFE9-4ADB-9FB8-4D69AB4CAFF8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D6EF951-AF15-4C30-A3A5-3392AA61813C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"15154FA0-65DC-4855-AC70-3ACF92313F49\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.38.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4B3A9F4-A61F-4919-A173-3E459F0C5AF8\"}]}]}],\"references\":[{\"url\":\"http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=982134ba62618c2d69fbbbd166d0a11ee3b7e3d8\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2011/06/27/2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=716538\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://github.com/torvalds/linux/commit/982134ba62618c2d69fbbbd166d0a11ee3b7e3d8\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Patch\"]},{\"url\":\"http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=982134ba62618c2d69fbbbd166d0a11ee3b7e3d8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2011/06/27/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=716538\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/torvalds/linux/commit/982134ba62618c2d69fbbbd166d0a11ee3b7e3d8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\"]}]}}" } }
ghsa-ccg6-h5cr-mf8v
Vulnerability from github
Published
2022-05-17 05:28
Modified
2022-05-17 05:28
Details
Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.
{ "affected": [], "aliases": [ "CVE-2011-2496" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2012-06-13T10:24:00Z", "severity": "MODERATE" }, "details": "Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.", "id": "GHSA-ccg6-h5cr-mf8v", "modified": "2022-05-17T05:28:04Z", "published": "2022-05-17T05:28:04Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2496" }, { "type": "WEB", "url": "https://github.com/torvalds/linux/commit/982134ba62618c2d69fbbbd166d0a11ee3b7e3d8" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "type": "WEB", "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=982134ba62618c2d69fbbbd166d0a11ee3b7e3d8" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=982134ba62618c2d69fbbbd166d0a11ee3b7e3d8" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2011/06/27/2" } ], "schema_version": "1.4.0", "severity": [] }
rhsa-2011_1386
Vulnerability from csaf_redhat
Published
2011-10-20 17:20
Modified
2024-11-22 05:00
Summary
Red Hat Security Advisory: kernel security, bug fix, and enhancement update
Notes
Topic
Updated kernel packages that fix multiple security issues, several bugs,
and add one enhancement are now available for Red Hat Enterprise Linux 5.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
Security fixes:
* The maximum file offset handling for ext4 file systems could allow a
local, unprivileged user to cause a denial of service. (CVE-2011-2695,
Important)
* IPv6 fragment identification value generation could allow a remote
attacker to disrupt a target system's networking, preventing legitimate
users from accessing its services. (CVE-2011-2699, Important)
* A malicious CIFS (Common Internet File System) server could send a
specially-crafted response to a directory read request that would result in
a denial of service or privilege escalation on a system that has a CIFS
share mounted. (CVE-2011-3191, Important)
* A local attacker could use mount.ecryptfs_private to mount (and then
access) a directory they would otherwise not have access to. Note: To
correct this issue, the RHSA-2011:1241 ecryptfs-utils update must also be
installed. (CVE-2011-1833, Moderate)
* A flaw in the taskstats subsystem could allow a local, unprivileged user
to cause excessive CPU time and memory use. (CVE-2011-2484, Moderate)
* Mapping expansion handling could allow a local, unprivileged user to
cause a denial of service. (CVE-2011-2496, Moderate)
* GRO (Generic Receive Offload) fields could be left in an inconsistent
state. An attacker on the local network could use this flaw to cause a
denial of service. GRO is enabled by default in all network drivers that
support it. (CVE-2011-2723, Moderate)
* RHSA-2011:1065 introduced a regression in the Ethernet bridge
implementation. If a system had an interface in a bridge, and an attacker
on the local network could send packets to that interface, they could cause
a denial of service on that system. Xen hypervisor and KVM (Kernel-based
Virtual Machine) hosts often deploy bridge interfaces. (CVE-2011-2942,
Moderate)
* A flaw in the Xen hypervisor IOMMU error handling implementation could
allow a privileged guest user, within a guest operating system that has
direct control of a PCI device, to cause performance degradation on the
host and possibly cause it to hang. (CVE-2011-3131, Moderate)
* IPv4 and IPv6 protocol sequence number and fragment ID generation could
allow a man-in-the-middle attacker to inject packets and possibly hijack
connections. Protocol sequence number and fragment IDs are now more random.
(CVE-2011-3188, Moderate)
* A flaw in the kernel's clock implementation could allow a local,
unprivileged user to cause a denial of service. (CVE-2011-3209, Moderate)
* Non-member VLAN (virtual LAN) packet handling for interfaces in
promiscuous mode and also using the be2net driver could allow an attacker
on the local network to cause a denial of service. (CVE-2011-3347,
Moderate)
* A flaw in the auerswald USB driver could allow a local, unprivileged user
to cause a denial of service or escalate their privileges by inserting a
specially-crafted USB device. (CVE-2009-4067, Low)
* A flaw in the Trusted Platform Module (TPM) implementation could allow a
local, unprivileged user to leak information to user space. (CVE-2011-1160,
Low)
* A local, unprivileged user could possibly mount a CIFS share that
requires authentication without knowing the correct password if the mount
was already mounted by another local user. (CVE-2011-1585, Low)
Red Hat would like to thank Fernando Gont for reporting CVE-2011-2699;
Darren Lavender for reporting CVE-2011-3191; the Ubuntu Security Team for
reporting CVE-2011-1833; Vasiliy Kulikov of Openwall for reporting
CVE-2011-2484; Robert Swiecki for reporting CVE-2011-2496; Brent Meshier
for reporting CVE-2011-2723; Dan Kaminsky for reporting CVE-2011-3188;
Yasuaki Ishimatsu for reporting CVE-2011-3209; Somnath Kotur for reporting
CVE-2011-3347; Rafael Dominguez Vega for reporting CVE-2009-4067; and Peter
Huewe for reporting CVE-2011-1160. The Ubuntu Security Team acknowledges
Vasiliy Kulikov of Openwall and Dan Rosenberg as the original reporters of
CVE-2011-1833.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix multiple security issues, several bugs,\nand add one enhancement are now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nSecurity fixes:\n\n* The maximum file offset handling for ext4 file systems could allow a\nlocal, unprivileged user to cause a denial of service. (CVE-2011-2695,\nImportant)\n\n* IPv6 fragment identification value generation could allow a remote\nattacker to disrupt a target system\u0027s networking, preventing legitimate\nusers from accessing its services. (CVE-2011-2699, Important)\n\n* A malicious CIFS (Common Internet File System) server could send a\nspecially-crafted response to a directory read request that would result in\na denial of service or privilege escalation on a system that has a CIFS\nshare mounted. (CVE-2011-3191, Important)\n\n* A local attacker could use mount.ecryptfs_private to mount (and then\naccess) a directory they would otherwise not have access to. Note: To\ncorrect this issue, the RHSA-2011:1241 ecryptfs-utils update must also be\ninstalled. (CVE-2011-1833, Moderate)\n\n* A flaw in the taskstats subsystem could allow a local, unprivileged user\nto cause excessive CPU time and memory use. (CVE-2011-2484, Moderate)\n\n* Mapping expansion handling could allow a local, unprivileged user to\ncause a denial of service. (CVE-2011-2496, Moderate)\n\n* GRO (Generic Receive Offload) fields could be left in an inconsistent\nstate. An attacker on the local network could use this flaw to cause a\ndenial of service. GRO is enabled by default in all network drivers that\nsupport it. (CVE-2011-2723, Moderate)\n\n* RHSA-2011:1065 introduced a regression in the Ethernet bridge\nimplementation. If a system had an interface in a bridge, and an attacker\non the local network could send packets to that interface, they could cause\na denial of service on that system. Xen hypervisor and KVM (Kernel-based\nVirtual Machine) hosts often deploy bridge interfaces. (CVE-2011-2942,\nModerate)\n\n* A flaw in the Xen hypervisor IOMMU error handling implementation could\nallow a privileged guest user, within a guest operating system that has\ndirect control of a PCI device, to cause performance degradation on the\nhost and possibly cause it to hang. (CVE-2011-3131, Moderate)\n\n* IPv4 and IPv6 protocol sequence number and fragment ID generation could\nallow a man-in-the-middle attacker to inject packets and possibly hijack\nconnections. Protocol sequence number and fragment IDs are now more random.\n(CVE-2011-3188, Moderate)\n\n* A flaw in the kernel\u0027s clock implementation could allow a local,\nunprivileged user to cause a denial of service. (CVE-2011-3209, Moderate)\n\n* Non-member VLAN (virtual LAN) packet handling for interfaces in\npromiscuous mode and also using the be2net driver could allow an attacker\non the local network to cause a denial of service. (CVE-2011-3347,\nModerate)\n\n* A flaw in the auerswald USB driver could allow a local, unprivileged user\nto cause a denial of service or escalate their privileges by inserting a\nspecially-crafted USB device. (CVE-2009-4067, Low)\n\n* A flaw in the Trusted Platform Module (TPM) implementation could allow a\nlocal, unprivileged user to leak information to user space. (CVE-2011-1160,\nLow)\n\n* A local, unprivileged user could possibly mount a CIFS share that\nrequires authentication without knowing the correct password if the mount\nwas already mounted by another local user. (CVE-2011-1585, Low)\n\nRed Hat would like to thank Fernando Gont for reporting CVE-2011-2699;\nDarren Lavender for reporting CVE-2011-3191; the Ubuntu Security Team for\nreporting CVE-2011-1833; Vasiliy Kulikov of Openwall for reporting\nCVE-2011-2484; Robert Swiecki for reporting CVE-2011-2496; Brent Meshier\nfor reporting CVE-2011-2723; Dan Kaminsky for reporting CVE-2011-3188;\nYasuaki Ishimatsu for reporting CVE-2011-3209; Somnath Kotur for reporting\nCVE-2011-3347; Rafael Dominguez Vega for reporting CVE-2009-4067; and Peter\nHuewe for reporting CVE-2011-1160. The Ubuntu Security Team acknowledges\nVasiliy Kulikov of Openwall and Dan Rosenberg as the original reporters of\nCVE-2011-1833.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:1386", "url": "https://access.redhat.com/errata/RHSA-2011:1386" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/5.7_Technical_Notes/kernel.html#RHSA-2011-1386", "url": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/5.7_Technical_Notes/kernel.html#RHSA-2011-1386" }, { "category": "external", "summary": "https://rhn.redhat.com/errata/RHSA-2011-1241.html", "url": "https://rhn.redhat.com/errata/RHSA-2011-1241.html" }, { "category": "external", "summary": "https://rhn.redhat.com/errata/RHSA-2011-1065.html", "url": "https://rhn.redhat.com/errata/RHSA-2011-1065.html" }, { "category": "external", "summary": "684671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=684671" }, { "category": "external", "summary": "697394", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697394" }, { "category": "external", "summary": "715436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715436" }, { "category": "external", "summary": "716538", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "category": "external", "summary": "722393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722393" }, { "category": "external", "summary": "722557", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722557" }, { "category": "external", "summary": "723429", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=723429" }, { "category": "external", "summary": "726552", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552" }, { "category": "external", "summary": "728518", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728518" }, { "category": "external", "summary": "730341", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730341" }, { "category": "external", "summary": "730682", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730682" }, { "category": "external", "summary": "730686", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730686" }, { "category": "external", "summary": "730917", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730917" }, { "category": "external", "summary": "731172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=731172" }, { "category": "external", "summary": "732658", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732658" }, { "category": "external", "summary": "732869", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732869" }, { "category": "external", "summary": "732878", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732878" }, { "category": "external", "summary": "733665", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=733665" }, { "category": "external", "summary": "736425", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=736425" }, { "category": "external", "summary": "738389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738389" }, { "category": "external", "summary": "738392", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738392" }, { "category": "external", "summary": "739823", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=739823" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1386.json" } ], "title": "Red Hat Security Advisory: kernel security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-22T05:00:08+00:00", "generator": { "date": "2024-11-22T05:00:08+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2011:1386", "initial_release_date": "2011-10-20T17:20:00+00:00", "revision_history": [ { "date": "2011-10-20T17:20:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-10-20T13:28:15+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T05:00:08+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-debug-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-274.7.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-274.7.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-274.7.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-274.7.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-devel-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-274.7.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-274.7.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-274.7.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-274.7.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-xen-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-xen-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-274.7.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-274.7.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-274.7.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-PAE-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-PAE-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-274.7.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "product_id": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-274.7.1.el5?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-274.7.1.el5.i386", "product": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.i386", "product_id": "kernel-headers-0:2.6.18-274.7.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-274.7.1.el5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "product": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "product_id": "kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-274.7.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-274.7.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "product": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "product_id": "kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-274.7.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "product_id": "kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-274.7.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "product": { "name": "kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "product_id": "kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-274.7.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "product_id": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-274.7.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "product": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "product_id": "kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-274.7.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "product": { "name": "kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "product_id": "kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-274.7.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "product_id": "kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-274.7.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-274.7.1.el5.x86_64", "product": { "name": "kernel-0:2.6.18-274.7.1.el5.x86_64", "product_id": "kernel-0:2.6.18-274.7.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-274.7.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "product_id": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-274.7.1.el5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.18-274.7.1.el5.src", "product": { "name": "kernel-0:2.6.18-274.7.1.el5.src", "product_id": "kernel-0:2.6.18-274.7.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-274.7.1.el5?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "kernel-doc-0:2.6.18-274.7.1.el5.noarch", "product": { "name": "kernel-doc-0:2.6.18-274.7.1.el5.noarch", "product_id": "kernel-doc-0:2.6.18-274.7.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.18-274.7.1.el5?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-274.7.1.el5.ia64", "product": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.ia64", "product_id": "kernel-debug-0:2.6.18-274.7.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-274.7.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "product_id": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-274.7.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-274.7.1.el5.ia64", "product": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.ia64", "product_id": "kernel-devel-0:2.6.18-274.7.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-274.7.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "product": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "product_id": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-274.7.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "product": { "name": "kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "product_id": "kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-274.7.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "product_id": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-274.7.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-274.7.1.el5.ia64", "product": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.ia64", "product_id": "kernel-headers-0:2.6.18-274.7.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-274.7.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-274.7.1.el5.ia64", "product": { "name": "kernel-xen-0:2.6.18-274.7.1.el5.ia64", "product_id": "kernel-xen-0:2.6.18-274.7.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-274.7.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "product": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "product_id": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-274.7.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-274.7.1.el5.ia64", "product": { "name": "kernel-0:2.6.18-274.7.1.el5.ia64", "product_id": "kernel-0:2.6.18-274.7.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-274.7.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "product_id": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-274.7.1.el5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "product": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "product_id": "kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-274.7.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "product_id": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-274.7.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-274.7.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "product": { "name": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "product_id": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-274.7.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "product": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "product_id": "kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-274.7.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "product_id": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-274.7.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "product_id": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-274.7.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "product": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "product_id": "kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-274.7.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "product_id": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-274.7.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-274.7.1.el5.ppc64", "product": { "name": "kernel-0:2.6.18-274.7.1.el5.ppc64", "product_id": "kernel-0:2.6.18-274.7.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-274.7.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "product": { "name": "kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "product_id": "kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-274.7.1.el5?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-274.7.1.el5.ppc", "product": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.ppc", "product_id": "kernel-headers-0:2.6.18-274.7.1.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-274.7.1.el5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-274.7.1.el5.s390x", "product": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.s390x", "product_id": "kernel-debug-0:2.6.18-274.7.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-274.7.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-274.7.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-274.7.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "product_id": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-274.7.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-274.7.1.el5.s390x", "product": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.s390x", "product_id": "kernel-devel-0:2.6.18-274.7.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-274.7.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "product": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "product_id": "kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-274.7.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "product": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "product_id": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-274.7.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-274.7.1.el5.s390x", "product": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.s390x", "product_id": "kernel-headers-0:2.6.18-274.7.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-274.7.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "product": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "product_id": "kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-274.7.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-274.7.1.el5.s390x", "product": { "name": "kernel-0:2.6.18-274.7.1.el5.s390x", "product_id": "kernel-0:2.6.18-274.7.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-274.7.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "product": { "name": "kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "product_id": "kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-274.7.1.el5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.7.1.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src" }, "product_reference": "kernel-0:2.6.18-274.7.1.el5.src", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-274.7.1.el5.noarch as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-274.7.1.el5.noarch", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-274.7.1.el5.i386", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-274.7.1.el5.ppc", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Client-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.7.1.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src" }, "product_reference": "kernel-0:2.6.18-274.7.1.el5.src", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-274.7.1.el5.noarch as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-274.7.1.el5.noarch", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-274.7.1.el5.i386", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-274.7.1.el5.ppc", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-274.7.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "relates_to_product_reference": "5Server-5.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "relates_to_product_reference": "5Server-5.7.Z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Rafael Dominguez Vega" ] } ], "cve": "CVE-2009-4067", "discovery_date": "2011-07-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "722393" } ], "notes": [ { "category": "description", "text": "Buffer overflow in the auerswald_probe function in the Auerswald Linux USB driver for the Linux kernel before 2.6.27 allows physically proximate attackers to execute arbitrary code, cause a denial of service via a crafted USB device, or take full control of the system.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: usb: buffer overflow in auerswald_probe()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the Linux kernel as shipped with Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG as the affected code has been removed. It was addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-1386.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4067" }, { "category": "external", "summary": "RHBZ#722393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722393" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4067", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4067" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4067", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4067" } ], "release_date": "2009-10-29T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: usb: buffer overflow in auerswald_probe()" }, { "acknowledgments": [ { "names": [ "Peter Huewe" ] } ], "cve": "CVE-2011-1160", "discovery_date": "2011-03-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "684671" } ], "notes": [ { "category": "description", "text": "The tpm_open function in drivers/char/tpm/tpm.c in the Linux kernel before 2.6.39 does not initialize a certain buffer, which allows local users to obtain potentially sensitive information from kernel memory via unspecified vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: tpm infoleaks", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1160" }, { "category": "external", "summary": "RHBZ#684671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=684671" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1160", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1160" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1160", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1160" } ], "release_date": "2011-03-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.2, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: tpm infoleaks" }, { "cve": "CVE-2011-1585", "discovery_date": "2011-04-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "697394" } ], "notes": [ { "category": "description", "text": "The cifs_find_smb_ses function in fs/cifs/connect.c in the Linux kernel before 2.6.36 does not properly determine the associations between users and sessions, which allows local users to bypass CIFS share authentication by leveraging a mount of a share by a different user.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: cifs session reuse", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped in Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG as they did not ship mount.cifs with root setuid set. However, as a preventive meaasure, we have addressed this in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1585" }, { "category": "external", "summary": "RHBZ#697394", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697394" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1585", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1585" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1585", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1585" } ], "release_date": "2010-08-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: cifs session reuse" }, { "acknowledgments": [ { "names": [ "Ubuntu Security Team" ] } ], "cve": "CVE-2011-1833", "cwe": { "id": "CWE-367", "name": "Time-of-check Time-of-use (TOCTOU) Race Condition" }, "discovery_date": "2011-08-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "731172" } ], "notes": [ { "category": "description", "text": "Race condition in the ecryptfs_mount function in fs/ecryptfs/main.c in the eCryptfs subsystem in the Linux kernel before 3.1 allows local users to bypass intended file permissions via a mount.ecryptfs_private mount with a mismatched uid.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ecryptfs: mount source TOCTOU race", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1833" }, { "category": "external", "summary": "RHBZ#731172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=731172" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1833", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1833" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1833", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1833" } ], "release_date": "2011-08-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ecryptfs: mount source TOCTOU race" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2484", "discovery_date": "2011-06-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "715436" } ], "notes": [ { "category": "description", "text": "The add_del_listener function in kernel/taskstats.c in the Linux kernel 2.6.39.1 and earlier does not prevent multiple registrations of exit handlers, which allows local users to cause a denial of service (memory and CPU consumption), and bypass the OOM Killer, via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: taskstats: duplicate entries in listener mode can lead to DoS", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for the Taskstats interface. This was fixed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2484" }, { "category": "external", "summary": "RHBZ#715436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715436" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2484", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2484" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2484", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2484" } ], "release_date": "2011-06-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: taskstats: duplicate entries in listener mode can lead to DoS" }, { "acknowledgments": [ { "names": [ "Robert Swiecki" ] } ], "cve": "CVE-2011-2496", "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716538" } ], "notes": [ { "category": "description", "text": "Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2496" }, { "category": "external", "summary": "RHBZ#716538", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2496", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2496" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2496", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2496" } ], "release_date": "2011-04-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions" }, { "cve": "CVE-2011-2695", "discovery_date": "2011-07-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "722557" } ], "notes": [ { "category": "description", "text": "Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local users to cause a denial of service (BUG_ON and system crash) by accessing a sparse file in extent format with a write operation involving a block number corresponding to the largest possible 32-bit unsigned integer.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ext4: kernel panic when writing data to the last block of sparse file", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not include support for EXT4 filesystem.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2695" }, { "category": "external", "summary": "RHBZ#722557", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722557" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2695", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2695" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2695", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2695" } ], "release_date": "2011-06-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ext4: kernel panic when writing data to the last block of sparse file" }, { "acknowledgments": [ { "names": [ "Fernando Gont" ] } ], "cve": "CVE-2011-2699", "discovery_date": "2011-07-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "723429" } ], "notes": [ { "category": "description", "text": "The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification values separately for each destination, which makes it easier for remote attackers to cause a denial of service (disrupted networking) by predicting these values and sending crafted packets.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ipv6: make fragment identifications less predictable", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the Linux kernel as shipped with Red Hat Enterprise MRG as it has backported the fix that addresses this issue. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This has been addressed in Red Hat Enterprise Linux 5 and 6 via https://rhn.redhat.com/errata/RHSA-2011-1386.html and https://rhn.redhat.com/errata/RHSA-2011-1465.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2699" }, { "category": "external", "summary": "RHBZ#723429", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=723429" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2699", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2699" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2699", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2699" } ], "release_date": "2011-07-20T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: ipv6: make fragment identifications less predictable" }, { "acknowledgments": [ { "names": [ "Brent Meshier" ] } ], "cve": "CVE-2011-2723", "discovery_date": "2011-07-29T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "726552" } ], "notes": [ { "category": "description", "text": "The skb_gro_header_slow function in include/linux/netdevice.h in the Linux kernel before 2.6.39.4, when Generic Receive Offload (GRO) is enabled, resets certain fields in incorrect situations, which allows remote attackers to cause a denial of service (system crash) via crafted network traffic.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: gro: only reset frag0 when skb can be pulled", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not backport the upstream commit a5b1cf28 that introduced this issue. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2723" }, { "category": "external", "summary": "RHBZ#726552", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2723", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2723" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2723", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2723" }, { "category": "external", "summary": "http://git.kernel.org/linus/17dd759c67f21e34f2156abcf415e1f60605a188", "url": "http://git.kernel.org/linus/17dd759c67f21e34f2156abcf415e1f60605a188" } ], "release_date": "2011-07-27T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: gro: only reset frag0 when skb can be pulled" }, { "cve": "CVE-2011-2942", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2011-08-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "730917" } ], "notes": [ { "category": "description", "text": "A certain Red Hat patch to the __br_deliver function in net/bridge/br_forward.c in the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5 allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by leveraging connectivity to a network interface that uses an Ethernet bridge device.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: bridge: null pointer dereference in __br_deliver", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the Linux kernel as shipped with Red Hat Enterprise Linux 4, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-1386.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2942" }, { "category": "external", "summary": "RHBZ#730917", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730917" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2942", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2942" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2942", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2942" } ], "release_date": "2011-10-20T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: bridge: null pointer dereference in __br_deliver" }, { "cve": "CVE-2011-3131", "discovery_date": "2011-08-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "730341" } ], "notes": [ { "category": "description", "text": "Xen 4.1.1 and earlier allows local guest OS kernels with control of a PCI[E] device to cause a denial of service (CPU consumption and host hang) via many crafted DMA requests that are denied by the IOMMU, which triggers a livelock.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: xen: IOMMU fault livelock", "title": "Vulnerability summary" }, { "category": "other", "text": "The versions of the Linux kernel as shipped with Red Hat Enterprise Linux 4, 6,\nand Red Hat Enterprise MRG are not affected. It has been addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-1386.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3131" }, { "category": "external", "summary": "RHBZ#730341", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730341" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3131", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3131" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3131", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3131" } ], "release_date": "2011-08-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 5.2, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:S/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: xen: IOMMU fault livelock" }, { "acknowledgments": [ { "names": [ "Dan Kaminsky" ] } ], "cve": "CVE-2011-3188", "discovery_date": "2011-08-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "732658" } ], "notes": [ { "category": "description", "text": "The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote attackers to cause a denial of service (disrupted networking) or hijack network sessions by predicting these values and sending crafted packets.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: net: improve sequence number generation", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3188" }, { "category": "external", "summary": "RHBZ#732658", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732658" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3188", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3188" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3188", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3188" } ], "release_date": "2011-08-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:P", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: net: improve sequence number generation" }, { "acknowledgments": [ { "names": [ "Darren Lavender" ] } ], "cve": "CVE-2011-3191", "discovery_date": "2011-08-24T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "732869" } ], "notes": [ { "category": "description", "text": "Integer signedness error in the CIFSFindNext function in fs/cifs/cifssmb.c in the Linux kernel before 3.1 allows remote CIFS servers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large length value in a response to a read request for a directory.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: cifs: signedness issue in CIFSFindNext()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3191" }, { "category": "external", "summary": "RHBZ#732869", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732869" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3191", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3191" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3191", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3191" } ], "release_date": "2011-08-23T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.8, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:A/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: cifs: signedness issue in CIFSFindNext()" }, { "acknowledgments": [ { "names": [ "Yasuaki Ishimatsu" ] } ], "cve": "CVE-2011-3209", "discovery_date": "2011-08-24T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "732878" } ], "notes": [ { "category": "description", "text": "The div_long_long_rem implementation in include/asm-x86/div64.h in the Linux kernel before 2.6.26 on the x86 platform allows local users to cause a denial of service (Divide Error Fault and panic) via a clock_gettime system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: panic occurs when clock_gettime() is called", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the Linux kernels as shipped with Red Hat Enterprise Linux 4, 6, and Red Hat Enterprise MRG, as they either do not have the sample_to_timespec() function, or have already backported upstream commit f8bd2258, which addresses this issue. It was addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-1386.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3209" }, { "category": "external", "summary": "RHBZ#732878", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732878" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3209", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3209" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3209", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3209" } ], "release_date": "2008-05-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: panic occurs when clock_gettime() is called" }, { "acknowledgments": [ { "names": [ "Somnath Kotur" ] } ], "cve": "CVE-2011-3347", "discovery_date": "2011-08-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "736425" } ], "notes": [ { "category": "description", "text": "A certain Red Hat patch to the be2net implementation in the kernel package before 2.6.32-218.el6 on Red Hat Enterprise Linux (RHEL) 6, when promiscuous mode is enabled, allows remote attackers to cause a denial of service (system crash) via non-member VLAN packets.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: be2net: promiscuous mode and non-member VLAN packets DoS", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-1386.html. This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not include support for ServerEngines\u0027 10Gbps network adapter - BladeEngine. This has been addressed in Red Hat Enterprise Linux 6 via https://rhn.redhat.com/errata/RHSA-2011-1530.html. A future kernel update in Red Hat Enterprise MRG may address this issue.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3347" }, { "category": "external", "summary": "RHBZ#736425", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=736425" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3347", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3347" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3347", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3347" } ], "release_date": "2011-10-20T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-20T17:20:00+00:00", "details": "This update also fixes several bugs and adds one enhancement.\nDocumentation for these changes will be available shortly from the\nTechnical Notes document linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancement noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1386" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.6, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:H/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Client-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Client-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Client-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.src", "5Server-5.7.Z:kernel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-PAE-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-PAE-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debug-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-debuginfo-common-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-devel-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-doc-0:2.6.18-274.7.1.el5.noarch", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.i386", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-headers-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-debuginfo-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.ppc64", "5Server-5.7.Z:kernel-kdump-devel-0:2.6.18-274.7.1.el5.s390x", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-debuginfo-0:2.6.18-274.7.1.el5.x86_64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.i686", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.ia64", "5Server-5.7.Z:kernel-xen-devel-0:2.6.18-274.7.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: be2net: promiscuous mode and non-member VLAN packets DoS" } ] }
rhsa-2011_1253
Vulnerability from csaf_redhat
Published
2011-09-12 19:40
Modified
2024-11-22 04:54
Summary
Red Hat Security Advisory: kernel-rt security and bug fix update
Notes
Topic
Updated kernel-rt packages that fix multiple security issues and various
bugs are now available for Red Hat Enterprise MRG 2.0.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
Security fixes:
* A flaw in the SCTP and DCCP implementations could allow a remote attacker
to cause a denial of service. (CVE-2010-4526, CVE-2011-1770, Important)
* Flaws in the Management Module Support for Message Passing Technology
(MPT) based controllers could allow a local, unprivileged user to cause a
denial of service, an information leak, or escalate their privileges.
(CVE-2011-1494, CVE-2011-1495, Important)
* Flaws in the AGPGART driver, and a flaw in agp_allocate_memory(), could
allow a local user to cause a denial of service or escalate their
privileges. (CVE-2011-1745, CVE-2011-2022, CVE-2011-1746, Important)
* A flaw in the client-side NLM implementation could allow a local,
unprivileged user to cause a denial of service. (CVE-2011-2491, Important)
* A flaw in the Bluetooth implementation could allow a remote attacker to
cause a denial of service or escalate their privileges. (CVE-2011-2497,
Important)
* Flaws in the netlink-based wireless configuration interface could allow a
local user, who has the CAP_NET_ADMIN capability, to cause a denial of
service or escalate their privileges on systems that have an active
wireless interface. (CVE-2011-2517, Important)
* The maximum file offset handling for ext4 file systems could allow a
local, unprivileged user to cause a denial of service. (CVE-2011-2695,
Important)
* A local, unprivileged user could allocate large amounts of memory not
visible to the OOM killer, causing a denial of service. (CVE-2010-4243,
Moderate)
* The proc file system could allow a local, unprivileged user to obtain
sensitive information or possibly cause integrity issues. (CVE-2011-1020,
Moderate)
* A local, privileged user could possibly write arbitrary kernel memory via
/sys/kernel/debug/acpi/custom_method. (CVE-2011-1021, Moderate)
* Inconsistency in the methods for allocating and freeing NFSv4 ACL data;
CVE-2010-4250 fix caused a regression; a flaw in next_pidmap() and
inet_diag_bc_audit(); flaws in the CAN implementation; a race condition in
the memory merging support; a flaw in the taskstats subsystem; and the way
mapping expansions were handled could allow a local, unprivileged user to
cause a denial of service. (CVE-2011-1090, CVE-2011-1479, CVE-2011-1593,
CVE-2011-2213, CVE-2011-1598, CVE-2011-1748, CVE-2011-2183, CVE-2011-2484,
CVE-2011-2496, Moderate)
* A flaw in GRO could result in a denial of service when a malformed VLAN
frame is received. (CVE-2011-1478, Moderate)
* napi_reuse_skb() could be called on VLAN packets allowing an attacker on
the local network to possibly trigger a denial of service. (CVE-2011-1576,
Moderate)
* A denial of service could occur if packets were received while the ipip
or ip_gre module was being loaded. (CVE-2011-1767, CVE-2011-1768, Moderate)
* Information leaks. (CVE-2011-1160, CVE-2011-2492, CVE-2011-2495, Low)
* Flaws in the EFI GUID Partition Table implementation could allow a local
attacker to cause a denial of service. (CVE-2011-1577, CVE-2011-1776, Low)
* While a user has a CIFS share mounted that required successful
authentication, a local, unprivileged user could mount that share without
knowing the correct password if mount.cifs was setuid root. (CVE-2011-1585,
Low)
Red Hat would like to thank Dan Rosenberg for reporting CVE-2011-1770,
CVE-2011-1494, CVE-2011-1495, CVE-2011-2497, and CVE-2011-2213; Vasiliy
Kulikov of Openwall for reporting CVE-2011-1745, CVE-2011-2022,
CVE-2011-1746, CVE-2011-2484, and CVE-2011-2495; Vasily Averin for
reporting CVE-2011-2491; Brad Spengler for reporting CVE-2010-4243; Kees
Cook for reporting CVE-2011-1020; Robert Swiecki for reporting
CVE-2011-1593 and CVE-2011-2496; Oliver Hartkopp for reporting
CVE-2011-1748; Andrea Righi for reporting CVE-2011-2183; Ryan Sweat for
reporting CVE-2011-1478 and CVE-2011-1576; Peter Huewe for reporting
CVE-2011-1160; Marek Kroemeke and Filip Palian for reporting CVE-2011-2492;
and Timo Warns for reporting CVE-2011-1577 and CVE-2011-1776.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel-rt packages that fix multiple security issues and various\nbugs are now available for Red Hat Enterprise MRG 2.0.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Security fixes:\n\n* A flaw in the SCTP and DCCP implementations could allow a remote attacker\nto cause a denial of service. (CVE-2010-4526, CVE-2011-1770, Important)\n\n* Flaws in the Management Module Support for Message Passing Technology\n(MPT) based controllers could allow a local, unprivileged user to cause a\ndenial of service, an information leak, or escalate their privileges.\n(CVE-2011-1494, CVE-2011-1495, Important)\n\n* Flaws in the AGPGART driver, and a flaw in agp_allocate_memory(), could\nallow a local user to cause a denial of service or escalate their\nprivileges. (CVE-2011-1745, CVE-2011-2022, CVE-2011-1746, Important)\n\n* A flaw in the client-side NLM implementation could allow a local,\nunprivileged user to cause a denial of service. (CVE-2011-2491, Important)\n\n* A flaw in the Bluetooth implementation could allow a remote attacker to\ncause a denial of service or escalate their privileges. (CVE-2011-2497,\nImportant)\n\n* Flaws in the netlink-based wireless configuration interface could allow a\nlocal user, who has the CAP_NET_ADMIN capability, to cause a denial of\nservice or escalate their privileges on systems that have an active\nwireless interface. (CVE-2011-2517, Important)\n\n* The maximum file offset handling for ext4 file systems could allow a\nlocal, unprivileged user to cause a denial of service. (CVE-2011-2695,\nImportant)\n\n* A local, unprivileged user could allocate large amounts of memory not\nvisible to the OOM killer, causing a denial of service. (CVE-2010-4243,\nModerate)\n\n* The proc file system could allow a local, unprivileged user to obtain\nsensitive information or possibly cause integrity issues. (CVE-2011-1020,\nModerate)\n\n* A local, privileged user could possibly write arbitrary kernel memory via\n/sys/kernel/debug/acpi/custom_method. (CVE-2011-1021, Moderate)\n\n* Inconsistency in the methods for allocating and freeing NFSv4 ACL data;\nCVE-2010-4250 fix caused a regression; a flaw in next_pidmap() and\ninet_diag_bc_audit(); flaws in the CAN implementation; a race condition in\nthe memory merging support; a flaw in the taskstats subsystem; and the way\nmapping expansions were handled could allow a local, unprivileged user to\ncause a denial of service. (CVE-2011-1090, CVE-2011-1479, CVE-2011-1593,\nCVE-2011-2213, CVE-2011-1598, CVE-2011-1748, CVE-2011-2183, CVE-2011-2484,\nCVE-2011-2496, Moderate)\n\n* A flaw in GRO could result in a denial of service when a malformed VLAN\nframe is received. (CVE-2011-1478, Moderate)\n\n* napi_reuse_skb() could be called on VLAN packets allowing an attacker on\nthe local network to possibly trigger a denial of service. (CVE-2011-1576,\nModerate)\n\n* A denial of service could occur if packets were received while the ipip\nor ip_gre module was being loaded. (CVE-2011-1767, CVE-2011-1768, Moderate)\n\n* Information leaks. (CVE-2011-1160, CVE-2011-2492, CVE-2011-2495, Low)\n\n* Flaws in the EFI GUID Partition Table implementation could allow a local\nattacker to cause a denial of service. (CVE-2011-1577, CVE-2011-1776, Low)\n\n* While a user has a CIFS share mounted that required successful\nauthentication, a local, unprivileged user could mount that share without\nknowing the correct password if mount.cifs was setuid root. (CVE-2011-1585,\nLow)\n\nRed Hat would like to thank Dan Rosenberg for reporting CVE-2011-1770,\nCVE-2011-1494, CVE-2011-1495, CVE-2011-2497, and CVE-2011-2213; Vasiliy\nKulikov of Openwall for reporting CVE-2011-1745, CVE-2011-2022,\nCVE-2011-1746, CVE-2011-2484, and CVE-2011-2495; Vasily Averin for\nreporting CVE-2011-2491; Brad Spengler for reporting CVE-2010-4243; Kees\nCook for reporting CVE-2011-1020; Robert Swiecki for reporting\nCVE-2011-1593 and CVE-2011-2496; Oliver Hartkopp for reporting\nCVE-2011-1748; Andrea Righi for reporting CVE-2011-2183; Ryan Sweat for\nreporting CVE-2011-1478 and CVE-2011-1576; Peter Huewe for reporting\nCVE-2011-1160; Marek Kroemeke and Filip Palian for reporting CVE-2011-2492;\nand Timo Warns for reporting CVE-2011-1577 and CVE-2011-1776.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:1253", "url": "https://access.redhat.com/errata/RHSA-2011:1253" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/2.0/html/Technical_Notes/index.html", "url": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/2.0/html/Technical_Notes/index.html" }, { "category": "external", "summary": "625688", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=625688" }, { "category": "external", "summary": "664914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=664914" }, { "category": "external", "summary": "680358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=680358" }, { "category": "external", "summary": "680841", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=680841" }, { "category": "external", "summary": "681987", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=681987" }, { "category": "external", "summary": "682641", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=682641" }, { "category": "external", "summary": "684671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=684671" }, { "category": "external", "summary": "691270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=691270" }, { "category": "external", "summary": "691793", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=691793" }, { "category": "external", "summary": "694021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=694021" }, { "category": "external", "summary": "695173", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695173" }, { "category": "external", "summary": "695976", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695976" }, { "category": "external", "summary": "697394", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697394" }, { "category": "external", "summary": "697822", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697822" }, { "category": "external", "summary": "698057", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698057" }, { "category": "external", "summary": "698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "698998", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698998" }, { "category": "external", "summary": "702303", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=702303" }, { "category": "external", "summary": "703011", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703011" }, { "category": "external", "summary": "703019", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703019" }, { "category": "external", "summary": "703026", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703026" }, { "category": "external", "summary": "709393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=709393" }, { "category": "external", "summary": "710158", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=710158" }, { "category": "external", "summary": "710338", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=710338" }, { "category": "external", "summary": "714536", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714536" }, { "category": "external", "summary": "715436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715436" }, { "category": "external", "summary": "716538", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "category": "external", "summary": "716805", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716805" }, { "category": "external", "summary": "716825", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "category": "external", "summary": "718152", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718152" }, { "category": "external", "summary": "722557", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722557" }, { "category": "external", "summary": "728310", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728310" }, { "category": "external", "summary": "728551", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728551" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1253.json" } ], "title": "Red Hat Security Advisory: kernel-rt security and bug fix update", "tracking": { "current_release_date": "2024-11-22T04:54:54+00:00", "generator": { "date": "2024-11-22T04:54:54+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2011:1253", "initial_release_date": "2011-09-12T19:40:00+00:00", "revision_history": [ { "date": "2011-09-12T19:40:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-09-12T15:43:48+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T04:54:54+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat MRG Realtime for RHEL 6 Server v.2", "product": { "name": "Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_mrg:2:server:el6" } } } ], "category": "product_family", "name": "Red Hat Enterprise MRG for RHEL-6" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-devel@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product": { "name": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_id": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@2.6.33.9-rt31.75.el6rt?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "product": { "name": "kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "product_id": "kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-firmware@2.6.33.9-rt31.75.el6rt?arch=noarch" } } }, { "category": "product_version", "name": "kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "product": { "name": "kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "product_id": "kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-doc@2.6.33.9-rt31.75.el6rt?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "product": { "name": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "product_id": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.33.9-rt31.75.el6rt?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.src as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src" }, "product_reference": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch" }, "product_reference": "kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch" }, "product_reference": "kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2", "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" }, "product_reference": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "relates_to_product_reference": "6Server-MRG-Realtime-2" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Brad Spengler" ] } ], "cve": "CVE-2010-4243", "discovery_date": "2010-08-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "625688" } ], "notes": [ { "category": "description", "text": "fs/exec.c in the Linux kernel before 2.6.37 does not enable the OOM Killer to assess use of stack memory by arrays representing the (1) arguments and (2) environment, which allows local users to cause a denial of service (memory consumption) via a crafted exec system call, aka an \"OOM dodging issue,\" a related issue to CVE-2010-3858.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-4243" }, { "category": "external", "summary": "RHBZ#625688", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=625688" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-4243", "url": "https://www.cve.org/CVERecord?id=CVE-2010-4243" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-4243", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-4243" } ], "release_date": "2010-08-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads" }, { "cve": "CVE-2010-4526", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2010-12-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "664914" } ], "notes": [ { "category": "description", "text": "Race condition in the sctp_icmp_proto_unreachable function in net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote attackers to cause a denial of service (panic) via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and triggers list corruption, related to the sctp_wait_for_connect function.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: sctp: a race between ICMP protocol unreachable and connect()", "title": "Vulnerability summary" }, { "category": "other", "text": "The Linux kernel as shipped with Red Hat Enterprise Linux 4 did not include\nupstream commit history:5aabd1fe268e850c2e93048a5ccc5eb6970ac49c, and therefore\nis not affected by this issue. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via http://rhn.redhat.com/errata/RHSA-2011-0163.html, https://rhn.redhat.com/errata/RHSA-2011-0421.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-4526" }, { "category": "external", "summary": "RHBZ#664914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=664914" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-4526", "url": "https://www.cve.org/CVERecord?id=CVE-2010-4526" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-4526", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-4526" } ], "release_date": "2010-05-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: sctp: a race between ICMP protocol unreachable and connect()" }, { "acknowledgments": [ { "names": [ "Kees Cook" ] } ], "cve": "CVE-2011-1020", "discovery_date": "2011-02-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "680358" } ], "notes": [ { "category": "description", "text": "The proc filesystem implementation in the Linux kernel 2.6.37 and earlier does not restrict access to the /proc directory tree of a process after this process performs an exec of a setuid program, which allows local users to obtain sensitive information or cause a denial of service via open, lseek, read, and write system calls.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: no access restrictions of /proc/pid/* after setuid program exec", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.\n\nThis has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via RHSA-2012:0007, RHSA-2011:1530 and RHSA-2011:1253 respectively.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1020" }, { "category": "external", "summary": "RHBZ#680358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=680358" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1020", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1020" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1020", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1020" } ], "release_date": "2011-02-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: no access restrictions of /proc/pid/* after setuid program exec" }, { "cve": "CVE-2011-1021", "discovery_date": "2011-02-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "680841" } ], "notes": [ { "category": "description", "text": "drivers/acpi/debugfs.c in the Linux kernel before 3.0 allows local users to modify arbitrary kernel memory locations by leveraging root privileges to write to the /sys/kernel/debug/acpi/custom_method file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4347.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions", "title": "Vulnerability summary" }, { "category": "other", "text": "The version of Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, and 6 as they did not include upstream commit a1a541d8 and a25ee920 that introduced the problem. This has been addressed in Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1253.html.\n\nNotes:\n\nThis requires debugfs to be mounted on a local system in order to have access\nto the custom_method file. Debugfs is not mounted by default. You need to run\n\"mount -t debugfs nodev /sys/kernel/debug\" as root first.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1021" }, { "category": "external", "summary": "RHBZ#680841", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=680841" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1021", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1021" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1021", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1021" } ], "release_date": "2011-02-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:H/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions" }, { "cve": "CVE-2011-1090", "discovery_date": "2011-03-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "682641" } ], "notes": [ { "category": "description", "text": "The __nfs4_proc_set_acl function in fs/nfs/nfs4proc.c in the Linux kernel before 2.6.38 stores NFSv4 ACL data in memory that is allocated by kmalloc but not properly freed, which allows local users to cause a denial of service (panic) via a crafted attempt to set an ACL.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not backport the upstream commit 4b580ee3 that introduced this issue. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0429.html, https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1090" }, { "category": "external", "summary": "RHBZ#682641", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=682641" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1090", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1090" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1090", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1090" } ], "release_date": "2011-03-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab" }, { "acknowledgments": [ { "names": [ "Peter Huewe" ] } ], "cve": "CVE-2011-1160", "discovery_date": "2011-03-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "684671" } ], "notes": [ { "category": "description", "text": "The tpm_open function in drivers/char/tpm/tpm.c in the Linux kernel before 2.6.39 does not initialize a certain buffer, which allows local users to obtain potentially sensitive information from kernel memory via unspecified vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: tpm infoleaks", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1160" }, { "category": "external", "summary": "RHBZ#684671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=684671" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1160", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1160" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1160", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1160" } ], "release_date": "2011-03-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.2, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: tpm infoleaks" }, { "acknowledgments": [ { "names": [ "Ryan Sweat" ] } ], "cve": "CVE-2011-1478", "discovery_date": "2011-02-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "691270" } ], "notes": [ { "category": "description", "text": "The napi_reuse_skb function in net/core/dev.c in the Generic Receive Offload (GRO) implementation in the Linux kernel before 2.6.38 does not reset the values of certain structure members, which might allow remote attackers to cause a denial of service (NULL pointer dereference) via a malformed VLAN frame.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: gro: reset dev and skb_iff on skb reuse", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not support Generic Receive Offload (GRO). It has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0429.html, https://rhn.redhat.com/errata/RHSA-2011-0421.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1478" }, { "category": "external", "summary": "RHBZ#691270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=691270" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1478", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1478" } ], "release_date": "2011-02-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: gro: reset dev and skb_iff on skb reuse" }, { "cve": "CVE-2011-1479", "discovery_date": "2011-03-29T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "691793" } ], "notes": [ { "category": "description", "text": "Double free vulnerability in the inotify subsystem in the Linux kernel before 2.6.39 allows local users to cause a denial of service (system crash) via vectors involving failed attempts to create files. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-4250.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: DoS (crash) due slab corruption in inotify_init1 (incomplete fix for CVE-2010-4250)", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 and 5. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0498.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1479" }, { "category": "external", "summary": "RHBZ#691793", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=691793" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1479", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1479" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1479", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1479" } ], "release_date": "2011-04-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: DoS (crash) due slab corruption in inotify_init1 (incomplete fix for CVE-2010-4250)" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-1494", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-04-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "694021" } ], "notes": [ { "category": "description", "text": "Integer overflow in the _ctl_do_mpt_command function in drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and earlier might allow local users to gain privileges or cause a denial of service (memory corruption) via an ioctl call specifying a crafted value that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: drivers/scsi/mpt2sas: prevent heap overflows", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for MPT (Message Passing\nTechnology) based controllers. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, and https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1494" }, { "category": "external", "summary": "RHBZ#694021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=694021" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1494", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1494" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1494", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1494" } ], "release_date": "2011-04-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: drivers/scsi/mpt2sas: prevent heap overflows" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-1495", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-04-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "694021" } ], "notes": [ { "category": "description", "text": "drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and earlier does not validate (1) length and (2) offset values before performing memory copy operations, which might allow local users to gain privileges, cause a denial of service (memory corruption), or obtain sensitive information from kernel memory via a crafted ioctl call, related to the _ctl_do_mpt_command and _ctl_diag_read_buffer functions.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: drivers/scsi/mpt2sas: prevent heap overflows", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for MPT (Message Passing\nTechnology) based controllers. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, and https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1495" }, { "category": "external", "summary": "RHBZ#694021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=694021" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1495", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1495" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1495", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1495" } ], "release_date": "2011-04-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: drivers/scsi/mpt2sas: prevent heap overflows" }, { "acknowledgments": [ { "names": [ "Ryan Sweat" ] } ], "cve": "CVE-2011-1576", "cwe": { "id": "CWE-401", "name": "Missing Release of Memory after Effective Lifetime" }, "discovery_date": "2011-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "695173" } ], "notes": [ { "category": "description", "text": "The Generic Receive Offload (GRO) implementation in the Linux kernel 2.6.18 on Red Hat Enterprise Linux 5 and 2.6.32 on Red Hat Enterprise Linux 6, as used in Red Hat Enterprise Virtualization (RHEV) Hypervisor and other products, allows remote attackers to cause a denial of service via crafted VLAN packets that are processed by the napi_reuse_skb function, leading to (1) a memory leak or (2) memory corruption, a different vulnerability than CVE-2011-1478.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: net: Fix memory leak/corruption on VLAN GRO_DROP", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not support Generic Receive Offload (GRO). This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1576" }, { "category": "external", "summary": "RHBZ#695173", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695173" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1576", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1576" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1576", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1576" } ], "release_date": "2011-06-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: net: Fix memory leak/corruption on VLAN GRO_DROP" }, { "acknowledgments": [ { "names": [ "Timo Warns" ] } ], "cve": "CVE-2011-1577", "discovery_date": "2011-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "695976" } ], "notes": [ { "category": "description", "text": "Heap-based buffer overflow in the is_gpt_valid function in fs/partitions/efi.c in the Linux kernel 2.6.38 and earlier allows physically proximate attackers to cause a denial of service (OOPS) or possibly have unspecified other impact via a crafted size of the EFI GUID partition-table header on removable media.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: corrupted GUID partition tables can cause kernel oops", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1577" }, { "category": "external", "summary": "RHBZ#695976", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695976" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1577", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1577" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1577", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1577" } ], "release_date": "2011-04-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: corrupted GUID partition tables can cause kernel oops" }, { "cve": "CVE-2011-1585", "discovery_date": "2011-04-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "697394" } ], "notes": [ { "category": "description", "text": "The cifs_find_smb_ses function in fs/cifs/connect.c in the Linux kernel before 2.6.36 does not properly determine the associations between users and sessions, which allows local users to bypass CIFS share authentication by leveraging a mount of a share by a different user.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: cifs session reuse", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped in Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG as they did not ship mount.cifs with root setuid set. However, as a preventive meaasure, we have addressed this in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1585" }, { "category": "external", "summary": "RHBZ#697394", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697394" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1585", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1585" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1585", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1585" } ], "release_date": "2010-08-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: cifs session reuse" }, { "acknowledgments": [ { "names": [ "Robert Swiecki" ] } ], "cve": "CVE-2011-1593", "discovery_date": "2011-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "697822" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in the next_pidmap function in kernel/pid.c in the Linux kernel before 2.6.38.4 allow local users to cause a denial of service (system crash) via a crafted (1) getdents or (2) readdir system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: proc: signedness issue in next_pidmap()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1593" }, { "category": "external", "summary": "RHBZ#697822", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697822" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1593", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1593" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1593", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1593" } ], "release_date": "2011-04-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: proc: signedness issue in next_pidmap()" }, { "acknowledgments": [ { "names": [ "Oliver Hartkopp" ] } ], "cve": "CVE-2011-1598", "discovery_date": "2011-04-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698057" } ], "notes": [ { "category": "description", "text": "The bcm_release function in net/can/bcm.c in the Linux kernel before 2.6.39-rc6 does not properly validate a socket data structure, which allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted release operation.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: missing check in can/bcm and can/raw socket releases", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1598" }, { "category": "external", "summary": "RHBZ#698057", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698057" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1598", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1598" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1598", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1598" } ], "release_date": "2011-04-20T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: missing check in can/bcm and can/raw socket releases" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1745", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698996" } ], "notes": [ { "category": "description", "text": "Integer overflow in the agp_generic_insert_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_BIND agp_ioctl ioctl call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1745" }, { "category": "external", "summary": "RHBZ#698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1745", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1745" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1745", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1745" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1746", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698998" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in the (1) agp_allocate_memory and (2) agp_create_user_memory functions in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allow local users to trigger buffer overflows, and consequently cause a denial of service (system crash) or possibly have unspecified other impact, via vectors related to calls that specify a large number of memory pages.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient page_count parameter checking in agp_allocate_memory()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat Enterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1746" }, { "category": "external", "summary": "RHBZ#698998", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698998" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1746", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1746" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1746", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1746" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient page_count parameter checking in agp_allocate_memory()" }, { "acknowledgments": [ { "names": [ "Oliver Hartkopp" ] } ], "cve": "CVE-2011-1748", "discovery_date": "2011-04-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698057" } ], "notes": [ { "category": "description", "text": "The raw_release function in net/can/raw.c in the Linux kernel before 2.6.39-rc6 does not properly validate a socket data structure, which allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted release operation.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: missing check in can/bcm and can/raw socket releases", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1748" }, { "category": "external", "summary": "RHBZ#698057", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698057" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1748", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1748" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1748", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1748" } ], "release_date": "2011-04-20T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: missing check in can/bcm and can/raw socket releases" }, { "cve": "CVE-2011-1767", "discovery_date": "2011-05-05T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "702303" } ], "notes": [ { "category": "description", "text": "net/ipv4/ip_gre.c in the Linux kernel before 2.6.34, when ip_gre is configured as a module, allows remote attackers to cause a denial of service (OOPS) by sending a packet during module loading.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: netns vs proto registration ordering", "title": "Vulnerability summary" }, { "category": "other", "text": "The Linux kernel as shipped with Red Hat Enterprise Linux 4, and 5 did not provide support for Network Namespace, and therefore are not affected by this issue. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0928.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1767" }, { "category": "external", "summary": "RHBZ#702303", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=702303" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1767", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1767" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1767", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1767" } ], "release_date": "2010-02-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.4, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: netns vs proto registration ordering" }, { "cve": "CVE-2011-1768", "discovery_date": "2011-05-05T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "702303" } ], "notes": [ { "category": "description", "text": "The tunnels implementation in the Linux kernel before 2.6.34, when tunnel functionality is configured as a module, allows remote attackers to cause a denial of service (OOPS) by sending a packet during module loading.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: netns vs proto registration ordering", "title": "Vulnerability summary" }, { "category": "other", "text": "The Linux kernel as shipped with Red Hat Enterprise Linux 4, and 5 did not provide support for Network Namespace, and therefore are not affected by this issue. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0928.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1768" }, { "category": "external", "summary": "RHBZ#702303", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=702303" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1768", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1768" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1768", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1768" } ], "release_date": "2010-02-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.4, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: netns vs proto registration ordering" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-1770", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "703011" } ], "notes": [ { "category": "description", "text": "Integer underflow in the dccp_parse_options function (net/dccp/options.c) in the Linux kernel before 2.6.33.14 allows remote attackers to cause a denial of service via a Datagram Congestion Control Protocol (DCCP) packet with an invalid feature options length, which triggers a buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: dccp: handle invalid feature options length", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue does not affect Red Hat Enterprise Linux 4 and 5: Red Hat Enterprise Linux 4 does not provide support for the Datagram Congestion Control Protocol (DCCP), and Red Hat Enterprise Linux 5, which does support DCCP, did not backport the upstream commit that introduced this issue, e77b8363b. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0836.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1770" }, { "category": "external", "summary": "RHBZ#703011", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703011" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1770", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1770" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1770", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1770" } ], "release_date": "2011-05-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: dccp: handle invalid feature options length" }, { "acknowledgments": [ { "names": [ "Timo Warns" ] } ], "cve": "CVE-2011-1776", "discovery_date": "2011-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "703026" } ], "notes": [ { "category": "description", "text": "The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate attackers to cause a denial of service (heap-based buffer overflow and OOPS) or obtain sensitive information from kernel heap memory by connecting a crafted GPT storage device, a different vulnerability than CVE-2011-1577.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: validate size of EFI GUID partition entries", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1776" }, { "category": "external", "summary": "RHBZ#703026", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703026" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1776", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1776" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1776", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1776" } ], "release_date": "2011-05-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: validate size of EFI GUID partition entries" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2022", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698996" } ], "notes": [ { "category": "description", "text": "The agp_generic_remove_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 does not validate a certain start parameter, which allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_UNBIND agp_ioctl ioctl call, a different vulnerability than CVE-2011-1745.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2022" }, { "category": "external", "summary": "RHBZ#698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2022", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2022" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2022", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2022" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls" }, { "acknowledgments": [ { "names": [ "Andrea Righi" ] } ], "cve": "CVE-2011-2183", "discovery_date": "2011-06-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "710338" } ], "notes": [ { "category": "description", "text": "Race condition in the scan_get_next_rmap_item function in mm/ksm.c in the Linux kernel before 2.6.39.3, when Kernel SamePage Merging (KSM) is enabled, allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ksm: race between ksmd and exiting task", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, and Red Hat Enterprise MRG do not provide support for KSM (Kernel Samepage Merging). This has been addressed in Red Hat Enterprise Linux 6 via https://rhn.redhat.com/errata/RHSA-2011-1189.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2183" }, { "category": "external", "summary": "RHBZ#710338", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=710338" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2183", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2183" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2183", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2183" } ], "release_date": "2011-06-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ksm: race between ksmd and exiting task" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-2213", "discovery_date": "2011-06-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "714536" } ], "notes": [ { "category": "description", "text": "The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message, as demonstrated by an INET_DIAG_BC_JMP instruction with a zero yes value, a different vulnerability than CVE-2010-3880.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: inet_diag: insufficient validation", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4,\n5, 6, and Red Hat Enterprise MRG. Red Hat Enterprise Linux 4 is now in\nProduction 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2213" }, { "category": "external", "summary": "RHBZ#714536", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714536" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2213", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2213" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2213", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2213" } ], "release_date": "2011-06-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: inet_diag: insufficient validation" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2484", "discovery_date": "2011-06-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "715436" } ], "notes": [ { "category": "description", "text": "The add_del_listener function in kernel/taskstats.c in the Linux kernel 2.6.39.1 and earlier does not prevent multiple registrations of exit handlers, which allows local users to cause a denial of service (memory and CPU consumption), and bypass the OOM Killer, via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: taskstats: duplicate entries in listener mode can lead to DoS", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for the Taskstats interface. This was fixed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2484" }, { "category": "external", "summary": "RHBZ#715436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715436" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2484", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2484" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2484", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2484" } ], "release_date": "2011-06-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: taskstats: duplicate entries in listener mode can lead to DoS" }, { "acknowledgments": [ { "names": [ "Vasily Averin" ] } ], "cve": "CVE-2011-2491", "discovery_date": "2011-06-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "709393" } ], "notes": [ { "category": "description", "text": "The Network Lock Manager (NLM) protocol implementation in the NFS client functionality in the Linux kernel before 3.0 allows local users to cause a denial of service (system hang) via a LOCK_UN flock system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: rpc task leak after flock()ing NFS share", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2491" }, { "category": "external", "summary": "RHBZ#709393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=709393" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2491", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2491" } ], "release_date": "2011-05-31T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: rpc task leak after flock()ing NFS share" }, { "acknowledgments": [ { "names": [ "Marek Kroemeke", "Filip Palian" ] } ], "cve": "CVE-2011-2492", "discovery_date": "2011-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "703019" } ], "notes": [ { "category": "description", "text": "The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel memory via a crafted getsockopt system call, related to (1) the l2cap_sock_getsockopt_old function in net/bluetooth/l2cap_sock.c and (2) the rfcomm_sock_getsockopt_old function in net/bluetooth/rfcomm/sock.c.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2492" }, { "category": "external", "summary": "RHBZ#703019", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703019" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2492", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2492" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2492", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2492" } ], "release_date": "2011-05-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2495", "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716825" } ], "notes": [ { "category": "description", "text": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: /proc/PID/io infoleak", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1212.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2495" }, { "category": "external", "summary": "RHBZ#716825", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2495", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2495" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495" } ], "release_date": "2011-06-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: /proc/PID/io infoleak" }, { "acknowledgments": [ { "names": [ "Robert Swiecki" ] } ], "cve": "CVE-2011-2496", "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716538" } ], "notes": [ { "category": "description", "text": "Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2496" }, { "category": "external", "summary": "RHBZ#716538", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2496", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2496" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2496", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2496" } ], "release_date": "2011-04-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-2497", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-06-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716805" } ], "notes": [ { "category": "description", "text": "Integer underflow in the l2cap_config_req function in net/bluetooth/l2cap_core.c in the Linux kernel before 3.0 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a small command-size value within the command header of a Logical Link Control and Adaptation Protocol (L2CAP) configuration request, leading to a buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: bluetooth: buffer overflow in l2cap config request", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 and 5 as they did not backport the upstream commit 5dee9e7c that introduced this issue. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2497" }, { "category": "external", "summary": "RHBZ#716805", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716805" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2497", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2497" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2497", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2497" } ], "release_date": "2011-06-24T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 8.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: bluetooth: buffer overflow in l2cap config request" }, { "cve": "CVE-2011-2517", "discovery_date": "2011-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "718152" } ], "notes": [ { "category": "description", "text": "Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAP_NET_ADMIN capability during scan operations with a long SSID value.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nl80211: missing check for valid SSID size in scan operations", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for the Linux wireless LAN (802.11) configuration API. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1212.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2517" }, { "category": "external", "summary": "RHBZ#718152", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718152" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2517", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2517" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2517", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2517" } ], "release_date": "2011-05-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: nl80211: missing check for valid SSID size in scan operations" }, { "cve": "CVE-2011-2695", "discovery_date": "2011-07-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "722557" } ], "notes": [ { "category": "description", "text": "Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local users to cause a denial of service (BUG_ON and system crash) by accessing a sparse file in extent format with a write operation involving a block number corresponding to the largest possible 32-bit unsigned integer.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ext4: kernel panic when writing data to the last block of sparse file", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not include support for EXT4 filesystem.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2695" }, { "category": "external", "summary": "RHBZ#722557", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722557" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2695", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2695" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2695", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2695" } ], "release_date": "2011-06-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-09-12T19:40:00+00:00", "details": "This update also fixes various bugs. Documentation for these bug fixes\nwill be available shortly from the Technical Notes document linked to\nin the References section.\n\nUsers should upgrade to these updated packages, which correct these\nissues, and fix the bugs noted in the Technical Notes. The system\nmust be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2011:1253" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.src", "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.75.el6rt.noarch", "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.75.el6rt.x86_64", "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.75.el6rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ext4: kernel panic when writing data to the last block of sparse file" } ] }
rhsa-2011_1350
Vulnerability from csaf_redhat
Published
2011-10-05 21:37
Modified
2024-11-22 05:02
Summary
Red Hat Security Advisory: kernel security, bug fix, and enhancement update
Notes
Topic
Updated kernel packages that fix several security issues, various bugs, and
add one enhancement are now available for Red Hat Enterprise Linux 6.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issues:
* Flaws in the AGPGART driver implementation when handling certain IOCTL
commands could allow a local user to cause a denial of service or escalate
their privileges. (CVE-2011-1745, CVE-2011-2022, Important)
* An integer overflow flaw in agp_allocate_memory() could allow a local
user to cause a denial of service or escalate their privileges.
(CVE-2011-1746, Important)
* A race condition flaw was found in the Linux kernel's eCryptfs
implementation. A local attacker could use the mount.ecryptfs_private
utility to mount (and then access) a directory they would otherwise not
have access to. Note: To correct this issue, the RHSA-2011:1241
ecryptfs-utils update, which provides the user-space part of the fix, must
also be installed. (CVE-2011-1833, Moderate)
* A denial of service flaw was found in the way the taskstats subsystem
handled the registration of process exit handlers. A local, unprivileged
user could register an unlimited amount of these handlers, leading to
excessive CPU time and memory use. (CVE-2011-2484, Moderate)
* A flaw was found in the way mapping expansions were handled. A local,
unprivileged user could use this flaw to cause a wrapping condition,
triggering a denial of service. (CVE-2011-2496, Moderate)
* A flaw was found in the Linux kernel's Performance Events implementation.
It could falsely lead the NMI (Non-Maskable Interrupt) Watchdog to detect a
lockup and panic the system. A local, unprivileged user could use this flaw
to cause a denial of service (kernel panic) using the perf tool.
(CVE-2011-2521, Moderate)
* A flaw in skb_gro_header_slow() in the Linux kernel could lead to GRO
(Generic Receive Offload) fields being left in an inconsistent state. An
attacker on the local network could use this flaw to trigger a denial of
service. GRO is enabled by default in all network drivers that support it.
(CVE-2011-2723, Moderate)
* A flaw was found in the way the Linux kernel's Performance Events
implementation handled PERF_COUNT_SW_CPU_CLOCK counter overflow. A local,
unprivileged user could use this flaw to cause a denial of service.
(CVE-2011-2918, Moderate)
* A flaw was found in the Linux kernel's Trusted Platform Module (TPM)
implementation. A local, unprivileged user could use this flaw to leak
information to user-space. (CVE-2011-1160, Low)
* Flaws were found in the tpacket_rcv() and packet_recvmsg() functions in
the Linux kernel. A local, unprivileged user could use these flaws to leak
information to user-space. (CVE-2011-2898, Low)
Red Hat would like to thank Vasiliy Kulikov of Openwall for reporting
CVE-2011-1745, CVE-2011-2022, CVE-2011-1746, and CVE-2011-2484; the Ubuntu
Security Team for reporting CVE-2011-1833; Robert Swiecki for reporting
CVE-2011-2496; Li Yu for reporting CVE-2011-2521; Brent Meshier for
reporting CVE-2011-2723; and Peter Huewe for reporting CVE-2011-1160. The
Ubuntu Security Team acknowledges Vasiliy Kulikov of Openwall and Dan
Rosenberg as the original reporters of CVE-2011-1833.
This update also fixes various bugs and adds one enhancement. Documentation
for these changes will be available shortly from the Technical Notes
document linked to in the References section.
Users should upgrade to these updated packages, which contain backported
patches to correct these issues, and fix the bugs and add the enhancement
noted in the Technical Notes. The system must be rebooted for this update
to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix several security issues, various bugs, and\nadd one enhancement are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* Flaws in the AGPGART driver implementation when handling certain IOCTL\ncommands could allow a local user to cause a denial of service or escalate\ntheir privileges. (CVE-2011-1745, CVE-2011-2022, Important)\n\n* An integer overflow flaw in agp_allocate_memory() could allow a local\nuser to cause a denial of service or escalate their privileges.\n(CVE-2011-1746, Important)\n\n* A race condition flaw was found in the Linux kernel\u0027s eCryptfs\nimplementation. A local attacker could use the mount.ecryptfs_private\nutility to mount (and then access) a directory they would otherwise not\nhave access to. Note: To correct this issue, the RHSA-2011:1241\necryptfs-utils update, which provides the user-space part of the fix, must\nalso be installed. (CVE-2011-1833, Moderate)\n\n* A denial of service flaw was found in the way the taskstats subsystem\nhandled the registration of process exit handlers. A local, unprivileged\nuser could register an unlimited amount of these handlers, leading to\nexcessive CPU time and memory use. (CVE-2011-2484, Moderate)\n\n* A flaw was found in the way mapping expansions were handled. A local,\nunprivileged user could use this flaw to cause a wrapping condition,\ntriggering a denial of service. (CVE-2011-2496, Moderate)\n\n* A flaw was found in the Linux kernel\u0027s Performance Events implementation.\nIt could falsely lead the NMI (Non-Maskable Interrupt) Watchdog to detect a\nlockup and panic the system. A local, unprivileged user could use this flaw\nto cause a denial of service (kernel panic) using the perf tool.\n(CVE-2011-2521, Moderate)\n\n* A flaw in skb_gro_header_slow() in the Linux kernel could lead to GRO\n(Generic Receive Offload) fields being left in an inconsistent state. An\nattacker on the local network could use this flaw to trigger a denial of\nservice. GRO is enabled by default in all network drivers that support it.\n(CVE-2011-2723, Moderate)\n\n* A flaw was found in the way the Linux kernel\u0027s Performance Events\nimplementation handled PERF_COUNT_SW_CPU_CLOCK counter overflow. A local,\nunprivileged user could use this flaw to cause a denial of service.\n(CVE-2011-2918, Moderate)\n\n* A flaw was found in the Linux kernel\u0027s Trusted Platform Module (TPM)\nimplementation. A local, unprivileged user could use this flaw to leak\ninformation to user-space. (CVE-2011-1160, Low)\n\n* Flaws were found in the tpacket_rcv() and packet_recvmsg() functions in\nthe Linux kernel. A local, unprivileged user could use these flaws to leak\ninformation to user-space. (CVE-2011-2898, Low)\n\nRed Hat would like to thank Vasiliy Kulikov of Openwall for reporting\nCVE-2011-1745, CVE-2011-2022, CVE-2011-1746, and CVE-2011-2484; the Ubuntu\nSecurity Team for reporting CVE-2011-1833; Robert Swiecki for reporting\nCVE-2011-2496; Li Yu for reporting CVE-2011-2521; Brent Meshier for\nreporting CVE-2011-2723; and Peter Huewe for reporting CVE-2011-1160. The\nUbuntu Security Team acknowledges Vasiliy Kulikov of Openwall and Dan\nRosenberg as the original reporters of CVE-2011-1833.\n\nThis update also fixes various bugs and adds one enhancement. Documentation\nfor these changes will be available shortly from the Technical Notes\ndocument linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues, and fix the bugs and add the enhancement\nnoted in the Technical Notes. The system must be rebooted for this update\nto take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:1350", "url": "https://access.redhat.com/errata/RHSA-2011:1350" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://rhn.redhat.com/errata/RHSA-2011-1241.html", "url": "https://rhn.redhat.com/errata/RHSA-2011-1241.html" }, { "category": "external", "summary": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/kernel.html#RHSA-2011-1350", "url": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/kernel.html#RHSA-2011-1350" }, { "category": "external", "summary": "684671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=684671" }, { "category": "external", "summary": "698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "698998", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698998" }, { "category": "external", "summary": "713463", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=713463" }, { "category": "external", "summary": "715436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715436" }, { "category": "external", "summary": "716538", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "category": "external", "summary": "719228", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=719228" }, { "category": "external", "summary": "726552", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552" }, { "category": "external", "summary": "728023", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728023" }, { "category": "external", "summary": "730706", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730706" }, { "category": "external", "summary": "731172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=731172" }, { "category": "external", "summary": "732379", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732379" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1350.json" } ], "title": "Red Hat Security Advisory: kernel security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-22T05:02:16+00:00", "generator": { "date": "2024-11-22T05:02:16+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2011:1350", "initial_release_date": "2011-10-05T21:37:00+00:00", "revision_history": [ { "date": "2011-10-05T21:37:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-10-05T17:47:16+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T05:02:16+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-bootwrapper@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product_id": "perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "perf-0:2.6.32-131.17.1.el6.ppc64", "product_id": "perf-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64@2.6.32-131.17.1.el6?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-headers-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-devel-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-i686@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-debug-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "product": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "product_id": "perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.17.1.el6.i686", "product": { "name": "perf-0:2.6.32-131.17.1.el6.i686", "product_id": "perf-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.17.1.el6?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-headers-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-devel-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-debug-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_id": "perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "perf-0:2.6.32-131.17.1.el6.s390x", "product_id": "perf-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@2.6.32-131.17.1.el6?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product_id": "perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "perf-0:2.6.32-131.17.1.el6.x86_64", "product_id": "perf-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.17.1.el6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "product": { "name": "kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "product_id": "kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-131.17.1.el6?arch=noarch" } } }, { "category": "product_version", "name": "kernel-doc-0:2.6.32-131.17.1.el6.noarch", "product": { "name": "kernel-doc-0:2.6.32-131.17.1.el6.noarch", "product_id": "kernel-doc-0:2.6.32-131.17.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.32-131.17.1.el6?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.32-131.17.1.el6.src", "product": { "name": "kernel-0:2.6.32-131.17.1.el6.src", "product_id": "kernel-0:2.6.32-131.17.1.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.17.1.el6?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.17.1.el6.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src" }, "product_reference": "kernel-0:2.6.32-131.17.1.el6.src", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-debug-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-debug-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-devel-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-devel-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.32-131.17.1.el6.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch" }, "product_reference": "kernel-doc-0:2.6.32-131.17.1.el6.noarch", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-firmware-0:2.6.32-131.17.1.el6.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch" }, "product_reference": "kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-headers-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-headers-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "perf-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "perf-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "perf-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "perf-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Peter Huewe" ] } ], "cve": "CVE-2011-1160", "discovery_date": "2011-03-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "684671" } ], "notes": [ { "category": "description", "text": "The tpm_open function in drivers/char/tpm/tpm.c in the Linux kernel before 2.6.39 does not initialize a certain buffer, which allows local users to obtain potentially sensitive information from kernel memory via unspecified vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: tpm infoleaks", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1160" }, { "category": "external", "summary": "RHBZ#684671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=684671" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1160", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1160" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1160", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1160" } ], "release_date": "2011-03-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.2, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: tpm infoleaks" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1745", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698996" } ], "notes": [ { "category": "description", "text": "Integer overflow in the agp_generic_insert_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_BIND agp_ioctl ioctl call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1745" }, { "category": "external", "summary": "RHBZ#698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1745", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1745" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1745", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1745" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1746", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698998" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in the (1) agp_allocate_memory and (2) agp_create_user_memory functions in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allow local users to trigger buffer overflows, and consequently cause a denial of service (system crash) or possibly have unspecified other impact, via vectors related to calls that specify a large number of memory pages.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient page_count parameter checking in agp_allocate_memory()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat Enterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1746" }, { "category": "external", "summary": "RHBZ#698998", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698998" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1746", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1746" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1746", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1746" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient page_count parameter checking in agp_allocate_memory()" }, { "acknowledgments": [ { "names": [ "Ubuntu Security Team" ] } ], "cve": "CVE-2011-1833", "cwe": { "id": "CWE-367", "name": "Time-of-check Time-of-use (TOCTOU) Race Condition" }, "discovery_date": "2011-08-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "731172" } ], "notes": [ { "category": "description", "text": "Race condition in the ecryptfs_mount function in fs/ecryptfs/main.c in the eCryptfs subsystem in the Linux kernel before 3.1 allows local users to bypass intended file permissions via a mount.ecryptfs_private mount with a mismatched uid.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ecryptfs: mount source TOCTOU race", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1833" }, { "category": "external", "summary": "RHBZ#731172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=731172" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1833", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1833" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1833", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1833" } ], "release_date": "2011-08-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ecryptfs: mount source TOCTOU race" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2022", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698996" } ], "notes": [ { "category": "description", "text": "The agp_generic_remove_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 does not validate a certain start parameter, which allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_UNBIND agp_ioctl ioctl call, a different vulnerability than CVE-2011-1745.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2022" }, { "category": "external", "summary": "RHBZ#698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2022", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2022" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2022", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2022" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2484", "discovery_date": "2011-06-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "715436" } ], "notes": [ { "category": "description", "text": "The add_del_listener function in kernel/taskstats.c in the Linux kernel 2.6.39.1 and earlier does not prevent multiple registrations of exit handlers, which allows local users to cause a denial of service (memory and CPU consumption), and bypass the OOM Killer, via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: taskstats: duplicate entries in listener mode can lead to DoS", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for the Taskstats interface. This was fixed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2484" }, { "category": "external", "summary": "RHBZ#715436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715436" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2484", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2484" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2484", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2484" } ], "release_date": "2011-06-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: taskstats: duplicate entries in listener mode can lead to DoS" }, { "acknowledgments": [ { "names": [ "Robert Swiecki" ] } ], "cve": "CVE-2011-2496", "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716538" } ], "notes": [ { "category": "description", "text": "Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2496" }, { "category": "external", "summary": "RHBZ#716538", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2496", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2496" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2496", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2496" } ], "release_date": "2011-04-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions" }, { "acknowledgments": [ { "names": [ "Li Yu" ] } ], "cve": "CVE-2011-2521", "discovery_date": "2011-07-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "719228" } ], "notes": [ { "category": "description", "text": "The x86_assign_hw_event function in arch/x86/kernel/cpu/perf_event.c in the Performance Events subsystem in the Linux kernel before 2.6.39 does not properly calculate counter values, which allows local users to cause a denial of service (panic) via the perf program.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: perf, x86: fix Intel fixed counters base initialization", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, and Red Hat Enterprise MRG as they did not backport the upstream commit 41bf498 that introduced the issue. This has been addressed in Red Hat Enterprise Linux 6 via https://rhn.redhat.com/errata/RHSA-2011-1350.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2521" }, { "category": "external", "summary": "RHBZ#719228", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=719228" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2521", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2521" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2521", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2521" } ], "release_date": "2011-03-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: perf, x86: fix Intel fixed counters base initialization" }, { "acknowledgments": [ { "names": [ "Brent Meshier" ] } ], "cve": "CVE-2011-2723", "discovery_date": "2011-07-29T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "726552" } ], "notes": [ { "category": "description", "text": "The skb_gro_header_slow function in include/linux/netdevice.h in the Linux kernel before 2.6.39.4, when Generic Receive Offload (GRO) is enabled, resets certain fields in incorrect situations, which allows remote attackers to cause a denial of service (system crash) via crafted network traffic.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: gro: only reset frag0 when skb can be pulled", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not backport the upstream commit a5b1cf28 that introduced this issue. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2723" }, { "category": "external", "summary": "RHBZ#726552", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2723", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2723" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2723", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2723" }, { "category": "external", "summary": "http://git.kernel.org/linus/17dd759c67f21e34f2156abcf415e1f60605a188", "url": "http://git.kernel.org/linus/17dd759c67f21e34f2156abcf415e1f60605a188" } ], "release_date": "2011-07-27T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: gro: only reset frag0 when skb can be pulled" }, { "cve": "CVE-2011-2898", "discovery_date": "2011-08-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "728023" } ], "notes": [ { "category": "description", "text": "net/packet/af_packet.c in the Linux kernel before 2.6.39.3 does not properly restrict user-space access to certain packet data structures associated with VLAN Tag Control Information, which allows local users to obtain potentially sensitive information via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: af_packet: infoleak", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 and 5 as they did not backport the upstream commit 393e52e3 that introduced this flaw. This has been addressed in Red Hat Enterprise Linux 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1350.html and https://rhn.redhat.com/errata/RHSA-2012-0010.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2898" }, { "category": "external", "summary": "RHBZ#728023", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728023" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2898", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2898" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2898", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2898" } ], "release_date": "2011-06-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: af_packet: infoleak" }, { "cve": "CVE-2011-2918", "discovery_date": "2011-07-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "730706" } ], "notes": [ { "category": "description", "text": "The Performance Events subsystem in the Linux kernel before 3.1 does not properly handle event overflows associated with PERF_COUNT_SW_CPU_CLOCK events, which allows local users to cause a denial of service (system hang) via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: perf: Fix software event overflow", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect Red Hat Enterprise Linux 4 and 5 as they did not include support for perf. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1350.html and https://rhn.redhat.com/errata/RHSA-2012-0333.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2918" }, { "category": "external", "summary": "RHBZ#730706", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730706" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2918", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2918" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2918", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2918" } ], "release_date": "2011-07-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: perf: Fix software event overflow" } ] }
gsd-2011-2496
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2011-2496", "description": "Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.", "id": "GSD-2011-2496", "references": [ "https://www.suse.com/security/cve/CVE-2011-2496.html", "https://www.debian.org/security/2011/dsa-2310", "https://www.debian.org/security/2011/dsa-2303", "https://access.redhat.com/errata/RHSA-2011:1386", "https://access.redhat.com/errata/RHSA-2011:1350", "https://access.redhat.com/errata/RHSA-2011:1253", "https://linux.oracle.com/cve/CVE-2011-2496.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2011-2496" ], "details": "Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.", "id": "GSD-2011-2496", "modified": "2023-12-13T01:19:07.218827Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2011-2496", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_affected": "=", "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39", "refsource": "MISC", "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=982134ba62618c2d69fbbbd166d0a11ee3b7e3d8", "refsource": "MISC", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=982134ba62618c2d69fbbbd166d0a11ee3b7e3d8" }, { "name": "http://www.openwall.com/lists/oss-security/2011/06/27/2", "refsource": "MISC", "url": "http://www.openwall.com/lists/oss-security/2011/06/27/2" }, { "name": "https://github.com/torvalds/linux/commit/982134ba62618c2d69fbbbd166d0a11ee3b7e3d8", "refsource": "MISC", "url": "https://github.com/torvalds/linux/commit/982134ba62618c2d69fbbbd166d0a11ee3b7e3d8" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=716538", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38:rc7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38:rc6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38:rc4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "2.6.38.8", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38:rc3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38:rc5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38:rc8:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.38.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2011-2496" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-189" } ] } ] }, "references": { "reference_data": [ { "name": "https://github.com/torvalds/linux/commit/982134ba62618c2d69fbbbd166d0a11ee3b7e3d8", "refsource": "CONFIRM", "tags": [ "Exploit", "Patch" ], "url": "https://github.com/torvalds/linux/commit/982134ba62618c2d69fbbbd166d0a11ee3b7e3d8" }, { "name": "[oss-security] 20110627 Re: CVE request: kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions", "refsource": "MLIST", "tags": [], "url": "http://www.openwall.com/lists/oss-security/2011/06/27/2" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=716538", "refsource": "CONFIRM", "tags": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "name": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39", "refsource": "CONFIRM", "tags": [], "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=982134ba62618c2d69fbbbd166d0a11ee3b7e3d8", "refsource": "MISC", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=982134ba62618c2d69fbbbd166d0a11ee3b7e3d8" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "exploitabilityScore": 3.9, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false } }, "lastModifiedDate": "2023-02-13T01:19Z", "publishedDate": "2012-06-13T10:24Z" } } }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.