Action not permitted
Modal body text goes here.
CVE-2010-1087
Vulnerability from cvelistv5
Published
2010-04-06 22:00
Modified
2024-08-07 01:14
Severity ?
EPSS score ?
Summary
The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-07T01:14:05.744Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "oval:org.mitre.oval:def:10442", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10442" }, { "name": "39569", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/39569" }, { "name": "SUSE-SA:2010:031", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00006.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=9f557cd8073104b39528794d44e129331ded649f" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567184" }, { "name": "40645", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/40645" }, { "name": "[oss-security] 20100303 CVE request: kernel: NFS: Fix an Oops when truncating a file", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2010/03/03/1" }, { "name": "43315", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/43315" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.vmware.com/security/advisories/VMSA-2011-0003.html" }, { "name": "DSA-2053", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "http://www.debian.org/security/2010/dsa-2053" }, { "name": "20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "http://www.securityfocus.com/archive/1/516397/100/0/threaded" }, { "name": "39830", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/39830" }, { "name": "ADV-2010-1857", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2010/1857" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2010-02-03T00:00:00", "descriptions": [ { "lang": "en", "value": "The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2018-10-10T18:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre" }, "references": [ { "name": "oval:org.mitre.oval:def:10442", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10442" }, { "name": "39569", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/39569" }, { "name": "SUSE-SA:2010:031", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00006.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=9f557cd8073104b39528794d44e129331ded649f" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567184" }, { "name": "40645", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/40645" }, { "name": "[oss-security] 20100303 CVE request: kernel: NFS: Fix an Oops when truncating a file", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2010/03/03/1" }, { "name": "43315", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/43315" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.vmware.com/security/advisories/VMSA-2011-0003.html" }, { "name": "DSA-2053", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "http://www.debian.org/security/2010/dsa-2053" }, { "name": "20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "http://www.securityfocus.com/archive/1/516397/100/0/threaded" }, { "name": "39830", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/39830" }, { "name": "ADV-2010-1857", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2010/1857" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2010-1087", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "oval:org.mitre.oval:def:10442", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10442" }, { "name": "39569", "refsource": "BID", "url": "http://www.securityfocus.com/bid/39569" }, { "name": "SUSE-SA:2010:031", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00006.html" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=9f557cd8073104b39528794d44e129331ded649f", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=9f557cd8073104b39528794d44e129331ded649f" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=567184", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567184" }, { "name": "40645", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/40645" }, { "name": "[oss-security] 20100303 CVE request: kernel: NFS: Fix an Oops when truncating a file", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2010/03/03/1" }, { "name": "43315", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/43315" }, { "name": "http://www.vmware.com/security/advisories/VMSA-2011-0003.html", "refsource": "CONFIRM", "url": "http://www.vmware.com/security/advisories/VMSA-2011-0003.html" }, { "name": "DSA-2053", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2010/dsa-2053" }, { "name": "20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/516397/100/0/threaded" }, { "name": "39830", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/39830" }, { "name": "ADV-2010-1857", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2010/1857" } ] } } } }, "cveMetadata": { "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2010-1087", "datePublished": "2010-04-06T22:00:00", "dateReserved": "2010-03-23T00:00:00", "dateUpdated": "2024-08-07T01:14:05.744Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2010-1087\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2010-04-06T22:30:00.640\",\"lastModified\":\"2023-11-07T02:05:14.420\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible.\"},{\"lang\":\"es\",\"value\":\"La funcion nfs_wait_on_request en fs/nfs/pagelist.c en Linux kernel desde v2.6.x hasta v2.6.33-rc5 permite a atacantes producir una denegaci\u00f3n de servicio (OOPS) a trav\u00e9s de vectores desconocidos relacionados con el truncado de un fichero y una operaci\u00f3n que no se puede interrumpir.\"}],\"vendorComments\":[{\"organization\":\"Red Hat\",\"comment\":\"Red Hat is aware of this issue and is tracking it via the following bug:\\nhttps://bugzilla.redhat.com/CVE-2010-1087\\n\\nThis issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4 as they did not include the upstream commit 150030b7 that had introduced the problem. A future update in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG may address this flaw.\",\"lastModified\":\"2010-04-07T00:00:00\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\",\"baseScore\":7.8},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":true,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.6.0\",\"versionEndExcluding\":\"2.6.33\",\"matchCriteriaId\":\"00A013EC-2A01-4AE5-9575-F79142CCC9CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.33:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DB53511-E1B0-4F81-BE9E-B52E84E9C30E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.33:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"207306A0-19F5-4E49-945C-A5E4DD442459\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.33:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DE43C00-5967-44A1-ACEB-B7AF66EEBB53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.33:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"B33B5E4B-FCB3-4343-B992-F0ADB853754B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.33:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7295BBE-A9E3-44F6-9DD6-0FD6C2591E11\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C757774-08E7-40AA-B532-6F705C8F7639\"}]}]}],\"references\":[{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=9f557cd8073104b39528794d44e129331ded649f\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00006.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/39830\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/40645\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/43315\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.debian.org/security/2010/dsa-2053\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2010/03/03/1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/archive/1/516397/100/0/threaded\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securityfocus.com/bid/39569\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.vmware.com/security/advisories/VMSA-2011-0003.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2010/1857\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=567184\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10442\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]}]}}" } }
rhsa-2010_0504
Vulnerability from csaf_redhat
Published
2010-07-01 18:00
Modified
2024-11-22 03:30
Summary
Red Hat Security Advisory: kernel security and bug fix update
Notes
Topic
Updated kernel packages that fix multiple security issues and several bugs
are now available for Red Hat Enterprise Linux 5.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issues:
* multiple flaws were found in the mmap and mremap implementations. A local
user could use these flaws to cause a local denial of service or escalate
their privileges. (CVE-2010-0291, Important)
* a NULL pointer dereference flaw was found in the Fast Userspace Mutexes
(futexes) implementation. The unlock code path did not check if the futex
value associated with pi_state->owner had been modified. A local user could
use this flaw to modify the futex value, possibly leading to a denial of
service or privilege escalation when the pi_state->owner pointer is
dereferenced. (CVE-2010-0622, Important)
* a NULL pointer dereference flaw was found in the Linux kernel Network
File System (NFS) implementation. A local user on a system that has an
NFS-mounted file system could use this flaw to cause a denial of service or
escalate their privileges on that system. (CVE-2010-1087, Important)
* a flaw was found in the sctp_process_unk_param() function in the Linux
kernel Stream Control Transmission Protocol (SCTP) implementation. A remote
attacker could send a specially-crafted SCTP packet to an SCTP listening
port on a target system, causing a kernel panic (denial of service).
(CVE-2010-1173, Important)
* a flaw was found in the Linux kernel Transparent Inter-Process
Communication protocol (TIPC) implementation. If a client application, on a
local system where the tipc module is not yet in network mode, attempted to
send a message to a remote TIPC node, it would dereference a NULL pointer
on the local system, causing a kernel panic (denial of service).
(CVE-2010-1187, Important)
* a buffer overflow flaw was found in the Linux kernel Global File System 2
(GFS2) implementation. In certain cases, a quota could be written past the
end of a memory page, causing memory corruption, leaving the quota stored
on disk in an invalid state. A user with write access to a GFS2 file system
could trigger this flaw to cause a kernel crash (denial of service) or
escalate their privileges on the GFS2 server. This issue can only be
triggered if the GFS2 file system is mounted with the "quota=on" or
"quota=account" mount option. (CVE-2010-1436, Important)
* a race condition between finding a keyring by name and destroying a freed
keyring was found in the Linux kernel key management facility. A local user
could use this flaw to cause a kernel panic (denial of service) or escalate
their privileges. (CVE-2010-1437, Important)
* a flaw was found in the link_path_walk() function in the Linux kernel.
Using the file descriptor returned by the open() function with the
O_NOFOLLOW flag on a subordinate NFS-mounted file system, could result in a
NULL pointer dereference, causing a denial of service or privilege
escalation. (CVE-2010-1088, Moderate)
* a missing permission check was found in the gfs2_set_flags() function in
the Linux kernel GFS2 implementation. A local user could use this flaw to
change certain file attributes of files, on a GFS2 file system, that they
do not own. (CVE-2010-1641, Low)
Red Hat would like to thank Jukka Taimisto and Olli Jarva of Codenomicon
Ltd, Nokia Siemens Networks, and Wind River on behalf of their customer,
for responsibly reporting CVE-2010-1173; Mario Mikocevic for responsibly
reporting CVE-2010-1436; and Dan Rosenberg for responsibly reporting
CVE-2010-1641.
This update also fixes several bugs. Documentation for these bug fixes will
be available shortly from
http://www.redhat.com/docs/en-US/errata/RHSA-2010-0504/Kernel_Security_Update/index.html
Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix multiple security issues and several bugs\nare now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* multiple flaws were found in the mmap and mremap implementations. A local\nuser could use these flaws to cause a local denial of service or escalate\ntheir privileges. (CVE-2010-0291, Important)\n\n* a NULL pointer dereference flaw was found in the Fast Userspace Mutexes\n(futexes) implementation. The unlock code path did not check if the futex\nvalue associated with pi_state-\u003eowner had been modified. A local user could\nuse this flaw to modify the futex value, possibly leading to a denial of\nservice or privilege escalation when the pi_state-\u003eowner pointer is\ndereferenced. (CVE-2010-0622, Important)\n\n* a NULL pointer dereference flaw was found in the Linux kernel Network\nFile System (NFS) implementation. A local user on a system that has an\nNFS-mounted file system could use this flaw to cause a denial of service or\nescalate their privileges on that system. (CVE-2010-1087, Important)\n\n* a flaw was found in the sctp_process_unk_param() function in the Linux\nkernel Stream Control Transmission Protocol (SCTP) implementation. A remote\nattacker could send a specially-crafted SCTP packet to an SCTP listening\nport on a target system, causing a kernel panic (denial of service).\n(CVE-2010-1173, Important)\n\n* a flaw was found in the Linux kernel Transparent Inter-Process\nCommunication protocol (TIPC) implementation. If a client application, on a\nlocal system where the tipc module is not yet in network mode, attempted to\nsend a message to a remote TIPC node, it would dereference a NULL pointer\non the local system, causing a kernel panic (denial of service).\n(CVE-2010-1187, Important)\n\n* a buffer overflow flaw was found in the Linux kernel Global File System 2\n(GFS2) implementation. In certain cases, a quota could be written past the\nend of a memory page, causing memory corruption, leaving the quota stored\non disk in an invalid state. A user with write access to a GFS2 file system\ncould trigger this flaw to cause a kernel crash (denial of service) or\nescalate their privileges on the GFS2 server. This issue can only be\ntriggered if the GFS2 file system is mounted with the \"quota=on\" or\n\"quota=account\" mount option. (CVE-2010-1436, Important)\n\n* a race condition between finding a keyring by name and destroying a freed\nkeyring was found in the Linux kernel key management facility. A local user\ncould use this flaw to cause a kernel panic (denial of service) or escalate\ntheir privileges. (CVE-2010-1437, Important)\n\n* a flaw was found in the link_path_walk() function in the Linux kernel.\nUsing the file descriptor returned by the open() function with the\nO_NOFOLLOW flag on a subordinate NFS-mounted file system, could result in a\nNULL pointer dereference, causing a denial of service or privilege\nescalation. (CVE-2010-1088, Moderate)\n\n* a missing permission check was found in the gfs2_set_flags() function in\nthe Linux kernel GFS2 implementation. A local user could use this flaw to\nchange certain file attributes of files, on a GFS2 file system, that they\ndo not own. (CVE-2010-1641, Low)\n\nRed Hat would like to thank Jukka Taimisto and Olli Jarva of Codenomicon\nLtd, Nokia Siemens Networks, and Wind River on behalf of their customer,\nfor responsibly reporting CVE-2010-1173; Mario Mikocevic for responsibly\nreporting CVE-2010-1436; and Dan Rosenberg for responsibly reporting\nCVE-2010-1641.\n\nThis update also fixes several bugs. Documentation for these bug fixes will\nbe available shortly from\nhttp://www.redhat.com/docs/en-US/errata/RHSA-2010-0504/Kernel_Security_Update/index.html\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2010:0504", "url": "https://access.redhat.com/errata/RHSA-2010:0504" }, { "category": "external", "summary": "http://www.redhat.com/security/updates/classification/#important", "url": "http://www.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://kbase.redhat.com/faq/docs/DOC-31052", "url": "http://kbase.redhat.com/faq/docs/DOC-31052" }, { "category": "external", "summary": "http://www.redhat.com/docs/en-US/errata/RHSA-2010-0504/Kernel_Security_Update/index.html", "url": "http://www.redhat.com/docs/en-US/errata/RHSA-2010-0504/Kernel_Security_Update/index.html" }, { "category": "external", "summary": "556703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=556703" }, { "category": "external", "summary": "563091", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=563091" }, { "category": "external", "summary": "567184", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567184" }, { "category": "external", "summary": "567813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567813" }, { "category": "external", "summary": "578057", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=578057" }, { "category": "external", "summary": "584645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=584645" }, { "category": "external", "summary": "585094", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=585094" }, { "category": "external", "summary": "586006", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=586006" }, { "category": "external", "summary": "587957", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=587957" }, { "category": "external", "summary": "588219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=588219" }, { "category": "external", "summary": "591493", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=591493" }, { "category": "external", "summary": "591611", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=591611" }, { "category": "external", "summary": "592844", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=592844" }, { "category": "external", "summary": "592846", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=592846" }, { "category": "external", "summary": "594054", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=594054" }, { "category": "external", "summary": "594057", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=594057" }, { "category": "external", "summary": "594061", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=594061" }, { "category": "external", "summary": "595579", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=595579" }, { "category": "external", "summary": "596384", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=596384" }, { "category": "external", "summary": "596385", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=596385" }, { "category": "external", "summary": "598355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=598355" }, { "category": "external", "summary": "599332", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=599332" }, { "category": "external", "summary": "599730", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=599730" }, { "category": "external", "summary": "599734", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=599734" }, { "category": "external", "summary": "599737", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=599737" }, { "category": "external", "summary": "599739", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=599739" }, { "category": "external", "summary": "600215", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=600215" }, { "category": "external", "summary": "600498", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=600498" }, { "category": "external", "summary": "601080", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=601080" }, { "category": "external", "summary": "601090", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=601090" }, { "category": "external", "summary": "607087", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=607087" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0504.json" } ], "title": "Red Hat Security Advisory: kernel security and bug fix update", "tracking": { "current_release_date": "2024-11-22T03:30:48+00:00", "generator": { "date": "2024-11-22T03:30:48+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2010:0504", "initial_release_date": "2010-07-01T18:00:00+00:00", "revision_history": [ { "date": "2010-07-01T18:00:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2010-07-01T14:26:58+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:30:48+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-194.8.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-devel-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-194.8.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-194.8.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-194.8.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-xen-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-xen-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-194.8.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-194.8.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-194.8.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-PAE-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-PAE-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-194.8.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-194.8.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-debug-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-194.8.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-194.8.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-194.8.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "product": { "name": "kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "product_id": "kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-194.8.1.el5?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-194.8.1.el5.i386", "product": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.i386", "product_id": "kernel-headers-0:2.6.18-194.8.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-194.8.1.el5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-194.8.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "product": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "product_id": "kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-194.8.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "product": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "product_id": "kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-194.8.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "product_id": "kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-194.8.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "product": { "name": "kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "product_id": "kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-194.8.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "product_id": "kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-194.8.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "product_id": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-194.8.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-194.8.1.el5.x86_64", "product": { "name": "kernel-0:2.6.18-194.8.1.el5.x86_64", "product_id": "kernel-0:2.6.18-194.8.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-194.8.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "product": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "product_id": "kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-194.8.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "product_id": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-194.8.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "product": { "name": "kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "product_id": "kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-194.8.1.el5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-doc-0:2.6.18-194.8.1.el5.noarch", "product": { "name": "kernel-doc-0:2.6.18-194.8.1.el5.noarch", "product_id": "kernel-doc-0:2.6.18-194.8.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.18-194.8.1.el5?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.18-194.8.1.el5.src", "product": { "name": "kernel-0:2.6.18-194.8.1.el5.src", "product_id": "kernel-0:2.6.18-194.8.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-194.8.1.el5?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "product": { "name": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "product_id": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-194.8.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-194.8.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "product": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "product_id": "kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-194.8.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "product": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "product_id": "kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-194.8.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "product_id": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-194.8.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "product_id": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-194.8.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "product": { "name": "kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "product_id": "kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-194.8.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-194.8.1.el5.ppc64", "product": { "name": "kernel-0:2.6.18-194.8.1.el5.ppc64", "product_id": "kernel-0:2.6.18-194.8.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-194.8.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "product": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "product_id": "kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-194.8.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "product_id": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-194.8.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "product_id": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-194.8.1.el5?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-194.8.1.el5.ppc", "product": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.ppc", "product_id": "kernel-headers-0:2.6.18-194.8.1.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-194.8.1.el5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "product_id": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-194.8.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-194.8.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-194.8.1.el5.s390x", "product": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.s390x", "product_id": "kernel-devel-0:2.6.18-194.8.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-194.8.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-194.8.1.el5.s390x", "product": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.s390x", "product_id": "kernel-headers-0:2.6.18-194.8.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-194.8.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "product": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "product_id": "kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-194.8.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "product": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "product_id": "kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-194.8.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "product": { "name": "kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "product_id": "kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-194.8.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-194.8.1.el5.s390x", "product": { "name": "kernel-0:2.6.18-194.8.1.el5.s390x", "product_id": "kernel-0:2.6.18-194.8.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-194.8.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-194.8.1.el5.s390x", "product": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.s390x", "product_id": "kernel-debug-0:2.6.18-194.8.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-194.8.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "product": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "product_id": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-194.8.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-194.8.1.el5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "product_id": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-194.8.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-194.8.1.el5.ia64", "product": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.ia64", "product_id": "kernel-devel-0:2.6.18-194.8.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-194.8.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-194.8.1.el5.ia64", "product": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.ia64", "product_id": "kernel-headers-0:2.6.18-194.8.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-194.8.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "product": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "product_id": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-194.8.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-194.8.1.el5.ia64", "product": { "name": "kernel-xen-0:2.6.18-194.8.1.el5.ia64", "product_id": "kernel-xen-0:2.6.18-194.8.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-194.8.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "product": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "product_id": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-194.8.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "product_id": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-194.8.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-194.8.1.el5.ia64", "product": { "name": "kernel-0:2.6.18-194.8.1.el5.ia64", "product_id": "kernel-0:2.6.18-194.8.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-194.8.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-194.8.1.el5.ia64", "product": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.ia64", "product_id": "kernel-debug-0:2.6.18-194.8.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-194.8.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "product_id": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-194.8.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "product": { "name": "kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "product_id": "kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-194.8.1.el5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-194.8.1.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-194.8.1.el5.src" }, "product_reference": "kernel-0:2.6.18-194.8.1.el5.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-194.8.1.el5.noarch as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-194.8.1.el5.noarch", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-194.8.1.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-194.8.1.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-194.8.1.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-194.8.1.el5.src" }, "product_reference": "kernel-0:2.6.18-194.8.1.el5.src", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-194.8.1.el5.noarch as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-194.8.1.el5.noarch", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-194.8.1.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-194.8.1.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-194.8.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "relates_to_product_reference": "5Server" } ] }, "vulnerabilities": [ { "cve": "CVE-2010-0291", "discovery_date": "2010-01-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "556703" } ], "notes": [ { "category": "description", "text": "The Linux kernel before 2.6.32.4 allows local users to gain privileges or cause a denial of service (panic) by calling the (1) mmap or (2) mremap function, aka the \"do_mremap() mess\" or \"mremap/mmap mess.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: untangle the do_mremap()", "title": "Vulnerability summary" }, { "category": "other", "text": "The risks associated with fixing this bug are greater than the important severity security risk. We therefore currently have no plans to fix this flaw in Red Hat Enterprise Linux 3 and 4. This issue was addressed in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2010-0504.html and https://rhn.redhat.com/errata/RHSA-2010-0161.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0291" }, { "category": "external", "summary": "RHBZ#556703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=556703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0291", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0291" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0291", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0291" } ], "release_date": "2009-12-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-07-01T18:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0504" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: untangle the do_mremap()" }, { "cve": "CVE-2010-0622", "discovery_date": "2010-02-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "563091" } ], "notes": [ { "category": "description", "text": "The wake_futex_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly handle certain unlock operations for a Priority Inheritance (PI) futex, which allows local users to cause a denial of service (OOPS) and possibly have unspecified other impact via vectors involving modification of the futex value from user space.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: futex: Handle user space corruption gracefully", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4, as they do not include support for priority-inheriting futex. Future updates in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0622" }, { "category": "external", "summary": "RHBZ#563091", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=563091" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0622", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0622" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0622", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0622" } ], "release_date": "2010-02-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-07-01T18:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0504" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: futex: Handle user space corruption gracefully" }, { "cve": "CVE-2010-1087", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2010-02-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "567184" } ], "notes": [ { "category": "description", "text": "The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: NFS: Fix an Oops when truncating a file", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4 as they did not include the upstream commit 150030b7 that had introduced the problem. A future update in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1087" }, { "category": "external", "summary": "RHBZ#567184", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567184" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1087", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1087" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1087", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1087" } ], "release_date": "2010-02-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-07-01T18:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0504" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: NFS: Fix an Oops when truncating a file" }, { "cve": "CVE-2010-1088", "discovery_date": "2010-02-24T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "567813" } ], "notes": [ { "category": "description", "text": "fs/namei.c in Linux kernel 2.6.18 through 2.6.34 does not always follow NFS automount \"symlinks,\" which allows attackers to have an unknown impact, related to LOOKUP_FOLLOW.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: fix LOOKUP_FOLLOW on automount \"symlinks\"", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4 as this issue only affects kernel version 2.6.18 and onwards. A future update in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1088" }, { "category": "external", "summary": "RHBZ#567813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567813" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1088", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1088" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1088", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1088" } ], "release_date": "2010-02-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-07-01T18:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0504" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: fix LOOKUP_FOLLOW on automount \"symlinks\"" }, { "acknowledgments": [ { "names": [ "Wind River", "Nokia Siemens Networks" ] }, { "names": [ "Olli Jarva", "Jukka Taimisto" ], "organization": "Codenomicon Ltd" } ], "cve": "CVE-2010-1173", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2010-04-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "584645" } ], "notes": [ { "category": "description", "text": "The sctp_process_unk_param function in net/sctp/sm_make_chunk.c in the Linux kernel 2.6.33.3 and earlier, when SCTP is enabled, allows remote attackers to cause a denial of service (system crash) via an SCTPChunkInit packet containing multiple invalid parameters that require a large amount of error data.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: sctp: crash due to malformed SCTPChunkInit packet", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/CVE-2010-1173.\n\nThis issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 3 as it did not include support for SCTP. Future kernel updates in Red Hat Enterprise Linux 4, 5 and Red Hat Enterprise MRG may address this flaw.\n\nFor more information, please see http://kbase.redhat.com/faq/docs/DOC-31052.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1173" }, { "category": "external", "summary": "RHBZ#584645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=584645" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1173", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1173" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1173", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1173" } ], "release_date": "2010-04-29T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-07-01T18:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0504" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: sctp: crash due to malformed SCTPChunkInit packet" }, { "cve": "CVE-2010-1187", "discovery_date": "2010-03-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "578057" } ], "notes": [ { "category": "description", "text": "The Transparent Inter-Process Communication (TIPC) functionality in Linux kernel 2.6.16-rc1 through 2.6.33, and possibly other versions, allows local users to cause a denial of service (kernel OOPS) by sending datagrams through AF_TIPC before entering network mode, which triggers a NULL pointer dereference.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: tipc: Fix oops on send prior to entering networked mode", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/CVE-2010-1187.\n\nThis issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 3, 4 and Red Hat Enterprise MRG as they did not include support for Transparent Inter-Process Communication Protocol (TIPC). A future kernel update in Red Hat Enterprise Linux 5 may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1187" }, { "category": "external", "summary": "RHBZ#578057", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=578057" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1187", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1187" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1187", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1187" } ], "release_date": "2010-02-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-07-01T18:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0504" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: tipc: Fix oops on send prior to entering networked mode" }, { "acknowledgments": [ { "names": [ "Mario Mikocevic" ] } ], "cve": "CVE-2010-1436", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2010-04-26T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "586006" } ], "notes": [ { "category": "description", "text": "gfs2 in the Linux kernel 2.6.18, and possibly other versions, does not properly handle when the gfs2_quota struct occupies two separate pages, which allows local users to cause a denial of service (kernel panic) via certain manipulations that cause an out-of-bounds write, as demonstrated by writing from an ext3 file system to a gfs2 file system.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: gfs2 buffer overflow", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and Red Hat Enterprise MRG as they did not include support for the GFS2 file system.\n\nA future kernel update in Red Hat Enterprise Linux 5 will address this issue.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1436" }, { "category": "external", "summary": "RHBZ#586006", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=586006" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1436", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1436" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1436", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1436" } ], "release_date": "2010-01-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-07-01T18:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0504" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: gfs2 buffer overflow" }, { "cve": "CVE-2010-1437", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2010-04-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "585094" } ], "notes": [ { "category": "description", "text": "Race condition in the find_keyring_by_name function in security/keys/keyring.c in the Linux kernel 2.6.34-rc5 and earlier allows local users to cause a denial of service (memory corruption and system crash) or possibly have unspecified other impact via keyctl session commands that trigger access to a dead keyring that is undergoing deletion by the key_cleanup function.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: keyrings: find_keyring_by_name() can gain the freed keyring", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 3. Future kernel updates in Red Hat Enterprise Linux 4, 5 and Red Hat Enterprise MRG will address this issue.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1437" }, { "category": "external", "summary": "RHBZ#585094", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=585094" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1437", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1437" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1437", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1437" } ], "release_date": "2010-04-23T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-07-01T18:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0504" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: keyrings: find_keyring_by_name() can gain the freed keyring" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2010-1641", "discovery_date": "2010-05-24T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "595579" } ], "notes": [ { "category": "description", "text": "The do_gfs2_set_flags function in fs/gfs2/file.c in the Linux kernel before 2.6.34-git10 does not verify the ownership of a file, which allows local users to bypass intended access restrictions via a SETFLAGS ioctl request.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: GFS2: The setflags ioctl() doesn\u0027t check file ownership", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/CVE-2010-1641.\n\nThis issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 3, 4 and Red Hat Enterprise MRG as they did not include\nsupport for the GFS2 file system.\n\nA future kernel update in Red Hat Enterprise Linux 5 will address this issue.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1641" }, { "category": "external", "summary": "RHBZ#595579", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=595579" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1641", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1641" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1641", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1641" } ], "release_date": "2010-05-24T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-07-01T18:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0504" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-0:2.6.18-194.8.1.el5.src", "5Client:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-0:2.6.18-194.8.1.el5.src", "5Server:kernel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-194.8.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.i386", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-194.8.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-194.8.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-194.8.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: GFS2: The setflags ioctl() doesn\u0027t check file ownership" } ] }
rhsa-2010_0631
Vulnerability from csaf_redhat
Published
2010-08-17 15:52
Modified
2024-11-22 03:38
Summary
Red Hat Security Advisory: kernel-rt security and bug fix update
Notes
Topic
Updated kernel-rt packages that fix multiple security issues and several
bugs are now available for Red Hat Enterprise MRG 1.2.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
[Updated 18 August 2010]
The CVE-2010-2240 description has been updated to reflect that the issue
affects both 32-bit and 64-bit systems. No changes have been made to the
packages.
Details
These packages contain the Linux kernel, the core of any Linux operating
system.
Security fixes:
* unsafe sprintf() use in the Bluetooth implementation. Creating a large
number of Bluetooth L2CAP, SCO, or RFCOMM sockets could result in arbitrary
memory pages being overwritten, allowing a local, unprivileged user to
cause a denial of service or escalate their privileges. (CVE-2010-1084,
Important)
* a flaw in the Unidirectional Lightweight Encapsulation implementation,
allowing a remote attacker to send a specially-crafted ISO MPEG-2 Transport
Stream frame to a target system, resulting in a denial of service.
(CVE-2010-1086, Important)
* NULL pointer dereference in nfs_wb_page_cancel(), allowing a local user
on a system that has an NFS-mounted file system to cause a denial of
service or escalate their privileges on that system. (CVE-2010-1087,
Important)
* flaw in sctp_process_unk_param(), allowing a remote attacker to send a
specially-crafted SCTP packet to an SCTP listening port on a target system,
causing a denial of service. (CVE-2010-1173, Important)
* race condition between finding a keyring by name and destroying a freed
keyring in the key management facility, allowing a local, unprivileged
user to cause a denial of service or escalate their privileges.
(CVE-2010-1437, Important)
* systems using the kernel NFS server to export a shared memory file system
and that have the sysctl overcommit_memory variable set to never overcommit
(a value of 2; by default, it is set to 0), may experience a NULL pointer
dereference, allowing a local, unprivileged user to cause a denial of
service or escalate their privileges. (CVE-2008-7256, CVE-2010-1643,
Important)
* when an application has a stack overflow, the stack could silently
overwrite another memory mapped area instead of a segmentation fault
occurring, which could cause an application to execute arbitrary code.
(CVE-2010-2240, Important)
* flaw in CIFSSMBWrite() could allow a remote attacker to send a
specially-crafted SMB response packet to a target CIFS client, resulting in
a denial of service. (CVE-2010-2248, Important)
* buffer overflow flaws in the kernel's implementation of the server-side
XDR for NFSv4 could allow an attacker on the local network to send a
specially-crafted large compound request to the NFSv4 server, possibly
resulting in a denial of service or code execution. (CVE-2010-2521,
Important)
* NULL pointer dereference in the firewire-ohci driver used for OHCI
compliant IEEE 1394 controllers could allow a local, unprivileged user with
access to /dev/fw* files to issue certain IOCTL calls, causing a denial of
service or privilege escalation. The FireWire modules are blacklisted by
default. If enabled, only root has access to the files noted above by
default. (CVE-2009-4138, Moderate)
* flaw in the link_path_walk() function. Using the file descriptor
returned by open() with the O_NOFOLLOW flag on a subordinate NFS-mounted
file system, could result in a NULL pointer dereference, causing a denial
of service or privilege escalation. (CVE-2010-1088, Moderate)
* memory leak in release_one_tty() could allow a local, unprivileged user
to cause a denial of service. (CVE-2010-1162, Moderate)
* information leak in the USB implementation. Certain USB errors could
result in an uninitialized kernel buffer being sent to user-space. An
attacker with physical access to a target system could use this flaw to
cause an information leak. (CVE-2010-1083, Low)
Red Hat would like to thank Neil Brown for reporting CVE-2010-1084; Ang Way
Chuang for reporting CVE-2010-1086; Jukka Taimisto and Olli Jarva of
Codenomicon Ltd, Nokia Siemens Networks, and Wind River on behalf of their
customer, for responsibly reporting CVE-2010-1173; the X.Org security team
for reporting CVE-2010-2240, with upstream acknowledging Rafal Wojtczuk as
the original reporter; and Marcus Meissner for reporting CVE-2010-1083.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel-rt packages that fix multiple security issues and several\nbugs are now available for Red Hat Enterprise MRG 1.2.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\n[Updated 18 August 2010]\nThe CVE-2010-2240 description has been updated to reflect that the issue\naffects both 32-bit and 64-bit systems. No changes have been made to the\npackages.", "title": "Topic" }, { "category": "general", "text": "These packages contain the Linux kernel, the core of any Linux operating\nsystem.\n\nSecurity fixes:\n\n* unsafe sprintf() use in the Bluetooth implementation. Creating a large\nnumber of Bluetooth L2CAP, SCO, or RFCOMM sockets could result in arbitrary\nmemory pages being overwritten, allowing a local, unprivileged user to\ncause a denial of service or escalate their privileges. (CVE-2010-1084,\nImportant)\n\n* a flaw in the Unidirectional Lightweight Encapsulation implementation,\nallowing a remote attacker to send a specially-crafted ISO MPEG-2 Transport\nStream frame to a target system, resulting in a denial of service.\n(CVE-2010-1086, Important)\n\n* NULL pointer dereference in nfs_wb_page_cancel(), allowing a local user\non a system that has an NFS-mounted file system to cause a denial of\nservice or escalate their privileges on that system. (CVE-2010-1087,\nImportant)\n\n* flaw in sctp_process_unk_param(), allowing a remote attacker to send a\nspecially-crafted SCTP packet to an SCTP listening port on a target system,\ncausing a denial of service. (CVE-2010-1173, Important)\n\n* race condition between finding a keyring by name and destroying a freed\nkeyring in the key management facility, allowing a local, unprivileged\nuser to cause a denial of service or escalate their privileges.\n(CVE-2010-1437, Important)\n\n* systems using the kernel NFS server to export a shared memory file system\nand that have the sysctl overcommit_memory variable set to never overcommit\n(a value of 2; by default, it is set to 0), may experience a NULL pointer\ndereference, allowing a local, unprivileged user to cause a denial of\nservice or escalate their privileges. (CVE-2008-7256, CVE-2010-1643,\nImportant)\n\n* when an application has a stack overflow, the stack could silently\noverwrite another memory mapped area instead of a segmentation fault\noccurring, which could cause an application to execute arbitrary code.\n(CVE-2010-2240, Important)\n\n* flaw in CIFSSMBWrite() could allow a remote attacker to send a\nspecially-crafted SMB response packet to a target CIFS client, resulting in\na denial of service. (CVE-2010-2248, Important)\n\n* buffer overflow flaws in the kernel\u0027s implementation of the server-side\nXDR for NFSv4 could allow an attacker on the local network to send a\nspecially-crafted large compound request to the NFSv4 server, possibly\nresulting in a denial of service or code execution. (CVE-2010-2521,\nImportant)\n\n* NULL pointer dereference in the firewire-ohci driver used for OHCI\ncompliant IEEE 1394 controllers could allow a local, unprivileged user with\naccess to /dev/fw* files to issue certain IOCTL calls, causing a denial of\nservice or privilege escalation. The FireWire modules are blacklisted by\ndefault. If enabled, only root has access to the files noted above by\ndefault. (CVE-2009-4138, Moderate)\n\n* flaw in the link_path_walk() function. Using the file descriptor\nreturned by open() with the O_NOFOLLOW flag on a subordinate NFS-mounted\nfile system, could result in a NULL pointer dereference, causing a denial\nof service or privilege escalation. (CVE-2010-1088, Moderate)\n\n* memory leak in release_one_tty() could allow a local, unprivileged user\nto cause a denial of service. (CVE-2010-1162, Moderate)\n\n* information leak in the USB implementation. Certain USB errors could\nresult in an uninitialized kernel buffer being sent to user-space. An\nattacker with physical access to a target system could use this flaw to\ncause an information leak. (CVE-2010-1083, Low)\n\nRed Hat would like to thank Neil Brown for reporting CVE-2010-1084; Ang Way\nChuang for reporting CVE-2010-1086; Jukka Taimisto and Olli Jarva of\nCodenomicon Ltd, Nokia Siemens Networks, and Wind River on behalf of their\ncustomer, for responsibly reporting CVE-2010-1173; the X.Org security team\nfor reporting CVE-2010-2240, with upstream acknowledging Rafal Wojtczuk as\nthe original reporter; and Marcus Meissner for reporting CVE-2010-1083.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2010:0631", "url": "https://access.redhat.com/errata/RHSA-2010:0631" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://www.redhat.com/docs/en-US/errata/RHSA-2010-0631/Kernel_Security_Update/index.html", "url": "http://www.redhat.com/docs/en-US/errata/RHSA-2010-0631/Kernel_Security_Update/index.html" }, { "category": "external", "summary": "https://access.redhat.com/kb/docs/DOC-31052", "url": "https://access.redhat.com/kb/docs/DOC-31052" }, { "category": "external", "summary": "547236", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547236" }, { "category": "external", "summary": "555671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=555671" }, { "category": "external", "summary": "562075", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=562075" }, { "category": "external", "summary": "566624", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=566624" }, { "category": "external", "summary": "567184", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567184" }, { "category": "external", "summary": "567813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567813" }, { "category": "external", "summary": "569237", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=569237" }, { "category": "external", "summary": "576018", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=576018" }, { "category": "external", "summary": "582076", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=582076" }, { "category": "external", "summary": "584645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=584645" }, { "category": "external", "summary": "585094", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=585094" }, { "category": "external", "summary": "594630", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=594630" }, { "category": "external", "summary": "595970", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=595970" }, { "category": "external", "summary": "601210", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=601210" }, { "category": "external", "summary": "606611", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606611" }, { "category": "external", "summary": "608583", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=608583" }, { "category": "external", "summary": "612028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=612028" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0631.json" } ], "title": "Red Hat Security Advisory: kernel-rt security and bug fix update", "tracking": { "current_release_date": "2024-11-22T03:38:20+00:00", "generator": { "date": "2024-11-22T03:38:20+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2010:0631", "initial_release_date": "2010-08-17T15:52:00+00:00", "revision_history": [ { "date": "2010-08-17T15:52:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2010-08-18T03:58:39+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:38:20+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "MRG Realtime for RHEL 5 Server", "product": { "name": "MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_mrg:1::el5" } } } ], "category": "product_family", "name": "Red Hat Enterprise MRG for RHEL-5" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@2.6.24.7-161.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@2.6.24.7-161.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-devel@2.6.24.7-161.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla@2.6.24.7-161.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@2.6.24.7-161.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@2.6.24.7-161.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace@2.6.24.7-161.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@2.6.24.7-161.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@2.6.24.7-161.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@2.6.24.7-161.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.24.7-161.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common@2.6.24.7-161.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "product": { "name": "kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "product_id": "kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug@2.6.24.7-161.el5rt?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@2.6.24.7-161.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@2.6.24.7-161.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-devel@2.6.24.7-161.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla@2.6.24.7-161.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@2.6.24.7-161.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@2.6.24.7-161.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace@2.6.24.7-161.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@2.6.24.7-161.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@2.6.24.7-161.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@2.6.24.7-161.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.24.7-161.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common@2.6.24.7-161.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "product": { "name": "kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "product_id": "kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug@2.6.24.7-161.el5rt?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "product": { "name": "kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "product_id": "kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-firmware@2.6.24.7-161.el5rt?arch=noarch" } } }, { "category": "product_version", "name": "kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "product": { "name": "kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "product_id": "kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-doc@2.6.24.7-161.el5rt?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-0:2.6.24.7-161.el5rt.src", "product": { "name": "kernel-rt-0:2.6.24.7-161.el5rt.src", "product_id": "kernel-rt-0:2.6.24.7-161.el5rt.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.24.7-161.el5rt?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.24.7-161.el5rt.src as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src" }, "product_reference": "kernel-rt-0:2.6.24.7-161.el5rt.src", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-devel-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch" }, "product_reference": "kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch" }, "product_reference": "kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686" }, "product_reference": "kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" }, "product_reference": "kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" } ] }, "vulnerabilities": [ { "cve": "CVE-2008-7256", "discovery_date": "2010-05-26T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "595970" } ], "notes": [ { "category": "description", "text": "mm/shmem.c in the Linux kernel before 2.6.28-rc8, when strict overcommit is enabled and CONFIG_SECURITY is disabled, does not properly handle the export of shmemfs objects by knfsd, which allows attackers to cause a denial of service (NULL pointer dereference and knfsd crash) or possibly have unspecified other impact via unknown vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-1643.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nfsd: fix vm overcommit crash", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and 5 as they did not include nfs-export support for tmpfs. A future kernel update in Red Hat Enterprise MRG will address this issue.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-7256" }, { "category": "external", "summary": "RHBZ#595970", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=595970" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-7256", "url": "https://www.cve.org/CVERecord?id=CVE-2008-7256" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-7256", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-7256" } ], "release_date": "2008-10-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: nfsd: fix vm overcommit crash" }, { "cve": "CVE-2009-4138", "discovery_date": "2009-12-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "547236" } ], "notes": [ { "category": "description", "text": "drivers/firewire/ohci.c in the Linux kernel before 2.6.32-git9, when packet-per-buffer mode is used, allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unknown other impact via an unspecified ioctl associated with receiving an ISO packet that contains zero in the payload-length field.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: firewire: ohci: handle receive packets with a data length of zero", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/CVE-2009-4138\n\nThe Linux kernel packages as shipped with Red Hat Enterprise Linux 3 and 4 have a different (and older) implementation of the driver for OHCI 1394 controllers, which is not affected by this issue.\n\nA future kernel update for Red Hat Enterprise MRG will address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4138" }, { "category": "external", "summary": "RHBZ#547236", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547236" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4138", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4138" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4138", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4138" } ], "release_date": "2009-12-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: firewire: ohci: handle receive packets with a data length of zero" }, { "acknowledgments": [ { "names": [ "Marcus Meissner" ] } ], "cve": "CVE-2010-1083", "discovery_date": "2010-02-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "566624" } ], "notes": [ { "category": "description", "text": "The processcompl_compat function in drivers/usb/core/devio.c in Linux kernel 2.6.x through 2.6.32, and possibly other versions, does not clear the transfer buffer before returning to userspace when a USB command fails, which might make it easier for physically proximate attackers to obtain sensitive information (kernel memory).", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: information leak via userspace USB interface", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue has been rated as having low security impact.\n\nA future update in Red Hat Enterprise Linux 4, 5, and Red Hat Enterprise MRG may address this flaw. This issue is not planned to be fixed in Red Hat Enterprise Linux 3, due to this product being in Production 3 of its maintenance life-cycle, where only qualified security errata of important or critical impact are addressed.\n\nFor further information about Errata Support Policy, visit: https://access.redhat.com/support/policy/updates/errata/", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1083" }, { "category": "external", "summary": "RHBZ#566624", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=566624" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1083", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1083" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1083", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1083" } ], "release_date": "2010-02-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: information leak via userspace USB interface" }, { "acknowledgments": [ { "names": [ "Neil Brown" ] } ], "cve": "CVE-2010-1084", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2010-03-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "576018" } ], "notes": [ { "category": "description", "text": "Linux kernel 2.6.18 through 2.6.33, and possibly other versions, allows remote attackers to cause a denial of service (memory corruption) via a large number of Bluetooth sockets, related to the size of sysfs files in (1) net/bluetooth/l2cap.c, (2) net/bluetooth/rfcomm/core.c, (3) net/bluetooth/rfcomm/sock.c, and (4) net/bluetooth/sco.c.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: bluetooth: potential bad memory access with sysfs files", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of the Linux kernel as shipped with Red Hat Enterprise 3 and 4, as it did not use sysfs files. A future update in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1084" }, { "category": "external", "summary": "RHBZ#576018", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=576018" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1084", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1084" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1084", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1084" } ], "release_date": "2010-03-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: bluetooth: potential bad memory access with sysfs files" }, { "acknowledgments": [ { "names": [ "Ang Way Chuang" ] } ], "cve": "CVE-2010-1086", "cwe": { "id": "CWE-835", "name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)" }, "discovery_date": "2010-03-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "569237" } ], "notes": [ { "category": "description", "text": "The ULE decapsulation functionality in drivers/media/dvb/dvb-core/dvb_net.c in dvb-core in Linux kernel 2.6.33 and earlier allows attackers to cause a denial of service (infinite loop) via a crafted MPEG2-TS frame, related to an invalid Payload Pointer ULE.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: dvb-core: DoS bug in ULE decapsulation code", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of the Linux kernel as shipped with Red Hat Enterprise Linux 3 as it did not include support for ULE (Unidirectional Lightweight Encapsulation). We have included a fix for this issue in Red Hat Enterprise Linux 4 and 5 however the affected module is not build by default.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1086" }, { "category": "external", "summary": "RHBZ#569237", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=569237" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1086", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1086" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1086", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1086" } ], "release_date": "2010-02-25T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: dvb-core: DoS bug in ULE decapsulation code" }, { "cve": "CVE-2010-1087", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2010-02-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "567184" } ], "notes": [ { "category": "description", "text": "The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: NFS: Fix an Oops when truncating a file", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4 as they did not include the upstream commit 150030b7 that had introduced the problem. A future update in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1087" }, { "category": "external", "summary": "RHBZ#567184", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567184" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1087", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1087" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1087", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1087" } ], "release_date": "2010-02-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: NFS: Fix an Oops when truncating a file" }, { "cve": "CVE-2010-1088", "discovery_date": "2010-02-24T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "567813" } ], "notes": [ { "category": "description", "text": "fs/namei.c in Linux kernel 2.6.18 through 2.6.34 does not always follow NFS automount \"symlinks,\" which allows attackers to have an unknown impact, related to LOOKUP_FOLLOW.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: fix LOOKUP_FOLLOW on automount \"symlinks\"", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4 as this issue only affects kernel version 2.6.18 and onwards. A future update in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1088" }, { "category": "external", "summary": "RHBZ#567813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567813" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1088", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1088" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1088", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1088" } ], "release_date": "2010-02-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: fix LOOKUP_FOLLOW on automount \"symlinks\"" }, { "cve": "CVE-2010-1162", "discovery_date": "2010-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "582076" } ], "notes": [ { "category": "description", "text": "The release_one_tty function in drivers/char/tty_io.c in the Linux kernel before 2.6.34-rc4 omits certain required calls to the put_pid function, which has unspecified impact and local attack vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: tty: release_one_tty() forgets to put pids", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and 5 as they did not include upstream commit ab521dc0 that introduced the problem. This issue was addressed in Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2010-0631.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1162" }, { "category": "external", "summary": "RHBZ#582076", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=582076" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1162", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1162" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1162", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1162" } ], "release_date": "2010-04-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: tty: release_one_tty() forgets to put pids" }, { "acknowledgments": [ { "names": [ "Wind River", "Nokia Siemens Networks" ] }, { "names": [ "Olli Jarva", "Jukka Taimisto" ], "organization": "Codenomicon Ltd" } ], "cve": "CVE-2010-1173", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2010-04-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "584645" } ], "notes": [ { "category": "description", "text": "The sctp_process_unk_param function in net/sctp/sm_make_chunk.c in the Linux kernel 2.6.33.3 and earlier, when SCTP is enabled, allows remote attackers to cause a denial of service (system crash) via an SCTPChunkInit packet containing multiple invalid parameters that require a large amount of error data.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: sctp: crash due to malformed SCTPChunkInit packet", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/CVE-2010-1173.\n\nThis issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 3 as it did not include support for SCTP. Future kernel updates in Red Hat Enterprise Linux 4, 5 and Red Hat Enterprise MRG may address this flaw.\n\nFor more information, please see http://kbase.redhat.com/faq/docs/DOC-31052.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1173" }, { "category": "external", "summary": "RHBZ#584645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=584645" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1173", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1173" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1173", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1173" } ], "release_date": "2010-04-29T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: sctp: crash due to malformed SCTPChunkInit packet" }, { "cve": "CVE-2010-1437", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2010-04-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "585094" } ], "notes": [ { "category": "description", "text": "Race condition in the find_keyring_by_name function in security/keys/keyring.c in the Linux kernel 2.6.34-rc5 and earlier allows local users to cause a denial of service (memory corruption and system crash) or possibly have unspecified other impact via keyctl session commands that trigger access to a dead keyring that is undergoing deletion by the key_cleanup function.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: keyrings: find_keyring_by_name() can gain the freed keyring", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 3. Future kernel updates in Red Hat Enterprise Linux 4, 5 and Red Hat Enterprise MRG will address this issue.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1437" }, { "category": "external", "summary": "RHBZ#585094", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=585094" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1437", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1437" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1437", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1437" } ], "release_date": "2010-04-23T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: keyrings: find_keyring_by_name() can gain the freed keyring" }, { "cve": "CVE-2010-1643", "discovery_date": "2010-05-26T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "595970" } ], "notes": [ { "category": "description", "text": "mm/shmem.c in the Linux kernel before 2.6.28-rc3, when strict overcommit is enabled, does not properly handle the export of shmemfs objects by knfsd, which allows attackers to cause a denial of service (NULL pointer dereference and knfsd crash) or possibly have unspecified other impact via unknown vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nfsd: fix vm overcommit crash", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and 5 as they did not include nfs-export support for tmpfs. A future kernel update in Red Hat Enterprise MRG will address this issue.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1643" }, { "category": "external", "summary": "RHBZ#595970", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=595970" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1643", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1643" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1643", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1643" } ], "release_date": "2008-10-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: nfsd: fix vm overcommit crash" }, { "acknowledgments": [ { "names": [ "X.Org security team" ] }, { "names": [ "Rafal Wojtczuk" ], "summary": "Acknowledged by upstream." } ], "cve": "CVE-2010-2240", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2010-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "606611" } ], "notes": [ { "category": "description", "text": "The do_anonymous_page function in mm/memory.c in the Linux kernel before 2.6.27.52, 2.6.32.x before 2.6.32.19, 2.6.34.x before 2.6.34.4, and 2.6.35.x before 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent attackers to execute arbitrary code by writing to the bottom page of a shared memory segment, as demonstrated by a memory-exhaustion attack against the X.Org X server.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: mm: keep a guard page below a grow-down stack segment", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-2240" }, { "category": "external", "summary": "RHBZ#606611", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606611" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-2240", "url": "https://www.cve.org/CVERecord?id=CVE-2010-2240" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-2240", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2240" } ], "release_date": "2010-08-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: mm: keep a guard page below a grow-down stack segment" }, { "cve": "CVE-2010-2248", "cwe": { "id": "CWE-617", "name": "Reachable Assertion" }, "discovery_date": "2010-06-28T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "608583" } ], "notes": [ { "category": "description", "text": "fs/cifs/cifssmb.c in the CIFS implementation in the Linux kernel before 2.6.34-rc4 allows remote attackers to cause a denial of service (panic) via an SMB response packet with an invalid CountHigh value, as demonstrated by a response from an OS/2 server, related to the CIFSSMBWrite and CIFSSMBWrite2 functions.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: cifs: Fix a kernel BUG with remote OS/2 server", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 3 as it did not have support for CIFS. Future updates in Red Hat Enterprise Linux 4, 5, and Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-2248" }, { "category": "external", "summary": "RHBZ#608583", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=608583" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-2248", "url": "https://www.cve.org/CVERecord?id=CVE-2010-2248" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-2248", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2248" } ], "release_date": "2010-03-31T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: cifs: Fix a kernel BUG with remote OS/2 server" }, { "cve": "CVE-2010-2521", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2010-07-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "612028" } ], "notes": [ { "category": "description", "text": "Multiple buffer overflows in fs/nfsd/nfs4xdr.c in the XDR implementation in the NFS server in the Linux kernel before 2.6.34-rc6 allow remote attackers to cause a denial of service (panic) or possibly execute arbitrary code via a crafted NFSv4 compound WRITE request, related to the read_buf and nfsd4_decode_compound functions.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nfsd4: bug in read_buf", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red\nHat Enterprise Linux 3 as it did not include support for Network File System (NFS) version 4. Future updates in Red Hat Enterprise 4, 5, and Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-2521" }, { "category": "external", "summary": "RHBZ#612028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=612028" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-2521", "url": "https://www.cve.org/CVERecord?id=CVE-2010-2521" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-2521", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2521" } ], "release_date": "2010-04-20T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-08-17T15:52:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues and fix the bugs noted in\nthe Kernel Security Update document, linked to in the References. The\nsystem must be rebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0631" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 8.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-firmware-0:2.6.24.7-161.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-161.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-161.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: nfsd4: bug in read_buf" } ] }
ghsa-5qqv-ppvq-27jp
Vulnerability from github
Published
2022-05-02 06:18
Modified
2022-05-02 06:18
Details
The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible.
{ "affected": [], "aliases": [ "CVE-2010-1087" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2010-04-06T22:30:00Z", "severity": "HIGH" }, "details": "The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible.", "id": "GHSA-5qqv-ppvq-27jp", "modified": "2022-05-02T06:18:55Z", "published": "2022-05-02T06:18:55Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1087" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567184" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10442" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=9f557cd8073104b39528794d44e129331ded649f" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00006.html" }, { "type": "WEB", "url": "http://secunia.com/advisories/39830" }, { "type": "WEB", "url": "http://secunia.com/advisories/40645" }, { "type": "WEB", "url": "http://secunia.com/advisories/43315" }, { "type": "WEB", "url": "http://www.debian.org/security/2010/dsa-2053" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2010/03/03/1" }, { "type": "WEB", "url": "http://www.securityfocus.com/archive/1/516397/100/0/threaded" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/39569" }, { "type": "WEB", "url": "http://www.vmware.com/security/advisories/VMSA-2011-0003.html" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2010/1857" } ], "schema_version": "1.4.0", "severity": [] }
gsd-2010-1087
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2010-1087", "description": "The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible.", "id": "GSD-2010-1087", "references": [ "https://www.suse.com/security/cve/CVE-2010-1087.html", "https://www.debian.org/security/2010/dsa-2053", "https://access.redhat.com/errata/RHSA-2010:0631", "https://access.redhat.com/errata/RHSA-2010:0504", "https://linux.oracle.com/cve/CVE-2010-1087.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2010-1087" ], "details": "The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible.", "id": "GSD-2010-1087", "modified": "2023-12-13T01:21:33.334256Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2010-1087", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "oval:org.mitre.oval:def:10442", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10442" }, { "name": "39569", "refsource": "BID", "url": "http://www.securityfocus.com/bid/39569" }, { "name": "SUSE-SA:2010:031", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00006.html" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=9f557cd8073104b39528794d44e129331ded649f", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=9f557cd8073104b39528794d44e129331ded649f" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=567184", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567184" }, { "name": "40645", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/40645" }, { "name": "[oss-security] 20100303 CVE request: kernel: NFS: Fix an Oops when truncating a file", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2010/03/03/1" }, { "name": "43315", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/43315" }, { "name": "http://www.vmware.com/security/advisories/VMSA-2011-0003.html", "refsource": "CONFIRM", "url": "http://www.vmware.com/security/advisories/VMSA-2011-0003.html" }, { "name": "DSA-2053", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2010/dsa-2053" }, { "name": "20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/516397/100/0/threaded" }, { "name": "39830", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/39830" }, { "name": "ADV-2010-1857", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2010/1857" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.33:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.33:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.33:rc3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.33:rc5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.33:rc4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "2.6.33", "versionStartIncluding": "2.6.0", "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2010-1087" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ] }, "references": { "reference_data": [ { "name": "[oss-security] 20100303 CVE request: kernel: NFS: Fix an Oops when truncating a file", "refsource": "MLIST", "tags": [ "Mailing List", "Patch", "Third Party Advisory" ], "url": "http://www.openwall.com/lists/oss-security/2010/03/03/1" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=9f557cd8073104b39528794d44e129331ded649f", "refsource": "CONFIRM", "tags": [ "Patch", "Vendor Advisory" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=9f557cd8073104b39528794d44e129331ded649f" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=567184", "refsource": "CONFIRM", "tags": [ "Issue Tracking", "Patch", "Third Party Advisory" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=567184" }, { "name": "39569", "refsource": "BID", "tags": [ "Third Party Advisory", "VDB Entry" ], "url": "http://www.securityfocus.com/bid/39569" }, { "name": "DSA-2053", "refsource": "DEBIAN", "tags": [ "Third Party Advisory" ], "url": "http://www.debian.org/security/2010/dsa-2053" }, { "name": "39830", "refsource": "SECUNIA", "tags": [ "Third Party Advisory" ], "url": "http://secunia.com/advisories/39830" }, { "name": "SUSE-SA:2010:031", "refsource": "SUSE", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00006.html" }, { "name": "ADV-2010-1857", "refsource": "VUPEN", "tags": [ "Third Party Advisory" ], "url": "http://www.vupen.com/english/advisories/2010/1857" }, { "name": "40645", "refsource": "SECUNIA", "tags": [ "Third Party Advisory" ], "url": "http://secunia.com/advisories/40645" }, { "name": "http://www.vmware.com/security/advisories/VMSA-2011-0003.html", "refsource": "CONFIRM", "tags": [ "Third Party Advisory" ], "url": "http://www.vmware.com/security/advisories/VMSA-2011-0003.html" }, { "name": "43315", "refsource": "SECUNIA", "tags": [ "Third Party Advisory" ], "url": "http://secunia.com/advisories/43315" }, { "name": "oval:org.mitre.oval:def:10442", "refsource": "OVAL", "tags": [ "Third Party Advisory" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10442" }, { "name": "20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX", "refsource": "BUGTRAQ", "tags": [ "Third Party Advisory", "VDB Entry" ], "url": "http://www.securityfocus.com/archive/1/516397/100/0/threaded" } ] } }, "impact": { "baseMetricV2": { "acInsufInfo": true, "cvssV2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false } }, "lastModifiedDate": "2018-11-16T16:19Z", "publishedDate": "2010-04-06T22:30Z" } } }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.