Action not permitted
Modal body text goes here.
CVE-2011-3593
Vulnerability from cvelistv5
Published
2013-06-08 10:00
Modified
2024-08-06 23:37
Severity ?
EPSS score ?
Summary
A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T23:37:48.422Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=742846" }, { "name": "[oss-security] 20120305 CVE-2011-3593 kernel: vlan: fix panic when handling priority tagged frames", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2012/03/05/3" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=fadca7bdc43b02f518585d9547019966415cadfd" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=0e48f8daac293335e16e007663b9f4d248f89f0c" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "descriptions": [ { "lang": "en", "value": "A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2013-06-08T10:00:00Z", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=742846" }, { "name": "[oss-security] 20120305 CVE-2011-3593 kernel: vlan: fix panic when handling priority tagged frames", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2012/03/05/3" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=fadca7bdc43b02f518585d9547019966415cadfd" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=0e48f8daac293335e16e007663b9f4d248f89f0c" } ] } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2011-3593", "datePublished": "2013-06-08T10:00:00Z", "dateReserved": "2011-09-21T00:00:00Z", "dateUpdated": "2024-08-06T23:37:48.422Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2011-3593\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2013-06-08T13:05:55.170\",\"lastModified\":\"2023-02-13T01:20:51.897\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames.\"},{\"lang\":\"es\",\"value\":\"Cierta actualizaci\u00f3n de Red Hat para la funci\u00f3n vlan_hwaccel_do_receive en net/8021q/vlan_core.c del kernel Linux v2.6.32 en Red Hat Enterprise Linux (RHEL) 6 permite que atacantes remotos provoquen una denegaci\u00f3n de servicio (parada del sistema) mediante una trama VLAN con etiqueta de prioridad.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:A/AC:M/Au:N/C:N/I:N/A:C\",\"accessVector\":\"ADJACENT_NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\",\"baseScore\":5.7},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":5.5,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46568A0D-F374-4DAB-9B64-FCC74A9AA07B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2012/03/05/3\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=742846\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=0e48f8daac293335e16e007663b9f4d248f89f0c\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=fadca7bdc43b02f518585d9547019966415cadfd\",\"source\":\"secalert@redhat.com\"}]}}" } }
ghsa-fj97-rp5f-jf94
Vulnerability from github
Published
2022-05-14 01:07
Modified
2022-05-14 01:07
Details
A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames.
{ "affected": [], "aliases": [ "CVE-2011-3593" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2013-06-08T13:05:00Z", "severity": "MODERATE" }, "details": "A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames.", "id": "GHSA-fj97-rp5f-jf94", "modified": "2022-05-14T01:07:32Z", "published": "2022-05-14T01:07:32Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3593" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=742846" }, { "type": "WEB", "url": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=0e48f8daac293335e16e007663b9f4d248f89f0c" }, { "type": "WEB", "url": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=fadca7bdc43b02f518585d9547019966415cadfd" }, { "type": "WEB", "url": "https://oss.oracle.com/git/?p=redpatch.git;a=commit;h=0e48f8daac293335e16e007663b9f4d248f89f0c" }, { "type": "WEB", "url": "https://oss.oracle.com/git/?p=redpatch.git;a=commit;h=fadca7bdc43b02f518585d9547019966415cadfd" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2012/03/05/3" } ], "schema_version": "1.4.0", "severity": [] }
gsd-2011-3593
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2011-3593", "description": "A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames.", "id": "GSD-2011-3593", "references": [ "https://www.suse.com/security/cve/CVE-2011-3593.html", "https://access.redhat.com/errata/RHSA-2011:1465", "https://alas.aws.amazon.com/cve/html/CVE-2011-3593.html", "https://linux.oracle.com/cve/CVE-2011-3593.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2011-3593" ], "details": "A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames.", "id": "GSD-2011-3593", "modified": "2023-12-13T01:19:10.050930Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2011-3593", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_affected": "=", "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=fadca7bdc43b02f518585d9547019966415cadfd", "refsource": "MISC", "url": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=fadca7bdc43b02f518585d9547019966415cadfd" }, { "name": "http://www.openwall.com/lists/oss-security/2012/03/05/3", "refsource": "MISC", "url": "http://www.openwall.com/lists/oss-security/2012/03/05/3" }, { "name": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=0e48f8daac293335e16e007663b9f4d248f89f0c", "refsource": "MISC", "url": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=0e48f8daac293335e16e007663b9f4d248f89f0c" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=742846", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=742846" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.32:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2011-3593" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-399" } ] } ] }, "references": { "reference_data": [ { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=742846", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=742846" }, { "name": "[oss-security] 20120305 CVE-2011-3593 kernel: vlan: fix panic when handling priority tagged frames", "refsource": "MLIST", "tags": [], "url": "http://www.openwall.com/lists/oss-security/2012/03/05/3" }, { "name": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=fadca7bdc43b02f518585d9547019966415cadfd", "refsource": "MISC", "tags": [], "url": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=fadca7bdc43b02f518585d9547019966415cadfd" }, { "name": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=0e48f8daac293335e16e007663b9f4d248f89f0c", "refsource": "MISC", "tags": [], "url": "https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=0e48f8daac293335e16e007663b9f4d248f89f0c" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "exploitabilityScore": 5.5, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false } }, "lastModifiedDate": "2023-02-13T01:20Z", "publishedDate": "2013-06-08T13:05Z" } } }
rhsa-2011_1465
Vulnerability from csaf_redhat
Published
2011-11-22 16:36
Modified
2024-11-22 05:00
Summary
Red Hat Security Advisory: kernel security and bug fix update
Notes
Topic
Updated kernel packages that fix multiple security issues and various bugs
are now available for Red Hat Enterprise Linux 6.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issues:
* IPv6 fragment identification value generation could allow a remote
attacker to disrupt a target system's networking, preventing legitimate
users from accessing its services. (CVE-2011-2699, Important)
* A signedness issue was found in the Linux kernel's CIFS (Common Internet
File System) implementation. A malicious CIFS server could send a
specially-crafted response to a directory read request that would result in
a denial of service or privilege escalation on a system that has a CIFS
share mounted. (CVE-2011-3191, Important)
* A flaw was found in the way the Linux kernel handled fragmented IPv6 UDP
datagrams over the bridge with UDP Fragmentation Offload (UFO)
functionality on. A remote attacker could use this flaw to cause a denial
of service. (CVE-2011-4326, Important)
* The way IPv4 and IPv6 protocol sequence numbers and fragment IDs were
generated could allow a man-in-the-middle attacker to inject packets and
possibly hijack connections. Protocol sequence numbers and fragment IDs are
now more random. (CVE-2011-3188, Moderate)
* A buffer overflow flaw was found in the Linux kernel's FUSE (Filesystem
in Userspace) implementation. A local user in the fuse group who has access
to mount a FUSE file system could use this flaw to cause a denial of
service. (CVE-2011-3353, Moderate)
* A flaw was found in the b43 driver in the Linux kernel. If a system had
an active wireless interface that uses the b43 driver, an attacker able to
send a specially-crafted frame to that interface could cause a denial of
service. (CVE-2011-3359, Moderate)
* A flaw was found in the way CIFS shares with DFS referrals at their root
were handled. An attacker on the local network who is able to deploy a
malicious CIFS server could create a CIFS network share that, when mounted,
would cause the client system to crash. (CVE-2011-3363, Moderate)
* A flaw was found in the way the Linux kernel handled VLAN 0 frames with
the priority tag set. When using certain network drivers, an attacker on
the local network could use this flaw to cause a denial of service.
(CVE-2011-3593, Moderate)
* A flaw in the way memory containing security-related data was handled in
tpm_read() could allow a local, unprivileged user to read the results of a
previously run TPM command. (CVE-2011-1162, Low)
* A heap overflow flaw was found in the Linux kernel's EFI GUID Partition
Table (GPT) implementation. A local attacker could use this flaw to cause
a denial of service by mounting a disk that contains specially-crafted
partition tables. (CVE-2011-1577, Low)
* The I/O statistics from the taskstats subsystem could be read without
any restrictions. A local, unprivileged user could use this flaw to gather
confidential information, such as the length of a password used in a
process. (CVE-2011-2494, Low)
* It was found that the perf tool, a part of the Linux kernel's Performance
Events implementation, could load its configuration file from the current
working directory. If a local user with access to the perf tool were
tricked into running perf in a directory that contains a specially-crafted
configuration file, it could cause perf to overwrite arbitrary files and
directories accessible to that user. (CVE-2011-2905, Low)
Red Hat would like to thank Fernando Gont for reporting CVE-2011-2699;
Darren Lavender for reporting CVE-2011-3191; Dan Kaminsky for reporting
CVE-2011-3188; Yogesh Sharma for reporting CVE-2011-3363; Gideon Naim for
reporting CVE-2011-3593; Peter Huewe for reporting CVE-2011-1162; Timo
Warns for reporting CVE-2011-1577; and Vasiliy Kulikov of Openwall for
reporting CVE-2011-2494.
This update also fixes various bugs. Documentation for these changes will
be available shortly from the Technical Notes document linked to in the
References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix multiple security issues and various bugs\nare now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* IPv6 fragment identification value generation could allow a remote\nattacker to disrupt a target system\u0027s networking, preventing legitimate\nusers from accessing its services. (CVE-2011-2699, Important)\n\n* A signedness issue was found in the Linux kernel\u0027s CIFS (Common Internet\nFile System) implementation. A malicious CIFS server could send a\nspecially-crafted response to a directory read request that would result in\na denial of service or privilege escalation on a system that has a CIFS\nshare mounted. (CVE-2011-3191, Important)\n\n* A flaw was found in the way the Linux kernel handled fragmented IPv6 UDP\ndatagrams over the bridge with UDP Fragmentation Offload (UFO)\nfunctionality on. A remote attacker could use this flaw to cause a denial\nof service. (CVE-2011-4326, Important)\n\n* The way IPv4 and IPv6 protocol sequence numbers and fragment IDs were\ngenerated could allow a man-in-the-middle attacker to inject packets and\npossibly hijack connections. Protocol sequence numbers and fragment IDs are\nnow more random. (CVE-2011-3188, Moderate)\n\n* A buffer overflow flaw was found in the Linux kernel\u0027s FUSE (Filesystem\nin Userspace) implementation. A local user in the fuse group who has access\nto mount a FUSE file system could use this flaw to cause a denial of\nservice. (CVE-2011-3353, Moderate)\n\n* A flaw was found in the b43 driver in the Linux kernel. If a system had\nan active wireless interface that uses the b43 driver, an attacker able to\nsend a specially-crafted frame to that interface could cause a denial of\nservice. (CVE-2011-3359, Moderate)\n\n* A flaw was found in the way CIFS shares with DFS referrals at their root\nwere handled. An attacker on the local network who is able to deploy a\nmalicious CIFS server could create a CIFS network share that, when mounted,\nwould cause the client system to crash. (CVE-2011-3363, Moderate)\n\n* A flaw was found in the way the Linux kernel handled VLAN 0 frames with\nthe priority tag set. When using certain network drivers, an attacker on\nthe local network could use this flaw to cause a denial of service.\n(CVE-2011-3593, Moderate)\n\n* A flaw in the way memory containing security-related data was handled in\ntpm_read() could allow a local, unprivileged user to read the results of a\npreviously run TPM command. (CVE-2011-1162, Low)\n\n* A heap overflow flaw was found in the Linux kernel\u0027s EFI GUID Partition\nTable (GPT) implementation. A local attacker could use this flaw to cause\na denial of service by mounting a disk that contains specially-crafted\npartition tables. (CVE-2011-1577, Low)\n\n* The I/O statistics from the taskstats subsystem could be read without\nany restrictions. A local, unprivileged user could use this flaw to gather\nconfidential information, such as the length of a password used in a\nprocess. (CVE-2011-2494, Low)\n\n* It was found that the perf tool, a part of the Linux kernel\u0027s Performance\nEvents implementation, could load its configuration file from the current\nworking directory. If a local user with access to the perf tool were\ntricked into running perf in a directory that contains a specially-crafted\nconfiguration file, it could cause perf to overwrite arbitrary files and\ndirectories accessible to that user. (CVE-2011-2905, Low)\n\nRed Hat would like to thank Fernando Gont for reporting CVE-2011-2699;\nDarren Lavender for reporting CVE-2011-3191; Dan Kaminsky for reporting\nCVE-2011-3188; Yogesh Sharma for reporting CVE-2011-3363; Gideon Naim for\nreporting CVE-2011-3593; Peter Huewe for reporting CVE-2011-1162; Timo\nWarns for reporting CVE-2011-1577; and Vasiliy Kulikov of Openwall for\nreporting CVE-2011-2494.\n\nThis update also fixes various bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:1465", "url": "https://access.redhat.com/errata/RHSA-2011:1465" }, { "category": "external", "summary": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/kernel.html#RHSA-2011-1465", "url": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/kernel.html#RHSA-2011-1465" }, { "category": "external", "summary": "695976", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695976" }, { "category": "external", "summary": "716842", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716842" }, { "category": "external", "summary": "723429", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=723429" }, { "category": "external", "summary": "729808", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=729808" }, { "category": "external", "summary": "732629", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732629" }, { "category": "external", "summary": "732658", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732658" }, { "category": "external", "summary": "732869", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732869" }, { "category": "external", "summary": "736761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=736761" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "738291", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738291" }, { "category": "external", "summary": "740352", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=740352" }, { "category": "external", "summary": "741166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=741166" }, { "category": "external", "summary": "742846", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=742846" }, { "category": "external", "summary": "743807", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=743807" }, { "category": "external", "summary": "744811", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=744811" }, { "category": "external", "summary": "748808", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=748808" }, { "category": "external", "summary": "755584", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=755584" }, { "category": "external", "summary": "738202", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738202" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1465.json" } ], "title": "Red Hat Security Advisory: kernel security and bug fix update", "tracking": { "current_release_date": "2024-11-22T05:00:13+00:00", "generator": { "date": "2024-11-22T05:00:13+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2011:1465", "initial_release_date": "2011-11-22T16:36:00+00:00", "revision_history": [ { "date": "2011-11-22T16:36:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-11-22T16:45:37+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T05:00:13+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "product": { "name": "kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "product_id": "kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-i686@2.6.32-131.21.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "product": { "name": "kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "product_id": "kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.21.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.21.1.el6.i686", "product": { "name": "kernel-0:2.6.32-131.21.1.el6.i686", "product_id": "kernel-0:2.6.32-131.21.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.21.1.el6?arch=i686" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "product": { "name": "perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "product_id": "perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.21.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "product": { "name": "kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "product_id": "kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.21.1.el6?arch=i686" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.21.1.el6.i686", "product": { "name": "perf-0:2.6.32-131.21.1.el6.i686", "product_id": "perf-0:2.6.32-131.21.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.21.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.21.1.el6.i686", "product": { "name": "kernel-devel-0:2.6.32-131.21.1.el6.i686", "product_id": "kernel-devel-0:2.6.32-131.21.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.21.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.21.1.el6.i686", "product": { "name": "kernel-headers-0:2.6.32-131.21.1.el6.i686", "product_id": "kernel-headers-0:2.6.32-131.21.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.21.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.21.1.el6.i686", "product": { "name": "kernel-debug-0:2.6.32-131.21.1.el6.i686", "product_id": "kernel-debug-0:2.6.32-131.21.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.21.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.21.1.el6?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "product_id": "kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.21.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "product": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "product_id": "kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64@2.6.32-131.21.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "product": { "name": "kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "product_id": "kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-bootwrapper@2.6.32-131.21.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.21.1.el6.ppc64", "product": { "name": "kernel-0:2.6.32-131.21.1.el6.ppc64", "product_id": "kernel-0:2.6.32-131.21.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.21.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "product": { "name": "perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "product_id": "perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.21.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "product_id": "kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.21.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.21.1.el6.ppc64", "product": { "name": "perf-0:2.6.32-131.21.1.el6.ppc64", "product_id": "perf-0:2.6.32-131.21.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.21.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "product": { "name": "kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "product_id": "kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.21.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "product": { "name": "kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "product_id": "kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.21.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "product": { "name": "kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "product_id": "kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.21.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.21.1.el6?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "product_id": "kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.21.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "product_id": "kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@2.6.32-131.21.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "kernel-0:2.6.32-131.21.1.el6.s390x", "product_id": "kernel-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.21.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "product_id": "perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.21.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "product_id": "kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.21.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "perf-0:2.6.32-131.21.1.el6.s390x", "product_id": "perf-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.21.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "product_id": "kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.32-131.21.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.32-131.21.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "product_id": "kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.32-131.21.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "kernel-devel-0:2.6.32-131.21.1.el6.s390x", "product_id": "kernel-devel-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.21.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "kernel-headers-0:2.6.32-131.21.1.el6.s390x", "product_id": "kernel-headers-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.21.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "kernel-debug-0:2.6.32-131.21.1.el6.s390x", "product_id": "kernel-debug-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.21.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.21.1.el6?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "product_id": "kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.21.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.21.1.el6.x86_64", "product": { "name": "kernel-0:2.6.32-131.21.1.el6.x86_64", "product_id": "kernel-0:2.6.32-131.21.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.21.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "product": { "name": "perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "product_id": "perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.21.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "product_id": "kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.21.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.21.1.el6.x86_64", "product": { "name": "perf-0:2.6.32-131.21.1.el6.x86_64", "product_id": "perf-0:2.6.32-131.21.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.21.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "product": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-131.21.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "product": { "name": "kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "product_id": "kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.21.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "product": { "name": "kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "product_id": "kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.21.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "product": { "name": "kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "product_id": "kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.21.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.21.1.el6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.32-131.21.1.el6.src", "product": { "name": "kernel-0:2.6.32-131.21.1.el6.src", "product_id": "kernel-0:2.6.32-131.21.1.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.21.1.el6?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "product": { "name": "kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "product_id": "kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-131.21.1.el6?arch=noarch" } } }, { "category": "product_version", "name": "kernel-doc-0:2.6.32-131.21.1.el6.noarch", "product": { "name": "kernel-doc-0:2.6.32-131.21.1.el6.noarch", "product_id": "kernel-doc-0:2.6.32-131.21.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.32-131.21.1.el6?arch=noarch" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.21.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686" }, "product_reference": "kernel-0:2.6.32-131.21.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.21.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64" }, "product_reference": "kernel-0:2.6.32-131.21.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "kernel-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.21.1.el6.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src" }, "product_reference": "kernel-0:2.6.32-131.21.1.el6.src", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.21.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64" }, "product_reference": "kernel-0:2.6.32-131.21.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64" }, "product_reference": "kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.21.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686" }, "product_reference": "kernel-debug-0:2.6.32-131.21.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.21.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64" }, "product_reference": "kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "kernel-debug-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.21.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64" }, "product_reference": "kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.21.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.21.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686" }, "product_reference": "kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.21.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686" }, "product_reference": "kernel-devel-0:2.6.32-131.21.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.21.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64" }, "product_reference": "kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "kernel-devel-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.21.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64" }, "product_reference": "kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.32-131.21.1.el6.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch" }, "product_reference": "kernel-doc-0:2.6.32-131.21.1.el6.noarch", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-firmware-0:2.6.32-131.21.1.el6.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch" }, "product_reference": "kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.21.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686" }, "product_reference": "kernel-headers-0:2.6.32-131.21.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.21.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64" }, "product_reference": "kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "kernel-headers-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.21.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64" }, "product_reference": "kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.21.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686" }, "product_reference": "perf-0:2.6.32-131.21.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.21.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64" }, "product_reference": "perf-0:2.6.32-131.21.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "perf-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.21.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64" }, "product_reference": "perf-0:2.6.32-131.21.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.21.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686" }, "product_reference": "perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64" }, "product_reference": "perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.21.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x" }, "product_reference": "perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" }, "product_reference": "perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Peter Huewe" ] } ], "cve": "CVE-2011-1162", "discovery_date": "2011-03-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "732629" } ], "notes": [ { "category": "description", "text": "The tpm_read function in the Linux kernel 2.6 does not properly clear memory, which might allow local users to read the results of the previous TPM command.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: tpm: infoleak", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1162" }, { "category": "external", "summary": "RHBZ#732629", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732629" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1162", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1162" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1162", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1162" } ], "release_date": "2011-03-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-11-22T16:36:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1465" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.2, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: tpm: infoleak" }, { "acknowledgments": [ { "names": [ "Timo Warns" ] } ], "cve": "CVE-2011-1577", "discovery_date": "2011-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "695976" } ], "notes": [ { "category": "description", "text": "Heap-based buffer overflow in the is_gpt_valid function in fs/partitions/efi.c in the Linux kernel 2.6.38 and earlier allows physically proximate attackers to cause a denial of service (OOPS) or possibly have unspecified other impact via a crafted size of the EFI GUID partition-table header on removable media.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: corrupted GUID partition tables can cause kernel oops", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1577" }, { "category": "external", "summary": "RHBZ#695976", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695976" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1577", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1577" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1577", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1577" } ], "release_date": "2011-04-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-11-22T16:36:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1465" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: corrupted GUID partition tables can cause kernel oops" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2494", "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716842" } ], "notes": [ { "category": "description", "text": "kernel/taskstats.c in the Linux kernel before 3.1 allows local users to obtain sensitive I/O statistics by sending taskstats commands to a netlink socket, as demonstrated by discovering the length of another user\u0027s password.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: taskstats io infoleak", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not provide support for the Taskstats interface. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1479.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2494" }, { "category": "external", "summary": "RHBZ#716842", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716842" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2494", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2494" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2494", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2494" } ], "release_date": "2011-06-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-11-22T16:36:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1465" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: taskstats io infoleak" }, { "acknowledgments": [ { "names": [ "Fernando Gont" ] } ], "cve": "CVE-2011-2699", "discovery_date": "2011-07-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "723429" } ], "notes": [ { "category": "description", "text": "The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification values separately for each destination, which makes it easier for remote attackers to cause a denial of service (disrupted networking) by predicting these values and sending crafted packets.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ipv6: make fragment identifications less predictable", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the Linux kernel as shipped with Red Hat Enterprise MRG as it has backported the fix that addresses this issue. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This has been addressed in Red Hat Enterprise Linux 5 and 6 via https://rhn.redhat.com/errata/RHSA-2011-1386.html and https://rhn.redhat.com/errata/RHSA-2011-1465.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2699" }, { "category": "external", "summary": "RHBZ#723429", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=723429" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2699", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2699" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2699", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2699" } ], "release_date": "2011-07-20T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-11-22T16:36:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1465" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: ipv6: make fragment identifications less predictable" }, { "cve": "CVE-2011-2905", "discovery_date": "2011-08-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "729808" } ], "notes": [ { "category": "description", "text": "Untrusted search path vulnerability in the perf_config function in tools/perf/util/config.c in perf, as distributed in the Linux kernel before 3.1, allows local users to overwrite arbitrary files via a crafted config file in the current working directory.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: perf tools: may parse user-controlled configuration file", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect Red Hat Enterprise Linux 4 and 5 as they did not include support for perf. This did not affect Red Hat Enterprise MRG as it uses the perf package from Red Hat Enterprise Linux 6. This has been addressed in Red Hat Enterprise Linux 6 via https://rhn.redhat.com/errata/RHSA-2011-1465.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2905" }, { "category": "external", "summary": "RHBZ#729808", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=729808" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2905", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2905" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2905", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2905" } ], "release_date": "2011-08-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-11-22T16:36:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1465" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:N/C:N/I:P/A:P", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: perf tools: may parse user-controlled configuration file" }, { "acknowledgments": [ { "names": [ "Dan Kaminsky" ] } ], "cve": "CVE-2011-3188", "discovery_date": "2011-08-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "732658" } ], "notes": [ { "category": "description", "text": "The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote attackers to cause a denial of service (disrupted networking) or hijack network sessions by predicting these values and sending crafted packets.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: net: improve sequence number generation", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3188" }, { "category": "external", "summary": "RHBZ#732658", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732658" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3188", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3188" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3188", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3188" } ], "release_date": "2011-08-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-11-22T16:36:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1465" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:P", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: net: improve sequence number generation" }, { "acknowledgments": [ { "names": [ "Darren Lavender" ] } ], "cve": "CVE-2011-3191", "discovery_date": "2011-08-24T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "732869" } ], "notes": [ { "category": "description", "text": "Integer signedness error in the CIFSFindNext function in fs/cifs/cifssmb.c in the Linux kernel before 3.1 allows remote CIFS servers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large length value in a response to a read request for a directory.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: cifs: signedness issue in CIFSFindNext()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3191" }, { "category": "external", "summary": "RHBZ#732869", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732869" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3191", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3191" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3191", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3191" } ], "release_date": "2011-08-23T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-11-22T16:36:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1465" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.8, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:A/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: cifs: signedness issue in CIFSFindNext()" }, { "cve": "CVE-2011-3353", "discovery_date": "2011-08-29T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "736761" } ], "notes": [ { "category": "description", "text": "Buffer overflow in the fuse_notify_inval_entry function in fs/fuse/dev.c in the Linux kernel before 3.1 allows local users to cause a denial of service (BUG_ON and system crash) by leveraging the ability to mount a FUSE filesystem.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as they did not provide support for FUSE. This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 5 as they did not backport the upstream commit 3b463ae0c6264f that introduced this issue. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1465.html and https://rhn.redhat.com/errata/RHSA-2012-0010.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3353" }, { "category": "external", "summary": "RHBZ#736761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=736761" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3353", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3353" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3353", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3353" } ], "release_date": "2011-07-28T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-11-22T16:36:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1465" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 4.6, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message" }, { "cve": "CVE-2011-3359", "discovery_date": "2011-03-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "738202" } ], "notes": [ { "category": "description", "text": "The dma_rx function in drivers/net/wireless/b43/dma.c in the Linux kernel before 2.6.39 does not properly allocate receive buffers, which allows remote attackers to cause a denial of service (system crash) via a crafted frame.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: b43: allocate receive buffers big enough for max frame len + offset", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red\nHat Enterprise Linux 4 and 5 as they did not provide support for Broadcom 43xx wireless devices. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3359" }, { "category": "external", "summary": "RHBZ#738202", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738202" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3359", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3359" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3359", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3359" } ], "release_date": "2011-03-27T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-11-22T16:36:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1465" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.6, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:H/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: b43: allocate receive buffers big enough for max frame len + offset" }, { "acknowledgments": [ { "names": [ "Yogesh Sharma" ] } ], "cve": "CVE-2011-3363", "discovery_date": "2011-03-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "738291" } ], "notes": [ { "category": "description", "text": "The setup_cifs_sb function in fs/cifs/connect.c in the Linux kernel before 2.6.39 does not properly handle DFS referrals, which allows remote CIFS servers to cause a denial of service (system crash) by placing a referral at the root of a share.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: cifs: always do is_path_accessible check in cifs_mount", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4,\n5, 6, and Red Hat Enterprise MRG. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1479.html, https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3363" }, { "category": "external", "summary": "RHBZ#738291", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=738291" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3363", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3363" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3363", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3363" } ], "release_date": "2011-03-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-11-22T16:36:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1465" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.6, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:H/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: cifs: always do is_path_accessible check in cifs_mount" }, { "acknowledgments": [ { "names": [ "Gideon Naim" ] } ], "cve": "CVE-2011-3593", "discovery_date": "2011-10-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "742846" } ], "notes": [ { "category": "description", "text": "A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: vlan: fix panic when handling priority tagged frames", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the Linux kernels as shipped with Red Hat Enterprise Linux 4, 5, and Red Hat Enterprise MRG. It affects the Linux kernel as shipped with Red Hat Enterprise Linux 6 due to incorrect backporting of upstream patches. A future kernel update in Red Hat Enterprise Linux 6 may address this issue.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3593" }, { "category": "external", "summary": "RHBZ#742846", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=742846" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3593", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3593" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3593", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3593" } ], "release_date": "2011-11-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-11-22T16:36:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1465" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: vlan: fix panic when handling priority tagged frames" }, { "cve": "CVE-2011-4326", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-03-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "755584" } ], "notes": [ { "category": "description", "text": "The udp6_ufo_fragment function in net/ipv6/udp.c in the Linux kernel before 2.6.39, when a certain UDP Fragmentation Offload (UFO) configuration is enabled, allows remote attackers to cause a denial of service (system crash) by sending fragmented IPv6 UDP packets to a bridge device.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: wrong headroom check in udp6_ufo_fragment()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 and 5 as they did not provide support for UDP Fragmentation Offload (UFO) functionality. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1465.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-4326" }, { "category": "external", "summary": "RHBZ#755584", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=755584" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4326", "url": "https://www.cve.org/CVERecord?id=CVE-2011-4326" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4326", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4326" } ], "release_date": "2011-03-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-11-22T16:36:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1465" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.21.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.21.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.21.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: wrong headroom check in udp6_ufo_fragment()" } ] }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.