Vulnerability-Lookup

CVE-2011-2723 (GCVE-0-2011-2723)

Vulnerability from cvelistv5 – Published: 2011-09-06 15:00 – Updated: 2024-08-06 23:08

Summary

The skb_gro_header_slow function in include/linux/netdevice.h in the Linux kernel before 2.6.39.4, when Generic Receive Offload (GRO) is enabled, resets certain fields in incorrect situations, which allows remote attackers to cause a denial of service (system crash) via crafted network traffic.

Severity

No CVSS data available.

CWE

Assigner

redhat

References

9 references

URL	Tags
https://bugzilla.redhat.com/show_bug.cgi?id=726552	x_refsource_CONFIRM
http://www.redhat.com/support/errata/RHSA-2011-13…	vendor-advisoryx_refsource_REDHAT
http://openwall.com/lists/oss-security/2011/07/29/1	mailing-listx_refsource_MLIST
http://securitytracker.com/id?1025876	vdb-entryx_refsource_SECTRACK
http://git.kernel.org/?p=linux/kernel/git/torvald…	x_refsource_CONFIRM
http://openwall.com/lists/oss-security/2011/07/28/13	mailing-listx_refsource_MLIST
http://www.kernel.org/pub/linux/kernel/v2.6/Chang…	x_refsource_CONFIRM
http://www.securityfocus.com/bid/48929	vdb-entryx_refsource_BID
http://marc.info/?l=bugtraq&m=139447903326211&w=2	vendor-advisoryx_refsource_HP

Date Public

2011-07-28 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T23:08:23.800Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552"
          },
          {
            "name": "RHSA-2011:1321",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-1321.html"
          },
          {
            "name": "[oss-security] 20110729 Re: CVE request: kernel: gro: Only reset frag0 when skb can be pulled",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://openwall.com/lists/oss-security/2011/07/29/1"
          },
          {
            "name": "1025876",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1025876"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=17dd759c67f21e34f2156abcf415e1f60605a188"
          },
          {
            "name": "[oss-security] 20110728 CVE request: kernel: gro: Only reset frag0 when skb can be pulled",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://openwall.com/lists/oss-security/2011/07/28/13"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4"
          },
          {
            "name": "48929",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/48929"
          },
          {
            "name": "HPSBGN02970",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=139447903326211\u0026w=2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2011-07-28T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The skb_gro_header_slow function in include/linux/netdevice.h in the Linux kernel before 2.6.39.4, when Generic Receive Offload (GRO) is enabled, resets certain fields in incorrect situations, which allows remote attackers to cause a denial of service (system crash) via crafted network traffic."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-08-19T15:57:01.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552"
        },
        {
          "name": "RHSA-2011:1321",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-1321.html"
        },
        {
          "name": "[oss-security] 20110729 Re: CVE request: kernel: gro: Only reset frag0 when skb can be pulled",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://openwall.com/lists/oss-security/2011/07/29/1"
        },
        {
          "name": "1025876",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1025876"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=17dd759c67f21e34f2156abcf415e1f60605a188"
        },
        {
          "name": "[oss-security] 20110728 CVE request: kernel: gro: Only reset frag0 when skb can be pulled",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://openwall.com/lists/oss-security/2011/07/28/13"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4"
        },
        {
          "name": "48929",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/48929"
        },
        {
          "name": "HPSBGN02970",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=139447903326211\u0026w=2"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2011-2723",
    "datePublished": "2011-09-06T15:00:00.000Z",
    "dateReserved": "2011-07-11T00:00:00.000Z",
    "dateUpdated": "2024-08-06T23:08:23.800Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2011-2723",
      "date": "2026-06-02",
      "epss": "0.00842",
      "percentile": "0.75063"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"2.6.39.4\", \"matchCriteriaId\": \"5091C6FD-BB24-4BC8-B5FD-9907E1C63FD9\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"The skb_gro_header_slow function in include/linux/netdevice.h in the Linux kernel before 2.6.39.4, when Generic Receive Offload (GRO) is enabled, resets certain fields in incorrect situations, which allows remote attackers to cause a denial of service (system crash) via crafted network traffic.\"}, {\"lang\": \"es\", \"value\": \"La funci\\u00f3n skb_gro_header_slow en includelinuxnetdevice.h en kernel de Linux anteriores a v2.6.39.4, cuando est\\u00e1 activada la opci\\u00f3n Generic Receive Offload (GRO), reinicia ciertos campos en situaciones incorrectas, lo que permite producir una denegaci\\u00f3n de servicio (ca\\u00edda del sistema) mediante una tr\\u00e1fico de red manipulado.\"}]",
      "id": "CVE-2011-2723",
      "lastModified": "2024-11-21T01:28:50.197",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:A/AC:M/Au:N/C:N/I:N/A:C\", \"baseScore\": 5.7, \"accessVector\": \"ADJACENT_NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 5.5, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2011-09-06T15:55:08.337",
      "references": "[{\"url\": \"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=17dd759c67f21e34f2156abcf415e1f60605a188\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=139447903326211\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://openwall.com/lists/oss-security/2011/07/28/13\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://openwall.com/lists/oss-security/2011/07/29/1\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://securitytracker.com/id?1025876\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1321.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/48929\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=726552\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=17dd759c67f21e34f2156abcf415e1f60605a188\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=139447903326211\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://openwall.com/lists/oss-security/2011/07/28/13\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://openwall.com/lists/oss-security/2011/07/29/1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://securitytracker.com/id?1025876\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1321.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/48929\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=726552\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2011-2723\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2011-09-06T15:55:08.337\",\"lastModified\":\"2026-04-29T01:13:23.040\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The skb_gro_header_slow function in include/linux/netdevice.h in the Linux kernel before 2.6.39.4, when Generic Receive Offload (GRO) is enabled, resets certain fields in incorrect situations, which allows remote attackers to cause a denial of service (system crash) via crafted network traffic.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n skb_gro_header_slow en includelinuxnetdevice.h en kernel de Linux anteriores a v2.6.39.4, cuando est\u00e1 activada la opci\u00f3n Generic Receive Offload (GRO), reinicia ciertos campos en situaciones incorrectas, lo que permite producir una denegaci\u00f3n de servicio (ca\u00edda del sistema) mediante una tr\u00e1fico de red manipulado.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:A/AC:M/Au:N/C:N/I:N/A:C\",\"baseScore\":5.7,\"accessVector\":\"ADJACENT_NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":5.5,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.6.39.4\",\"matchCriteriaId\":\"5091C6FD-BB24-4BC8-B5FD-9907E1C63FD9\"}]}]}],\"references\":[{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=17dd759c67f21e34f2156abcf415e1f60605a188\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=139447903326211\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://openwall.com/lists/oss-security/2011/07/28/13\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://openwall.com/lists/oss-security/2011/07/29/1\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://securitytracker.com/id?1025876\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1321.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/48929\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=726552\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=17dd759c67f21e34f2156abcf415e1f60605a188\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=139447903326211\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://openwall.com/lists/oss-security/2011/07/28/13\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://openwall.com/lists/oss-security/2011/07/29/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://securitytracker.com/id?1025876\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1321.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/48929\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=726552\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]}]}}"
  }
}

RHSA-2011_1408

Vulnerability from csaf_redhat - Published: 2011-10-26 15:28 - Updated: 2011-10-26 11:32

Summary

Red Hat Security Advisory: rhev-hypervisor security update

Severity

Moderate

Notes

Topic: An updated rhev-hypervisor package that fixes several security issues is now available. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

Details: The rhev-hypervisor package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor is a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes everything necessary to run and manage virtual machines: A subset of the Red Hat Enterprise Linux operating environment and the Red Hat Enterprise Virtualization Agent. Note: Red Hat Enterprise Virtualization Hypervisor is only available for the Intel 64 and AMD64 architectures with virtualization extensions. The RHBA-2011:1254 update introduced a regression in the Linux kernel's Ethernet bridge implementation. If a system had an interface in a bridge, and an attacker on the local network could send packets to that interface, they could cause a denial of service on that system. (CVE-2011-2942) A flaw in the Linux kernel could lead to GRO (Generic Receive Offload) fields being left in an inconsistent state. An attacker on the local network could use this flaw to trigger a denial of service. GRO is enabled by default in all network drivers that support it. (CVE-2011-2723) The way IPv4 and IPv6 protocol sequence numbers and fragment IDs were generated could allow a man-in-the-middle attacker to inject packets and possibly hijack connections. Protocol sequence numbers and fragment IDs are now more random. (CVE-2011-3188) Non-member VLAN (virtual LAN) packet handling for interfaces in promiscuous mode and also using the be2net driver could allow an attacker on the local network to cause a denial of service. (CVE-2011-3347) Red Hat would like to thank Brent Meshier for reporting CVE-2011-2723; Dan Kaminsky for reporting CVE-2011-3188; and Somnath Kotur for reporting CVE-2011-3347. This updated package provides updated components that include fixes for numerous security issues. These issues have no security impact on Red Hat Enterprise Virtualization Hypervisor itself, however. The security fixes included in this update address the following CVE numbers: CVE-2011-2695, CVE-2011-2699, CVE-2011-3191, CVE-2011-1833, CVE-2011-2496, CVE-2011-3209, CVE-2011-2484, CVE-2011-3131, CVE-2009-4067, CVE-2011-1160, and CVE-2011-1585 (kernel issues) CVE-2011-3378 (rpm issues) Users of Red Hat Enterprise Virtualization Hypervisor should upgrade to this updated package, which resolves these issues.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2011-2723

5.7 ()


                        
                          AV:A/AC:M/Au:N/C:N/I:N/A:C

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Virtualization Red Hat		—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-2942

A certain Red Hat patch to the __br_deliver function in net/bridge/br_forward.c in the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5 allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by leveraging connectivity to a network interface that uses an Ethernet bridge device.

6.1 ()


                        
                          AV:A/AC:L/Au:N/C:N/I:N/A:C

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Virtualization Red Hat		—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-3188

The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote attackers to cause a denial of service (disrupted networking) or hijack network sessions by predicting these values and sending crafted packets.

5.8 ()


                        
                          AV:N/AC:M/Au:N/C:N/I:P/A:P

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Virtualization Red Hat		—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-3347

A certain Red Hat patch to the be2net implementation in the kernel package before 2.6.32-218.el6 on Red Hat Enterprise Linux (RHEL) 6, when promiscuous mode is enabled, allows remote attackers to cause a denial of service (system crash) via non-member VLAN packets.

4.6 ()


                        
                          AV:A/AC:H/Au:N/C:N/I:N/A:C

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Virtualization Red Hat		—	Vendor Fix fix

Threats

Impact Moderate

References

21 references

URL	Category
https://access.redhat.com/errata/RHSA-2011:1408	self
https://access.redhat.com/security/updates/classi…	external
https://rhn.redhat.com/errata/RHBA-2011-1254.html	external
https://access.redhat.com/security/data/csaf/v2/a…	self
https://www.cve.org/CVERecord?id=CVE-2011-2723	external
https://nvd.nist.gov/vuln/detail/CVE-2011-2723	external
http://git.kernel.org/linus/17dd759c67f21e34f2156…	external
https://access.redhat.com/security/cve/CVE-2011-2723	external
https://bugzilla.redhat.com/show_bug.cgi?id=726552	external
https://www.cve.org/CVERecord?id=CVE-2011-2942	external
https://nvd.nist.gov/vuln/detail/CVE-2011-2942	external
https://access.redhat.com/security/cve/CVE-2011-2942	external
https://bugzilla.redhat.com/show_bug.cgi?id=730917	external
https://www.cve.org/CVERecord?id=CVE-2011-3188	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3188	external
https://access.redhat.com/security/cve/CVE-2011-3188	external
https://bugzilla.redhat.com/show_bug.cgi?id=732658	external
https://www.cve.org/CVERecord?id=CVE-2011-3347	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3347	external
https://access.redhat.com/security/cve/CVE-2011-3347	external
https://bugzilla.redhat.com/show_bug.cgi?id=736425	external

Acknowledgments

Brent Meshier

Dan Kaminsky

Somnath Kotur

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_vex",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 2023 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated rhev-hypervisor package that fixes several security issues is\nnow available.\n\nThe Red Hat Security Response Team has rated this update as having moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The rhev-hypervisor package provides a Red Hat Enterprise Virtualization\nHypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor\nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes\neverything necessary to run and manage virtual machines: A subset of the\nRed Hat Enterprise Linux operating environment and the Red Hat Enterprise\nVirtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for\nthe Intel 64 and AMD64 architectures with virtualization extensions.\n\nThe RHBA-2011:1254 update introduced a regression in the Linux kernel\u0027s\nEthernet bridge implementation. If a system had an interface in a bridge,\nand an attacker on the local network could send packets to that interface,\nthey could cause a denial of service on that system. (CVE-2011-2942)\n\nA flaw in the Linux kernel could lead to GRO (Generic Receive Offload)\nfields being left in an inconsistent state. An attacker on the local\nnetwork could use this flaw to trigger a denial of service. GRO is enabled\nby default in all network drivers that support it. (CVE-2011-2723)\n\nThe way IPv4 and IPv6 protocol sequence numbers and fragment IDs were\ngenerated could allow a man-in-the-middle attacker to inject packets and\npossibly hijack connections. Protocol sequence numbers and fragment IDs are\nnow more random. (CVE-2011-3188)\n\nNon-member VLAN (virtual LAN) packet handling for interfaces in promiscuous\nmode and also using the be2net driver could allow an attacker on the local\nnetwork to cause a denial of service. (CVE-2011-3347)\n\nRed Hat would like to thank Brent Meshier for reporting CVE-2011-2723; Dan\nKaminsky for reporting CVE-2011-3188; and Somnath Kotur for reporting\nCVE-2011-3347.\n\nThis updated package provides updated components that include fixes for\nnumerous security issues. These issues have no security impact on Red Hat\nEnterprise Virtualization Hypervisor itself, however.\n\nThe security fixes included in this update address the following CVE\nnumbers:\n\nCVE-2011-2695, CVE-2011-2699, CVE-2011-3191, CVE-2011-1833, CVE-2011-2496,\nCVE-2011-3209, CVE-2011-2484, CVE-2011-3131, CVE-2009-4067, CVE-2011-1160,\nand CVE-2011-1585 (kernel issues)\n\nCVE-2011-3378 (rpm issues)\n\nUsers of Red Hat Enterprise Virtualization Hypervisor should upgrade to\nthis updated package, which resolves these issues.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2011:1408",
        "url": "https://access.redhat.com/errata/RHSA-2011:1408"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "https://rhn.redhat.com/errata/RHBA-2011-1254.html",
        "url": "https://rhn.redhat.com/errata/RHBA-2011-1254.html"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2011/rhsa-2011_1408.json"
      }
    ],
    "title": "Red Hat Security Advisory: rhev-hypervisor security update",
    "tracking": {
      "current_release_date": "2011-10-26T11:32:00Z",
      "generator": {
        "date": "2023-06-30T20:18:00Z",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "3.18.0"
        }
      },
      "id": "RHSA-2011:1408",
      "initial_release_date": "2011-10-26T15:28:00Z",
      "revision_history": [
        {
          "date": "2011-10-26T11:32:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_family",
            "name": "Red Hat Virtualization",
            "product": {
              "name": "Red Hat Virtualization",
              "product_id": "Red Hat Virtualization"
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Brent Meshier"
          ]
        }
      ],
      "cve": "CVE-2011-2723",
      "discovery_date": "2011-07-29T00:00:00Z",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla",
          "text": "https://bugzilla.redhat.com/show_bug.cgi?id=726552"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        },
        {
          "category": "description",
          "text": "The skb_gro_header_slow function in include/linux/netdevice.h in the Linux kernel before 2.6.39.4, when Generic Receive Offload (GRO) is enabled, resets certain fields in incorrect situations, which allows remote attackers to cause a denial of service (system crash) via crafted network traffic.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: gro: only reset frag0 when skb can be pulled",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Virtualization"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2723",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-2723"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2723",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2723"
        },
        {
          "category": "external",
          "summary": "http://git.kernel.org/linus/17dd759c67f21e34f2156abcf415e1f60605a188",
          "url": "http://git.kernel.org/linus/17dd759c67f21e34f2156abcf415e1f60605a188"
        },
        {
          "category": "external",
          "summary": "CVE-2011-2723",
          "url": "https://access.redhat.com/security/cve/CVE-2011-2723"
        },
        {
          "category": "external",
          "summary": "bz#726552: CVE-2011-2723 kernel: gro: only reset frag0 when skb can be pulled",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552"
        }
      ],
      "release_date": "2011-07-27T00:00:00Z",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
          "product_ids": [
            "Red Hat Virtualization"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2011:1408"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "availabilityRequirement": "NOT_DEFINED",
            "baseScore": 5.7,
            "collateralDamagePotential": "NOT_DEFINED",
            "confidentialityImpact": "NONE",
            "confidentialityRequirement": "NOT_DEFINED",
            "environmentalScore": 0.0,
            "exploitability": "NOT_DEFINED",
            "integrityImpact": "NONE",
            "integrityRequirement": "NOT_DEFINED",
            "remediationLevel": "NOT_DEFINED",
            "reportConfidence": "NOT_DEFINED",
            "targetDistribution": "NOT_DEFINED",
            "temporalScore": 0.0,
            "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "Red Hat Virtualization"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2011-07-29T00:00:00Z",
          "details": "Moderate"
        }
      ],
      "title": "CVE-2011-2723 kernel: gro: only reset frag0 when skb can be pulled"
    },
    {
      "cve": "CVE-2011-2942",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2011-08-16T00:00:00Z",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla",
          "text": "https://bugzilla.redhat.com/show_bug.cgi?id=730917"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        },
        {
          "category": "description",
          "text": "A certain Red Hat patch to the __br_deliver function in net/bridge/br_forward.c in the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5 allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by leveraging connectivity to a network interface that uses an Ethernet bridge device.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: bridge: null pointer dereference in __br_deliver",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Virtualization"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2942",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-2942"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2942",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2942"
        },
        {
          "category": "external",
          "summary": "CVE-2011-2942",
          "url": "https://access.redhat.com/security/cve/CVE-2011-2942"
        },
        {
          "category": "external",
          "summary": "bz#730917: CVE-2011-2942 kernel: bridge: null pointer dereference in __br_deliver",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730917"
        }
      ],
      "release_date": "2011-10-20T00:00:00Z",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
          "product_ids": [
            "Red Hat Virtualization"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2011:1408"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "availabilityRequirement": "NOT_DEFINED",
            "baseScore": 6.1,
            "collateralDamagePotential": "NOT_DEFINED",
            "confidentialityImpact": "NONE",
            "confidentialityRequirement": "NOT_DEFINED",
            "environmentalScore": 0.0,
            "exploitability": "NOT_DEFINED",
            "integrityImpact": "NONE",
            "integrityRequirement": "NOT_DEFINED",
            "remediationLevel": "NOT_DEFINED",
            "reportConfidence": "NOT_DEFINED",
            "targetDistribution": "NOT_DEFINED",
            "temporalScore": 0.0,
            "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "Red Hat Virtualization"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2011-08-16T00:00:00Z",
          "details": "Moderate"
        }
      ],
      "title": "CVE-2011-2942 kernel: bridge: null pointer dereference in __br_deliver"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Dan Kaminsky"
          ]
        }
      ],
      "cve": "CVE-2011-3188",
      "discovery_date": "2011-08-23T00:00:00Z",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla",
          "text": "https://bugzilla.redhat.com/show_bug.cgi?id=732658"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        },
        {
          "category": "description",
          "text": "The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote attackers to cause a denial of service (disrupted networking) or hijack network sessions by predicting these values and sending crafted packets.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "improve sequence number generation",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Virtualization"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3188",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3188"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3188",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3188"
        },
        {
          "category": "external",
          "summary": "CVE-2011-3188",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3188"
        },
        {
          "category": "external",
          "summary": "bz#732658: improve sequence number generation",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732658"
        }
      ],
      "release_date": "2011-08-07T00:00:00Z",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
          "product_ids": [
            "Red Hat Virtualization"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2011:1408"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "availabilityRequirement": "NOT_DEFINED",
            "baseScore": 5.8,
            "collateralDamagePotential": "NOT_DEFINED",
            "confidentialityImpact": "NONE",
            "confidentialityRequirement": "NOT_DEFINED",
            "environmentalScore": 0.0,
            "exploitability": "NOT_DEFINED",
            "integrityImpact": "PARTIAL",
            "integrityRequirement": "NOT_DEFINED",
            "remediationLevel": "NOT_DEFINED",
            "reportConfidence": "NOT_DEFINED",
            "targetDistribution": "NOT_DEFINED",
            "temporalScore": 0.0,
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "Red Hat Virtualization"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2011-08-23T00:00:00Z",
          "details": "Moderate"
        }
      ],
      "title": "improve sequence number generation"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Somnath Kotur"
          ]
        }
      ],
      "cve": "CVE-2011-3347",
      "discovery_date": "2011-08-12T00:00:00Z",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla",
          "text": "https://bugzilla.redhat.com/show_bug.cgi?id=736425"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        },
        {
          "category": "description",
          "text": "A certain Red Hat patch to the be2net implementation in the kernel package before 2.6.32-218.el6 on Red Hat Enterprise Linux (RHEL) 6, when promiscuous mode is enabled, allows remote attackers to cause a denial of service (system crash) via non-member VLAN packets.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "promiscuous mode and non-member VLAN packets DoS",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Virtualization"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3347",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3347"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3347",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3347"
        },
        {
          "category": "external",
          "summary": "CVE-2011-3347",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3347"
        },
        {
          "category": "external",
          "summary": "bz#736425: promiscuous mode and non-member VLAN packets DoS",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=736425"
        }
      ],
      "release_date": "2011-10-20T00:00:00Z",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
          "product_ids": [
            "Red Hat Virtualization"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2011:1408"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "availabilityRequirement": "NOT_DEFINED",
            "baseScore": 4.6,
            "collateralDamagePotential": "NOT_DEFINED",
            "confidentialityImpact": "NONE",
            "confidentialityRequirement": "NOT_DEFINED",
            "environmentalScore": 0.0,
            "exploitability": "NOT_DEFINED",
            "integrityImpact": "NONE",
            "integrityRequirement": "NOT_DEFINED",
            "remediationLevel": "NOT_DEFINED",
            "reportConfidence": "NOT_DEFINED",
            "targetDistribution": "NOT_DEFINED",
            "temporalScore": 0.0,
            "vectorString": "AV:A/AC:H/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "Red Hat Virtualization"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2011-08-12T00:00:00Z",
          "details": "Moderate"
        }
      ],
      "title": "promiscuous mode and non-member VLAN packets DoS"
    }
  ]
}

RHSA-2012:0010

Vulnerability from csaf_redhat - Published: 2012-01-10 20:10 - Updated: 2025-11-21 17:39

Summary

Red Hat Security Advisory: kernel-rt security and bug fix update

Severity

Important

Notes

Topic: Updated kernel-rt packages that fix several security issues and two bugs are now available for Red Hat Enterprise MRG 2.0. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

Details: The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: * A malicious CIFS (Common Internet File System) server could send a specially-crafted response to a directory read request that would result in a denial of service or privilege escalation on a system that has a CIFS share mounted. (CVE-2011-3191, Important) * The way fragmented IPv6 UDP datagrams over the bridge with UDP Fragmentation Offload (UFO) functionality on were handled could allow a remote attacker to cause a denial of service. (CVE-2011-4326, Important) * GRO (Generic Receive Offload) fields could be left in an inconsistent state. An attacker on the local network could use this flaw to cause a denial of service. GRO is enabled by default in all network drivers that support it. (CVE-2011-2723, Moderate) * IPv4 and IPv6 protocol sequence number and fragment ID generation could allow a man-in-the-middle attacker to inject packets and possibly hijack connections. Protocol sequence numbers and fragment IDs are now more random. (CVE-2011-3188, Moderate) * A flaw in the FUSE (Filesystem in Userspace) implementation could allow a local user in the fuse group who has access to mount a FUSE file system to cause a denial of service. (CVE-2011-3353, Moderate) * A flaw in the b43 driver. If a system had an active wireless interface that uses the b43 driver, an attacker able to send a specially-crafted frame to that interface could cause a denial of service. (CVE-2011-3359, Moderate) * A flaw in the way CIFS shares with DFS referrals at their root were handled could allow an attacker on the local network, who is able to deploy a malicious CIFS server, to create a CIFS network share that, when mounted, would cause the client system to crash. (CVE-2011-3363, Moderate) * A flaw in the m_stop() implementation could allow a local, unprivileged user to trigger a denial of service. (CVE-2011-3637, Moderate) * Flaws in ghash_update() and ghash_final() could allow a local, unprivileged user to cause a denial of service. (CVE-2011-4081, Moderate) * A flaw in the key management facility could allow a local, unprivileged user to cause a denial of service via the keyctl utility. (CVE-2011-4110, Moderate) * A flaw in the Journaling Block Device (JBD) could allow a local attacker to crash the system by mounting a specially-crafted ext3 or ext4 disk. (CVE-2011-4132, Moderate) * A flaw in the way memory containing security-related data was handled in tpm_read() could allow a local, unprivileged user to read the results of a previously run TPM command. (CVE-2011-1162, Low) * I/O statistics from the taskstats subsystem could be read without any restrictions, which could allow a local, unprivileged user to gather confidential information, such as the length of a password used in a process. (CVE-2011-2494, Low) * Flaws in tpacket_rcv() and packet_recvmsg() could allow a local, unprivileged user to leak information to user-space. (CVE-2011-2898, Low) Red Hat would like to thank Darren Lavender for reporting CVE-2011-3191; Brent Meshier for reporting CVE-2011-2723; Dan Kaminsky for reporting CVE-2011-3188; Yogesh Sharma for reporting CVE-2011-3363; Nick Bowler for reporting CVE-2011-4081; Peter Huewe for reporting CVE-2011-1162; and Vasiliy Kulikov of Openwall for reporting CVE-2011-2494. This update also fixes the following bugs: * Previously, a mismatch in the build-id of the kernel-rt and the one in the related debuginfo package caused failures in SystemTap and perf. (BZ#768413) * IBM x3650m3 systems were not able to boot the MRG Realtime kernel because they require a pmcraid driver that was not available. The pmcraid driver is included in this update. (BZ#753992) Users should upgrade to these updated packages, which correct these issues. The system must be rebooted for this update to take effect.

CVE-2011-1162

The tpm_read function in the Linux kernel 2.6 does not properly clear memory, which might allow local users to read the results of the previous TPM command.

1.2 ()


                        
                          AV:L/AC:H/Au:N/C:P/I:N/A:N

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2011-2494

kernel/taskstats.c in the Linux kernel before 3.1 allows local users to obtain sensitive I/O statistics by sending taskstats commands to a netlink socket, as demonstrated by discovering the length of another user's password.

2.1 ()


                        
                          AV:L/AC:L/Au:N/C:P/I:N/A:N

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2011-2723

5.7 ()


                        
                          AV:A/AC:M/Au:N/C:N/I:N/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-2898

net/packet/af_packet.c in the Linux kernel before 2.6.39.3 does not properly restrict user-space access to certain packet data structures associated with VLAN Tag Control Information, which allows local users to obtain potentially sensitive information via a crafted application.

1.9 ()


                        
                          AV:L/AC:M/Au:N/C:P/I:N/A:N

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2011-3188

5.8 ()


                        
                          AV:N/AC:M/Au:N/C:N/I:P/A:P

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-3191

Integer signedness error in the CIFSFindNext function in fs/cifs/cifssmb.c in the Linux kernel before 3.1 allows remote CIFS servers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large length value in a response to a read request for a directory.

6.8 ()


                        
                          AV:A/AC:H/Au:N/C:C/I:C/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2011-3353

Buffer overflow in the fuse_notify_inval_entry function in fs/fuse/dev.c in the Linux kernel before 3.1 allows local users to cause a denial of service (BUG_ON and system crash) by leveraging the ability to mount a FUSE filesystem.

4.6 ()


                        
                          AV:L/AC:L/Au:S/C:N/I:N/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-3359

The dma_rx function in drivers/net/wireless/b43/dma.c in the Linux kernel before 2.6.39 does not properly allocate receive buffers, which allows remote attackers to cause a denial of service (system crash) via a crafted frame.

4.6 ()


                        
                          AV:A/AC:H/Au:N/C:N/I:N/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-3363

The setup_cifs_sb function in fs/cifs/connect.c in the Linux kernel before 2.6.39 does not properly handle DFS referrals, which allows remote CIFS servers to cause a denial of service (system crash) by placing a referral at the root of a share.

4.6 ()


                        
                          AV:A/AC:H/Au:N/C:N/I:N/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-3637

The m_stop function in fs/proc/task_mmu.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (OOPS) via vectors that trigger an m_start error.

4.9 ()


                        
                          AV:L/AC:L/Au:N/C:N/I:N/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-4081

crypto/ghash-generic.c in the Linux kernel before 3.1 allows local users to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact by triggering a failed or missing ghash_setkey function call, followed by a (1) ghash_update function call or (2) ghash_final function call, as demonstrated by a write operation on an AF_ALG socket.

4.9 ()


                        
                          AV:L/AC:L/Au:N/C:N/I:N/A:C

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-4110

The user_update function in security/keys/user_defined.c in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and kernel oops) via vectors related to a user-defined key and "updating a negative key into a fully instantiated key."

4.9 ()


                        
                          AV:L/AC:L/Au:N/C:N/I:N/A:C

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-4132

The cleanup_journal_tail function in the Journaling Block Device (JBD) functionality in the Linux kernel 2.6 allows local users to cause a denial of service (assertion error and kernel oops) via an ext3 or ext4 image with an "invalid log first block value."

4.7 ()


                        
                          AV:L/AC:M/Au:N/C:N/I:N/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-4326

The udp6_ufo_fragment function in net/ipv6/udp.c in the Linux kernel before 2.6.39, when a certain UDP Fragmentation Offload (UFO) configuration is enabled, allows remote attackers to cause a denial of service (system crash) by sending fragmented IPv6 UDP packets to a bridge device.

7.1 ()


                        
                          AV:N/AC:M/Au:N/C:N/I:N/A:C

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Important

References

74 references

URL	Category
https://access.redhat.com/errata/RHSA-2012:0010	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=716842	external
https://bugzilla.redhat.com/show_bug.cgi?id=726552	external
https://bugzilla.redhat.com/show_bug.cgi?id=728023	external
https://bugzilla.redhat.com/show_bug.cgi?id=732629	external
https://bugzilla.redhat.com/show_bug.cgi?id=732658	external
https://bugzilla.redhat.com/show_bug.cgi?id=732869	external
https://bugzilla.redhat.com/show_bug.cgi?id=736761	external
https://bugzilla.redhat.com/show_bug.cgi?id=738202	external
https://bugzilla.redhat.com/show_bug.cgi?id=738291	external
https://bugzilla.redhat.com/show_bug.cgi?id=747848	external
https://bugzilla.redhat.com/show_bug.cgi?id=749475	external
https://bugzilla.redhat.com/show_bug.cgi?id=751297	external
https://bugzilla.redhat.com/show_bug.cgi?id=753341	external
https://bugzilla.redhat.com/show_bug.cgi?id=755584	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2011-1162	self
https://bugzilla.redhat.com/show_bug.cgi?id=732629	external
https://www.cve.org/CVERecord?id=CVE-2011-1162	external
https://nvd.nist.gov/vuln/detail/CVE-2011-1162	external
https://access.redhat.com/security/cve/CVE-2011-2494	self
https://bugzilla.redhat.com/show_bug.cgi?id=716842	external
https://www.cve.org/CVERecord?id=CVE-2011-2494	external
https://nvd.nist.gov/vuln/detail/CVE-2011-2494	external
https://access.redhat.com/security/cve/CVE-2011-2723	self
https://bugzilla.redhat.com/show_bug.cgi?id=726552	external
https://www.cve.org/CVERecord?id=CVE-2011-2723	external
https://nvd.nist.gov/vuln/detail/CVE-2011-2723	external
http://git.kernel.org/linus/17dd759c67f21e34f2156…	external
https://access.redhat.com/security/cve/CVE-2011-2898	self
https://bugzilla.redhat.com/show_bug.cgi?id=728023	external
https://www.cve.org/CVERecord?id=CVE-2011-2898	external
https://nvd.nist.gov/vuln/detail/CVE-2011-2898	external
https://access.redhat.com/security/cve/CVE-2011-3188	self
https://bugzilla.redhat.com/show_bug.cgi?id=732658	external
https://www.cve.org/CVERecord?id=CVE-2011-3188	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3188	external
https://access.redhat.com/security/cve/CVE-2011-3191	self
https://bugzilla.redhat.com/show_bug.cgi?id=732869	external
https://www.cve.org/CVERecord?id=CVE-2011-3191	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3191	external
https://access.redhat.com/security/cve/CVE-2011-3353	self
https://bugzilla.redhat.com/show_bug.cgi?id=736761	external
https://www.cve.org/CVERecord?id=CVE-2011-3353	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3353	external
https://access.redhat.com/security/cve/CVE-2011-3359	self
https://bugzilla.redhat.com/show_bug.cgi?id=738202	external
https://www.cve.org/CVERecord?id=CVE-2011-3359	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3359	external
https://access.redhat.com/security/cve/CVE-2011-3363	self
https://bugzilla.redhat.com/show_bug.cgi?id=738291	external
https://www.cve.org/CVERecord?id=CVE-2011-3363	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3363	external
https://access.redhat.com/security/cve/CVE-2011-3637	self
https://bugzilla.redhat.com/show_bug.cgi?id=747848	external
https://www.cve.org/CVERecord?id=CVE-2011-3637	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3637	external
https://access.redhat.com/security/cve/CVE-2011-4081	self
https://bugzilla.redhat.com/show_bug.cgi?id=749475	external
https://www.cve.org/CVERecord?id=CVE-2011-4081	external
https://nvd.nist.gov/vuln/detail/CVE-2011-4081	external
https://access.redhat.com/security/cve/CVE-2011-4110	self
https://bugzilla.redhat.com/show_bug.cgi?id=751297	external
https://www.cve.org/CVERecord?id=CVE-2011-4110	external
https://nvd.nist.gov/vuln/detail/CVE-2011-4110	external
https://access.redhat.com/security/cve/CVE-2011-4132	self
https://bugzilla.redhat.com/show_bug.cgi?id=753341	external
https://www.cve.org/CVERecord?id=CVE-2011-4132	external
https://nvd.nist.gov/vuln/detail/CVE-2011-4132	external
https://access.redhat.com/security/cve/CVE-2011-4326	self
https://bugzilla.redhat.com/show_bug.cgi?id=755584	external
https://www.cve.org/CVERecord?id=CVE-2011-4326	external
https://nvd.nist.gov/vuln/detail/CVE-2011-4326	external

Acknowledgments

Peter Huewe

Openwall Vasiliy Kulikov

Brent Meshier

Dan Kaminsky

Darren Lavender

Yogesh Sharma

Nick Bowler

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated kernel-rt packages that fix several security issues and two bugs\nare now available for Red Hat Enterprise MRG 2.0.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The kernel-rt packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A malicious CIFS (Common Internet File System) server could send a\nspecially-crafted response to a directory read request that would result in\na denial of service or privilege escalation on a system that has a CIFS\nshare mounted. (CVE-2011-3191, Important)\n\n* The way fragmented IPv6 UDP datagrams over the bridge with UDP\nFragmentation Offload (UFO) functionality on were handled could allow a\nremote attacker to cause a denial of service. (CVE-2011-4326, Important)\n\n* GRO (Generic Receive Offload) fields could be left in an inconsistent\nstate. An attacker on the local network could use this flaw to cause a\ndenial of service. GRO is enabled by default in all network drivers that\nsupport it. (CVE-2011-2723, Moderate)\n\n* IPv4 and IPv6 protocol sequence number and fragment ID generation could\nallow a man-in-the-middle attacker to inject packets and possibly hijack\nconnections. Protocol sequence numbers and fragment IDs are now more\nrandom. (CVE-2011-3188, Moderate)\n\n* A flaw in the FUSE (Filesystem in Userspace) implementation could allow\na local user in the fuse group who has access to mount a FUSE file system\nto cause a denial of service. (CVE-2011-3353, Moderate)\n\n* A flaw in the b43 driver. If a system had an active wireless interface\nthat uses the b43 driver, an attacker able to send a specially-crafted\nframe to that interface could cause a denial of service. (CVE-2011-3359,\nModerate)\n\n* A flaw in the way CIFS shares with DFS referrals at their root were\nhandled could allow an attacker on the local network, who is able to deploy\na malicious CIFS server, to create a CIFS network share that, when mounted,\nwould cause the client system to crash. (CVE-2011-3363, Moderate)\n\n* A flaw in the m_stop() implementation could allow a local, unprivileged\nuser to trigger a denial of service. (CVE-2011-3637, Moderate)\n\n* Flaws in ghash_update() and ghash_final() could allow a local,\nunprivileged user to cause a denial of service. (CVE-2011-4081, Moderate)\n\n* A flaw in the key management facility could allow a local, unprivileged\nuser to cause a denial of service via the keyctl utility. (CVE-2011-4110,\nModerate)\n\n* A flaw in the Journaling Block Device (JBD) could allow a local attacker\nto crash the system by mounting a specially-crafted ext3 or ext4 disk.\n(CVE-2011-4132, Moderate)\n\n* A flaw in the way memory containing security-related data was handled in\ntpm_read() could allow a local, unprivileged user to read the results of a\npreviously run TPM command. (CVE-2011-1162, Low)\n\n* I/O statistics from the taskstats subsystem could be read without any\nrestrictions, which could allow a local, unprivileged user to gather\nconfidential information, such as the length of a password used in a\nprocess. (CVE-2011-2494, Low)\n\n* Flaws in tpacket_rcv() and packet_recvmsg() could allow a local,\nunprivileged user to leak information to user-space. (CVE-2011-2898, Low)\n\nRed Hat would like to thank Darren Lavender for reporting CVE-2011-3191;\nBrent Meshier for reporting CVE-2011-2723; Dan Kaminsky for reporting\nCVE-2011-3188; Yogesh Sharma for reporting CVE-2011-3363; Nick Bowler for\nreporting CVE-2011-4081; Peter Huewe for reporting CVE-2011-1162; and\nVasiliy Kulikov of Openwall for reporting CVE-2011-2494.\n\nThis update also fixes the following bugs:\n\n* Previously, a mismatch in the build-id of the kernel-rt and the one in\nthe related debuginfo package caused failures in SystemTap and perf.\n(BZ#768413)\n\n* IBM x3650m3 systems were not able to boot the MRG Realtime kernel because\nthey require a pmcraid driver that was not available. The pmcraid driver is\nincluded in this update. (BZ#753992)\n\nUsers should upgrade to these updated packages, which correct these issues.\nThe system must be rebooted for this update to take effect.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2012:0010",
        "url": "https://access.redhat.com/errata/RHSA-2012:0010"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "716842",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716842"
      },
      {
        "category": "external",
        "summary": "726552",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552"
      },
      {
        "category": "external",
        "summary": "728023",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728023"
      },
      {
        "category": "external",
        "summary": "732629",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732629"
      },
      {
        "category": "external",
        "summary": "732658",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732658"
      },
      {
        "category": "external",
        "summary": "732869",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732869"
      },
      {
        "category": "external",
        "summary": "736761",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=736761"
      },
      {
        "category": "external",
        "summary": "738202",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738202"
      },
      {
        "category": "external",
        "summary": "738291",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738291"
      },
      {
        "category": "external",
        "summary": "747848",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747848"
      },
      {
        "category": "external",
        "summary": "749475",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=749475"
      },
      {
        "category": "external",
        "summary": "751297",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=751297"
      },
      {
        "category": "external",
        "summary": "753341",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=753341"
      },
      {
        "category": "external",
        "summary": "755584",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=755584"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_0010.json"
      }
    ],
    "title": "Red Hat Security Advisory: kernel-rt security and bug fix update",
    "tracking": {
      "current_release_date": "2025-11-21T17:39:31+00:00",
      "generator": {
        "date": "2025-11-21T17:39:31+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2012:0010",
      "initial_release_date": "2012-01-10T20:10:00+00:00",
      "revision_history": [
        {
          "date": "2012-01-10T20:10:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2012-01-10T20:14:23+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:39:31+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat MRG Realtime for RHEL 6 Server v.2",
                "product": {
                  "name": "Red Hat MRG Realtime for RHEL 6 Server v.2",
                  "product_id": "6Server-MRG-Realtime-2",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_mrg:2:server:el6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise MRG for RHEL-6"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-devel@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
                "product": {
                  "name": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
                  "product_id": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@2.6.33.9-rt31.79.el6rt?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
                "product": {
                  "name": "kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
                  "product_id": "kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-firmware@2.6.33.9-rt31.79.el6rt?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
                "product": {
                  "name": "kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
                  "product_id": "kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-doc@2.6.33.9-rt31.79.el6rt?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.src as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src"
        },
        "product_reference": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch"
        },
        "product_reference": "kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch"
        },
        "product_reference": "kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Peter Huewe"
          ]
        }
      ],
      "cve": "CVE-2011-1162",
      "discovery_date": "2011-03-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "732629"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The tpm_read function in the Linux kernel 2.6 does not properly clear memory, which might allow local users to read the results of the previous TPM command.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: tpm: infoleak",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-1162"
        },
        {
          "category": "external",
          "summary": "RHBZ#732629",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732629"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1162",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-1162"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1162",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1162"
        }
      ],
      "release_date": "2011-03-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 1.2,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: tpm: infoleak"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Vasiliy Kulikov"
          ],
          "organization": "Openwall"
        }
      ],
      "cve": "CVE-2011-2494",
      "discovery_date": "2011-06-21T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "716842"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "kernel/taskstats.c in the Linux kernel before 3.1 allows local users to obtain sensitive I/O statistics by sending taskstats commands to a netlink socket, as demonstrated by discovering the length of another user\u0027s password.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: taskstats io infoleak",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not provide support for the Taskstats interface. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1479.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-2494"
        },
        {
          "category": "external",
          "summary": "RHBZ#716842",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716842"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2494",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-2494"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2494",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2494"
        }
      ],
      "release_date": "2011-06-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 2.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: taskstats io infoleak"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Brent Meshier"
          ]
        }
      ],
      "cve": "CVE-2011-2723",
      "discovery_date": "2011-07-29T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "726552"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The skb_gro_header_slow function in include/linux/netdevice.h in the Linux kernel before 2.6.39.4, when Generic Receive Offload (GRO) is enabled, resets certain fields in incorrect situations, which allows remote attackers to cause a denial of service (system crash) via crafted network traffic.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: gro: only reset frag0 when skb can be pulled",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not backport the upstream commit a5b1cf28 that introduced this issue. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-2723"
        },
        {
          "category": "external",
          "summary": "RHBZ#726552",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2723",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-2723"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2723",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2723"
        },
        {
          "category": "external",
          "summary": "http://git.kernel.org/linus/17dd759c67f21e34f2156abcf415e1f60605a188",
          "url": "http://git.kernel.org/linus/17dd759c67f21e34f2156abcf415e1f60605a188"
        }
      ],
      "release_date": "2011-07-27T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 5.7,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: gro: only reset frag0 when skb can be pulled"
    },
    {
      "cve": "CVE-2011-2898",
      "discovery_date": "2011-08-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "728023"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "net/packet/af_packet.c in the Linux kernel before 2.6.39.3 does not properly restrict user-space access to certain packet data structures associated with VLAN Tag Control Information, which allows local users to obtain potentially sensitive information via a crafted application.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: af_packet: infoleak",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 and 5 as they did not backport the upstream commit 393e52e3 that introduced this flaw. This has been addressed in Red Hat Enterprise Linux 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1350.html and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-2898"
        },
        {
          "category": "external",
          "summary": "RHBZ#728023",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728023"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2898",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-2898"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2898",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2898"
        }
      ],
      "release_date": "2011-06-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 1.9,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: af_packet: infoleak"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Dan Kaminsky"
          ]
        }
      ],
      "cve": "CVE-2011-3188",
      "discovery_date": "2011-08-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "732658"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote attackers to cause a denial of service (disrupted networking) or hijack network sessions by predicting these values and sending crafted packets.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: net: improve sequence number generation",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3188"
        },
        {
          "category": "external",
          "summary": "RHBZ#732658",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732658"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3188",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3188"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3188",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3188"
        }
      ],
      "release_date": "2011-08-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.8,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: net: improve sequence number generation"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Darren Lavender"
          ]
        }
      ],
      "cve": "CVE-2011-3191",
      "discovery_date": "2011-08-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "732869"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Integer signedness error in the CIFSFindNext function in fs/cifs/cifssmb.c in the Linux kernel before 3.1 allows remote CIFS servers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large length value in a response to a read request for a directory.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: cifs: signedness issue in CIFSFindNext()",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3191"
        },
        {
          "category": "external",
          "summary": "RHBZ#732869",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732869"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3191",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3191"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3191",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3191"
        }
      ],
      "release_date": "2011-08-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.8,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:A/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: cifs: signedness issue in CIFSFindNext()"
    },
    {
      "cve": "CVE-2011-3353",
      "discovery_date": "2011-08-29T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "736761"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Buffer overflow in the fuse_notify_inval_entry function in fs/fuse/dev.c in the Linux kernel before 3.1 allows local users to cause a denial of service (BUG_ON and system crash) by leveraging the ability to mount a FUSE filesystem.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as they did not provide support for FUSE. This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 5 as they did not backport the upstream commit 3b463ae0c6264f that introduced this issue. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1465.html and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3353"
        },
        {
          "category": "external",
          "summary": "RHBZ#736761",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=736761"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3353",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3353"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3353",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3353"
        }
      ],
      "release_date": "2011-07-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "SINGLE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.6,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message"
    },
    {
      "cve": "CVE-2011-3359",
      "discovery_date": "2011-03-27T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "738202"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The dma_rx function in drivers/net/wireless/b43/dma.c in the Linux kernel before 2.6.39 does not properly allocate receive buffers, which allows remote attackers to cause a denial of service (system crash) via a crafted frame.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: b43: allocate receive buffers big enough for max frame len + offset",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of the Linux kernel as shipped with Red\nHat Enterprise Linux 4 and 5 as they did not provide support for Broadcom 43xx wireless devices. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3359"
        },
        {
          "category": "external",
          "summary": "RHBZ#738202",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738202"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3359",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3359"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3359",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3359"
        }
      ],
      "release_date": "2011-03-27T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.6,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:A/AC:H/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: b43: allocate receive buffers big enough for max frame len + offset"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Yogesh Sharma"
          ]
        }
      ],
      "cve": "CVE-2011-3363",
      "discovery_date": "2011-03-07T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "738291"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The setup_cifs_sb function in fs/cifs/connect.c in the Linux kernel before 2.6.39 does not properly handle DFS referrals, which allows remote CIFS servers to cause a denial of service (system crash) by placing a referral at the root of a share.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: cifs: always do is_path_accessible check in cifs_mount",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4,\n5, 6, and Red Hat Enterprise MRG. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1479.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3363"
        },
        {
          "category": "external",
          "summary": "RHBZ#738291",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738291"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3363",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3363"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3363",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3363"
        }
      ],
      "release_date": "2011-03-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.6,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:A/AC:H/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: cifs: always do is_path_accessible check in cifs_mount"
    },
    {
      "cve": "CVE-2011-3637",
      "discovery_date": "2011-10-21T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "747848"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The m_stop function in fs/proc/task_mmu.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (OOPS) via vectors that trigger an m_start error.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: proc: fix oops on invalid /proc/\u003cpid\u003e/maps access",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the version of the Linux kernel as shipped with Red Hat Enterprise Linux 4, and 6 as it did not backport the upstream commit ec6fd8a4 that introduced this issue. This has been addressed in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2012-0007.html and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3637"
        },
        {
          "category": "external",
          "summary": "RHBZ#747848",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747848"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3637",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3637"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3637",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3637"
        }
      ],
      "release_date": "2011-03-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.9,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: proc: fix oops on invalid /proc/\u003cpid\u003e/maps access"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Nick Bowler"
          ]
        }
      ],
      "cve": "CVE-2011-4081",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2011-10-27T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "749475"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "crypto/ghash-generic.c in the Linux kernel before 3.1 allows local users to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact by triggering a failed or missing ghash_setkey function call, followed by a (1) ghash_update function call or (2) ghash_final function call, as demonstrated by a write operation on an AF_ALG socket.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: crypto: ghash: null pointer deref if no key is set",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the Linux kernels as shipped with Red Hat Enterprise Linux 4, and 5 as they did not include support for the GHASH message digest algorithm. This has been addressed in Red Hat Enterprise Linux 6, and MRG via https://rhn.redhat.com/errata/RHSA-2012-0350.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4081"
        },
        {
          "category": "external",
          "summary": "RHBZ#749475",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=749475"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4081",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4081"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4081",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4081"
        }
      ],
      "release_date": "2011-10-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.9,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: crypto: ghash: null pointer deref if no key is set"
    },
    {
      "cve": "CVE-2011-4110",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2011-11-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "751297"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The user_update function in security/keys/user_defined.c in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and kernel oops) via vectors related to a user-defined key and \"updating a negative key into a fully instantiated key.\"",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: keys: NULL pointer deref in the user-defined key type",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4,\n5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1479.html, https://rhn.redhat.com/errata/RHSA-2011-1530.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4110"
        },
        {
          "category": "external",
          "summary": "RHBZ#751297",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=751297"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4110",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4110"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4110",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4110"
        }
      ],
      "release_date": "2011-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.9,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: keys: NULL pointer deref in the user-defined key type"
    },
    {
      "cve": "CVE-2011-4132",
      "discovery_date": "2011-04-06T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "753341"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The cleanup_journal_tail function in the Journaling Block Device (JBD) functionality in the Linux kernel 2.6 allows local users to cause a denial of service (assertion error and kernel oops) via an ext3 or ext4 image with an \"invalid log first block value.\"",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: jbd/jbd2: invalid value of first log block leads to oops",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4,\n5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2012-0007.html, https://rhn.redhat.com/errata/RHSA-2012-0350.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat\nEnterprise Linux 4 is now in Production 3 of the maintenance life-cycle,\nhttps://access.redhat.com/support/policy/updates/errata/, therefore the fix for\nthis issue is not currently planned to be included in the future updates.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4132"
        },
        {
          "category": "external",
          "summary": "RHBZ#753341",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=753341"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4132",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4132"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4132",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4132"
        }
      ],
      "release_date": "2011-11-01T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.7,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: jbd/jbd2: invalid value of first log block leads to oops"
    },
    {
      "cve": "CVE-2011-4326",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2011-03-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "755584"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The udp6_ufo_fragment function in net/ipv6/udp.c in the Linux kernel before 2.6.39, when a certain UDP Fragmentation Offload (UFO) configuration is enabled, allows remote attackers to cause a denial of service (system crash) by sending fragmented IPv6 UDP packets to a bridge device.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: wrong headroom check in udp6_ufo_fragment()",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 and 5 as they did not provide support for UDP Fragmentation Offload (UFO) functionality. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4326"
        },
        {
          "category": "external",
          "summary": "RHBZ#755584",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=755584"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4326",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4326"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4326",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4326"
        }
      ],
      "release_date": "2011-03-03T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.1,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: wrong headroom check in udp6_ufo_fragment()"
    }
  ]
}

RHSA-2012_0010

Vulnerability from csaf_redhat - Published: 2012-01-10 20:10 - Updated: 2024-11-22 05:05

Summary

Red Hat Security Advisory: kernel-rt security and bug fix update

Severity

Important

Notes

CVE-2011-1162

The tpm_read function in the Linux kernel 2.6 does not properly clear memory, which might allow local users to read the results of the previous TPM command.

1.2 ()


                        
                          AV:L/AC:H/Au:N/C:P/I:N/A:N

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2011-2494

2.1 ()


                        
                          AV:L/AC:L/Au:N/C:P/I:N/A:N

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2011-2723

5.7 ()


                        
                          AV:A/AC:M/Au:N/C:N/I:N/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-2898

1.9 ()


                        
                          AV:L/AC:M/Au:N/C:P/I:N/A:N

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2011-3188

5.8 ()


                        
                          AV:N/AC:M/Au:N/C:N/I:P/A:P

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-3191

6.8 ()


                        
                          AV:A/AC:H/Au:N/C:C/I:C/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2011-3353

4.6 ()


                        
                          AV:L/AC:L/Au:S/C:N/I:N/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-3359

4.6 ()


                        
                          AV:A/AC:H/Au:N/C:N/I:N/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-3363

4.6 ()


                        
                          AV:A/AC:H/Au:N/C:N/I:N/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-3637

The m_stop function in fs/proc/task_mmu.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (OOPS) via vectors that trigger an m_start error.

4.9 ()


                        
                          AV:L/AC:L/Au:N/C:N/I:N/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-4081

4.9 ()


                        
                          AV:L/AC:L/Au:N/C:N/I:N/A:C

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-4110

4.9 ()


                        
                          AV:L/AC:L/Au:N/C:N/I:N/A:C

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-4132

4.7 ()


                        
                          AV:L/AC:M/Au:N/C:N/I:N/A:C

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-4326

7.1 ()


                        
                          AV:N/AC:M/Au:N/C:N/I:N/A:C

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Important

References

74 references

URL	Category
https://access.redhat.com/errata/RHSA-2012:0010	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=716842	external
https://bugzilla.redhat.com/show_bug.cgi?id=726552	external
https://bugzilla.redhat.com/show_bug.cgi?id=728023	external
https://bugzilla.redhat.com/show_bug.cgi?id=732629	external
https://bugzilla.redhat.com/show_bug.cgi?id=732658	external
https://bugzilla.redhat.com/show_bug.cgi?id=732869	external
https://bugzilla.redhat.com/show_bug.cgi?id=736761	external
https://bugzilla.redhat.com/show_bug.cgi?id=738202	external
https://bugzilla.redhat.com/show_bug.cgi?id=738291	external
https://bugzilla.redhat.com/show_bug.cgi?id=747848	external
https://bugzilla.redhat.com/show_bug.cgi?id=749475	external
https://bugzilla.redhat.com/show_bug.cgi?id=751297	external
https://bugzilla.redhat.com/show_bug.cgi?id=753341	external
https://bugzilla.redhat.com/show_bug.cgi?id=755584	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2011-1162	self
https://bugzilla.redhat.com/show_bug.cgi?id=732629	external
https://www.cve.org/CVERecord?id=CVE-2011-1162	external
https://nvd.nist.gov/vuln/detail/CVE-2011-1162	external
https://access.redhat.com/security/cve/CVE-2011-2494	self
https://bugzilla.redhat.com/show_bug.cgi?id=716842	external
https://www.cve.org/CVERecord?id=CVE-2011-2494	external
https://nvd.nist.gov/vuln/detail/CVE-2011-2494	external
https://access.redhat.com/security/cve/CVE-2011-2723	self
https://bugzilla.redhat.com/show_bug.cgi?id=726552	external
https://www.cve.org/CVERecord?id=CVE-2011-2723	external
https://nvd.nist.gov/vuln/detail/CVE-2011-2723	external
http://git.kernel.org/linus/17dd759c67f21e34f2156…	external
https://access.redhat.com/security/cve/CVE-2011-2898	self
https://bugzilla.redhat.com/show_bug.cgi?id=728023	external
https://www.cve.org/CVERecord?id=CVE-2011-2898	external
https://nvd.nist.gov/vuln/detail/CVE-2011-2898	external
https://access.redhat.com/security/cve/CVE-2011-3188	self
https://bugzilla.redhat.com/show_bug.cgi?id=732658	external
https://www.cve.org/CVERecord?id=CVE-2011-3188	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3188	external
https://access.redhat.com/security/cve/CVE-2011-3191	self
https://bugzilla.redhat.com/show_bug.cgi?id=732869	external
https://www.cve.org/CVERecord?id=CVE-2011-3191	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3191	external
https://access.redhat.com/security/cve/CVE-2011-3353	self
https://bugzilla.redhat.com/show_bug.cgi?id=736761	external
https://www.cve.org/CVERecord?id=CVE-2011-3353	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3353	external
https://access.redhat.com/security/cve/CVE-2011-3359	self
https://bugzilla.redhat.com/show_bug.cgi?id=738202	external
https://www.cve.org/CVERecord?id=CVE-2011-3359	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3359	external
https://access.redhat.com/security/cve/CVE-2011-3363	self
https://bugzilla.redhat.com/show_bug.cgi?id=738291	external
https://www.cve.org/CVERecord?id=CVE-2011-3363	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3363	external
https://access.redhat.com/security/cve/CVE-2011-3637	self
https://bugzilla.redhat.com/show_bug.cgi?id=747848	external
https://www.cve.org/CVERecord?id=CVE-2011-3637	external
https://nvd.nist.gov/vuln/detail/CVE-2011-3637	external
https://access.redhat.com/security/cve/CVE-2011-4081	self
https://bugzilla.redhat.com/show_bug.cgi?id=749475	external
https://www.cve.org/CVERecord?id=CVE-2011-4081	external
https://nvd.nist.gov/vuln/detail/CVE-2011-4081	external
https://access.redhat.com/security/cve/CVE-2011-4110	self
https://bugzilla.redhat.com/show_bug.cgi?id=751297	external
https://www.cve.org/CVERecord?id=CVE-2011-4110	external
https://nvd.nist.gov/vuln/detail/CVE-2011-4110	external
https://access.redhat.com/security/cve/CVE-2011-4132	self
https://bugzilla.redhat.com/show_bug.cgi?id=753341	external
https://www.cve.org/CVERecord?id=CVE-2011-4132	external
https://nvd.nist.gov/vuln/detail/CVE-2011-4132	external
https://access.redhat.com/security/cve/CVE-2011-4326	self
https://bugzilla.redhat.com/show_bug.cgi?id=755584	external
https://www.cve.org/CVERecord?id=CVE-2011-4326	external
https://nvd.nist.gov/vuln/detail/CVE-2011-4326	external

Acknowledgments

Peter Huewe

Openwall Vasiliy Kulikov

Brent Meshier

Dan Kaminsky

Darren Lavender

Yogesh Sharma

Nick Bowler

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated kernel-rt packages that fix several security issues and two bugs\nare now available for Red Hat Enterprise MRG 2.0.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The kernel-rt packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A malicious CIFS (Common Internet File System) server could send a\nspecially-crafted response to a directory read request that would result in\na denial of service or privilege escalation on a system that has a CIFS\nshare mounted. (CVE-2011-3191, Important)\n\n* The way fragmented IPv6 UDP datagrams over the bridge with UDP\nFragmentation Offload (UFO) functionality on were handled could allow a\nremote attacker to cause a denial of service. (CVE-2011-4326, Important)\n\n* GRO (Generic Receive Offload) fields could be left in an inconsistent\nstate. An attacker on the local network could use this flaw to cause a\ndenial of service. GRO is enabled by default in all network drivers that\nsupport it. (CVE-2011-2723, Moderate)\n\n* IPv4 and IPv6 protocol sequence number and fragment ID generation could\nallow a man-in-the-middle attacker to inject packets and possibly hijack\nconnections. Protocol sequence numbers and fragment IDs are now more\nrandom. (CVE-2011-3188, Moderate)\n\n* A flaw in the FUSE (Filesystem in Userspace) implementation could allow\na local user in the fuse group who has access to mount a FUSE file system\nto cause a denial of service. (CVE-2011-3353, Moderate)\n\n* A flaw in the b43 driver. If a system had an active wireless interface\nthat uses the b43 driver, an attacker able to send a specially-crafted\nframe to that interface could cause a denial of service. (CVE-2011-3359,\nModerate)\n\n* A flaw in the way CIFS shares with DFS referrals at their root were\nhandled could allow an attacker on the local network, who is able to deploy\na malicious CIFS server, to create a CIFS network share that, when mounted,\nwould cause the client system to crash. (CVE-2011-3363, Moderate)\n\n* A flaw in the m_stop() implementation could allow a local, unprivileged\nuser to trigger a denial of service. (CVE-2011-3637, Moderate)\n\n* Flaws in ghash_update() and ghash_final() could allow a local,\nunprivileged user to cause a denial of service. (CVE-2011-4081, Moderate)\n\n* A flaw in the key management facility could allow a local, unprivileged\nuser to cause a denial of service via the keyctl utility. (CVE-2011-4110,\nModerate)\n\n* A flaw in the Journaling Block Device (JBD) could allow a local attacker\nto crash the system by mounting a specially-crafted ext3 or ext4 disk.\n(CVE-2011-4132, Moderate)\n\n* A flaw in the way memory containing security-related data was handled in\ntpm_read() could allow a local, unprivileged user to read the results of a\npreviously run TPM command. (CVE-2011-1162, Low)\n\n* I/O statistics from the taskstats subsystem could be read without any\nrestrictions, which could allow a local, unprivileged user to gather\nconfidential information, such as the length of a password used in a\nprocess. (CVE-2011-2494, Low)\n\n* Flaws in tpacket_rcv() and packet_recvmsg() could allow a local,\nunprivileged user to leak information to user-space. (CVE-2011-2898, Low)\n\nRed Hat would like to thank Darren Lavender for reporting CVE-2011-3191;\nBrent Meshier for reporting CVE-2011-2723; Dan Kaminsky for reporting\nCVE-2011-3188; Yogesh Sharma for reporting CVE-2011-3363; Nick Bowler for\nreporting CVE-2011-4081; Peter Huewe for reporting CVE-2011-1162; and\nVasiliy Kulikov of Openwall for reporting CVE-2011-2494.\n\nThis update also fixes the following bugs:\n\n* Previously, a mismatch in the build-id of the kernel-rt and the one in\nthe related debuginfo package caused failures in SystemTap and perf.\n(BZ#768413)\n\n* IBM x3650m3 systems were not able to boot the MRG Realtime kernel because\nthey require a pmcraid driver that was not available. The pmcraid driver is\nincluded in this update. (BZ#753992)\n\nUsers should upgrade to these updated packages, which correct these issues.\nThe system must be rebooted for this update to take effect.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2012:0010",
        "url": "https://access.redhat.com/errata/RHSA-2012:0010"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "716842",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716842"
      },
      {
        "category": "external",
        "summary": "726552",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552"
      },
      {
        "category": "external",
        "summary": "728023",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728023"
      },
      {
        "category": "external",
        "summary": "732629",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732629"
      },
      {
        "category": "external",
        "summary": "732658",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732658"
      },
      {
        "category": "external",
        "summary": "732869",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732869"
      },
      {
        "category": "external",
        "summary": "736761",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=736761"
      },
      {
        "category": "external",
        "summary": "738202",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738202"
      },
      {
        "category": "external",
        "summary": "738291",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738291"
      },
      {
        "category": "external",
        "summary": "747848",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747848"
      },
      {
        "category": "external",
        "summary": "749475",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=749475"
      },
      {
        "category": "external",
        "summary": "751297",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=751297"
      },
      {
        "category": "external",
        "summary": "753341",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=753341"
      },
      {
        "category": "external",
        "summary": "755584",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=755584"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_0010.json"
      }
    ],
    "title": "Red Hat Security Advisory: kernel-rt security and bug fix update",
    "tracking": {
      "current_release_date": "2024-11-22T05:05:16+00:00",
      "generator": {
        "date": "2024-11-22T05:05:16+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2012:0010",
      "initial_release_date": "2012-01-10T20:10:00+00:00",
      "revision_history": [
        {
          "date": "2012-01-10T20:10:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2012-01-10T20:14:23+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T05:05:16+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat MRG Realtime for RHEL 6 Server v.2",
                "product": {
                  "name": "Red Hat MRG Realtime for RHEL 6 Server v.2",
                  "product_id": "6Server-MRG-Realtime-2",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_mrg:2:server:el6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise MRG for RHEL-6"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-devel@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@2.6.33.9-rt31.79.el6rt?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
                "product": {
                  "name": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
                  "product_id": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@2.6.33.9-rt31.79.el6rt?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
                "product": {
                  "name": "kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
                  "product_id": "kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-firmware@2.6.33.9-rt31.79.el6rt?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
                "product": {
                  "name": "kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
                  "product_id": "kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-doc@2.6.33.9-rt31.79.el6rt?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.src as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src"
        },
        "product_reference": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch"
        },
        "product_reference": "kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch"
        },
        "product_reference": "kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Peter Huewe"
          ]
        }
      ],
      "cve": "CVE-2011-1162",
      "discovery_date": "2011-03-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "732629"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The tpm_read function in the Linux kernel 2.6 does not properly clear memory, which might allow local users to read the results of the previous TPM command.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: tpm: infoleak",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-1162"
        },
        {
          "category": "external",
          "summary": "RHBZ#732629",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732629"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1162",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-1162"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1162",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1162"
        }
      ],
      "release_date": "2011-03-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 1.2,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: tpm: infoleak"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Vasiliy Kulikov"
          ],
          "organization": "Openwall"
        }
      ],
      "cve": "CVE-2011-2494",
      "discovery_date": "2011-06-21T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "716842"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "kernel/taskstats.c in the Linux kernel before 3.1 allows local users to obtain sensitive I/O statistics by sending taskstats commands to a netlink socket, as demonstrated by discovering the length of another user\u0027s password.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: taskstats io infoleak",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not provide support for the Taskstats interface. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1479.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-2494"
        },
        {
          "category": "external",
          "summary": "RHBZ#716842",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716842"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2494",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-2494"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2494",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2494"
        }
      ],
      "release_date": "2011-06-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 2.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: taskstats io infoleak"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Brent Meshier"
          ]
        }
      ],
      "cve": "CVE-2011-2723",
      "discovery_date": "2011-07-29T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "726552"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The skb_gro_header_slow function in include/linux/netdevice.h in the Linux kernel before 2.6.39.4, when Generic Receive Offload (GRO) is enabled, resets certain fields in incorrect situations, which allows remote attackers to cause a denial of service (system crash) via crafted network traffic.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: gro: only reset frag0 when skb can be pulled",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not backport the upstream commit a5b1cf28 that introduced this issue. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-2723"
        },
        {
          "category": "external",
          "summary": "RHBZ#726552",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2723",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-2723"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2723",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2723"
        },
        {
          "category": "external",
          "summary": "http://git.kernel.org/linus/17dd759c67f21e34f2156abcf415e1f60605a188",
          "url": "http://git.kernel.org/linus/17dd759c67f21e34f2156abcf415e1f60605a188"
        }
      ],
      "release_date": "2011-07-27T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 5.7,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: gro: only reset frag0 when skb can be pulled"
    },
    {
      "cve": "CVE-2011-2898",
      "discovery_date": "2011-08-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "728023"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "net/packet/af_packet.c in the Linux kernel before 2.6.39.3 does not properly restrict user-space access to certain packet data structures associated with VLAN Tag Control Information, which allows local users to obtain potentially sensitive information via a crafted application.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: af_packet: infoleak",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 and 5 as they did not backport the upstream commit 393e52e3 that introduced this flaw. This has been addressed in Red Hat Enterprise Linux 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1350.html and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-2898"
        },
        {
          "category": "external",
          "summary": "RHBZ#728023",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728023"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2898",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-2898"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2898",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2898"
        }
      ],
      "release_date": "2011-06-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 1.9,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: af_packet: infoleak"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Dan Kaminsky"
          ]
        }
      ],
      "cve": "CVE-2011-3188",
      "discovery_date": "2011-08-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "732658"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote attackers to cause a denial of service (disrupted networking) or hijack network sessions by predicting these values and sending crafted packets.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: net: improve sequence number generation",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3188"
        },
        {
          "category": "external",
          "summary": "RHBZ#732658",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732658"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3188",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3188"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3188",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3188"
        }
      ],
      "release_date": "2011-08-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.8,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: net: improve sequence number generation"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Darren Lavender"
          ]
        }
      ],
      "cve": "CVE-2011-3191",
      "discovery_date": "2011-08-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "732869"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Integer signedness error in the CIFSFindNext function in fs/cifs/cifssmb.c in the Linux kernel before 3.1 allows remote CIFS servers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large length value in a response to a read request for a directory.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: cifs: signedness issue in CIFSFindNext()",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3191"
        },
        {
          "category": "external",
          "summary": "RHBZ#732869",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732869"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3191",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3191"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3191",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3191"
        }
      ],
      "release_date": "2011-08-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.8,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:A/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: cifs: signedness issue in CIFSFindNext()"
    },
    {
      "cve": "CVE-2011-3353",
      "discovery_date": "2011-08-29T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "736761"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Buffer overflow in the fuse_notify_inval_entry function in fs/fuse/dev.c in the Linux kernel before 3.1 allows local users to cause a denial of service (BUG_ON and system crash) by leveraging the ability to mount a FUSE filesystem.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as they did not provide support for FUSE. This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 5 as they did not backport the upstream commit 3b463ae0c6264f that introduced this issue. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1465.html and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3353"
        },
        {
          "category": "external",
          "summary": "RHBZ#736761",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=736761"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3353",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3353"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3353",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3353"
        }
      ],
      "release_date": "2011-07-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "SINGLE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.6,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message"
    },
    {
      "cve": "CVE-2011-3359",
      "discovery_date": "2011-03-27T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "738202"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The dma_rx function in drivers/net/wireless/b43/dma.c in the Linux kernel before 2.6.39 does not properly allocate receive buffers, which allows remote attackers to cause a denial of service (system crash) via a crafted frame.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: b43: allocate receive buffers big enough for max frame len + offset",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of the Linux kernel as shipped with Red\nHat Enterprise Linux 4 and 5 as they did not provide support for Broadcom 43xx wireless devices. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3359"
        },
        {
          "category": "external",
          "summary": "RHBZ#738202",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738202"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3359",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3359"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3359",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3359"
        }
      ],
      "release_date": "2011-03-27T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.6,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:A/AC:H/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: b43: allocate receive buffers big enough for max frame len + offset"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Yogesh Sharma"
          ]
        }
      ],
      "cve": "CVE-2011-3363",
      "discovery_date": "2011-03-07T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "738291"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The setup_cifs_sb function in fs/cifs/connect.c in the Linux kernel before 2.6.39 does not properly handle DFS referrals, which allows remote CIFS servers to cause a denial of service (system crash) by placing a referral at the root of a share.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: cifs: always do is_path_accessible check in cifs_mount",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4,\n5, 6, and Red Hat Enterprise MRG. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1479.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3363"
        },
        {
          "category": "external",
          "summary": "RHBZ#738291",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738291"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3363",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3363"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3363",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3363"
        }
      ],
      "release_date": "2011-03-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.6,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:A/AC:H/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: cifs: always do is_path_accessible check in cifs_mount"
    },
    {
      "cve": "CVE-2011-3637",
      "discovery_date": "2011-10-21T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "747848"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The m_stop function in fs/proc/task_mmu.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (OOPS) via vectors that trigger an m_start error.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: proc: fix oops on invalid /proc/\u003cpid\u003e/maps access",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the version of the Linux kernel as shipped with Red Hat Enterprise Linux 4, and 6 as it did not backport the upstream commit ec6fd8a4 that introduced this issue. This has been addressed in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2012-0007.html and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-3637"
        },
        {
          "category": "external",
          "summary": "RHBZ#747848",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747848"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3637",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-3637"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3637",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3637"
        }
      ],
      "release_date": "2011-03-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.9,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: proc: fix oops on invalid /proc/\u003cpid\u003e/maps access"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Nick Bowler"
          ]
        }
      ],
      "cve": "CVE-2011-4081",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2011-10-27T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "749475"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "crypto/ghash-generic.c in the Linux kernel before 3.1 allows local users to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact by triggering a failed or missing ghash_setkey function call, followed by a (1) ghash_update function call or (2) ghash_final function call, as demonstrated by a write operation on an AF_ALG socket.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: crypto: ghash: null pointer deref if no key is set",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the Linux kernels as shipped with Red Hat Enterprise Linux 4, and 5 as they did not include support for the GHASH message digest algorithm. This has been addressed in Red Hat Enterprise Linux 6, and MRG via https://rhn.redhat.com/errata/RHSA-2012-0350.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4081"
        },
        {
          "category": "external",
          "summary": "RHBZ#749475",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=749475"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4081",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4081"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4081",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4081"
        }
      ],
      "release_date": "2011-10-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.9,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: crypto: ghash: null pointer deref if no key is set"
    },
    {
      "cve": "CVE-2011-4110",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2011-11-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "751297"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The user_update function in security/keys/user_defined.c in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and kernel oops) via vectors related to a user-defined key and \"updating a negative key into a fully instantiated key.\"",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: keys: NULL pointer deref in the user-defined key type",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4,\n5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1479.html, https://rhn.redhat.com/errata/RHSA-2011-1530.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4110"
        },
        {
          "category": "external",
          "summary": "RHBZ#751297",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=751297"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4110",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4110"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4110",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4110"
        }
      ],
      "release_date": "2011-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.9,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: keys: NULL pointer deref in the user-defined key type"
    },
    {
      "cve": "CVE-2011-4132",
      "discovery_date": "2011-04-06T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "753341"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The cleanup_journal_tail function in the Journaling Block Device (JBD) functionality in the Linux kernel 2.6 allows local users to cause a denial of service (assertion error and kernel oops) via an ext3 or ext4 image with an \"invalid log first block value.\"",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: jbd/jbd2: invalid value of first log block leads to oops",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4,\n5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2012-0007.html, https://rhn.redhat.com/errata/RHSA-2012-0350.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat\nEnterprise Linux 4 is now in Production 3 of the maintenance life-cycle,\nhttps://access.redhat.com/support/policy/updates/errata/, therefore the fix for\nthis issue is not currently planned to be included in the future updates.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4132"
        },
        {
          "category": "external",
          "summary": "RHBZ#753341",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=753341"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4132",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4132"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4132",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4132"
        }
      ],
      "release_date": "2011-11-01T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 4.7,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: jbd/jbd2: invalid value of first log block leads to oops"
    },
    {
      "cve": "CVE-2011-4326",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2011-03-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "755584"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The udp6_ufo_fragment function in net/ipv6/udp.c in the Linux kernel before 2.6.39, when a certain UDP Fragmentation Offload (UFO) configuration is enabled, allows remote attackers to cause a denial of service (system crash) by sending fragmented IPv6 UDP packets to a bridge device.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: wrong headroom check in udp6_ufo_fragment()",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 and 5 as they did not provide support for UDP Fragmentation Offload (UFO) functionality. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4326"
        },
        {
          "category": "external",
          "summary": "RHBZ#755584",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=755584"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4326",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4326"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4326",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4326"
        }
      ],
      "release_date": "2011-03-03T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-01-10T20:10:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:0010"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.1,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-0:2.6.33.9-rt31.79.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-0:2.6.33.9-rt31.79.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-0:2.6.33.9-rt31.79.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: wrong headroom check in udp6_ufo_fragment()"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2011-2723 (GCVE-0-2011-2723)

RHSA-2011_1408

RHSA-2012:0010

RHSA-2012_0010

Tags

Sightings

Nomenclature